This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft File: nkKx9pFGDihG-nHwbcib8sdB25o.mft (raw, json) Hash identifier: 8IWzZ4PxWHF78Bh4VJjz+qi9glgazlyD6WtWl3iC28s= Subject key identifier: 76:E3:AA:6D:96:CB:41:A2:53:04:BB:0B:BD:D0:85:2D:92:BD:90:A1 Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft Manifest number: 017F Signing time: Fri 05 Dec 2025 01:52:44 +0000 Manifest this update: Fri 05 Dec 2025 01:52:43 +0000 Manifest next update: Fri 12 Dec 2025 01:52:43 +0000 Files and hashes: 1: nkKx9pFGDihG-nHwbcib8sdB25o.crl (hash: SGTLgqcLwOZQY+JWL2StsQKbkstmFVpYT3LwS3rp1D8=) 2: 5ED417AE869011EEA9011A36C4F9AE02.roa (hash: secqQJuczQrOBoLhJh1bWX70I59NSlP/4Mk301elvvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BCDD, serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Validity Not Before: Dec 5 01:52:43 2025 GMT Not After : Dec 12 01:52:43 2025 GMT Subject: CN=69323aeb-e605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b5:6e:1a:e3:8c:71:e7:2f:9a:3b:a8:db:40: 0e:7d:44:36:92:d6:97:f3:2f:c3:23:fb:07:49:a3: f4:7b:50:93:64:b3:26:97:29:c1:4a:7e:b4:90:6f: de:a6:42:d1:f2:a3:b5:f3:f9:4b:2f:96:24:71:c1: e6:0d:91:18:2a:87:03:1f:b7:62:71:d6:98:a5:30: 2b:b4:bb:75:78:91:ad:03:91:9b:a2:5d:34:03:d5: 02:a4:93:1c:0d:41:91:4c:35:ef:95:92:93:c3:a6: 8c:d4:24:84:b0:aa:cc:df:49:e6:aa:31:36:66:05: 95:e2:d1:56:4f:b8:b1:dc:17:aa:ee:0d:eb:4e:76: 43:73:3a:b9:0c:cf:7e:3d:99:13:0c:7d:19:ad:e8: be:24:f7:ca:21:4d:b0:f3:6c:e6:3b:80:62:5f:4d: 35:a0:3a:47:a3:a1:3d:35:3e:6c:93:80:5b:f1:ba: 2e:22:b4:b1:33:f4:b8:cc:76:08:03:48:f9:20:2c: 99:1a:b2:25:d9:81:2f:74:c5:5f:07:e7:e8:88:9e: 8b:64:05:c9:36:09:03:22:de:e9:2b:21:84:2d:5c: de:25:79:c2:7f:35:44:12:d3:f6:69:76:85:74:ed: a3:c0:cd:49:9f:67:c6:36:dd:dc:d7:c1:65:d3:6d: e8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E3:AA:6D:96:CB:41:A2:53:04:BB:0B:BD:D0:85:2D:92:BD:90:A1 X509v3 Authority Key Identifier: keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:1d:84:e7:39:64:c4:f8:03:5e:5d:f4:f2:67:bd:2d:58:57: 24:bc:d8:14:f3:40:13:07:ac:18:12:6e:49:c4:04:c0:0d:1d: d3:57:cc:b5:e6:75:c3:6a:fd:f9:b8:16:b9:ed:34:c9:d0:e0: a5:e2:f1:db:6e:d9:04:4e:7b:16:39:bd:dc:7d:2e:ac:9d:04: 13:48:fe:72:28:fc:8e:c3:e7:46:d3:51:2e:6f:2e:7c:ca:32: 03:13:b7:e7:88:f5:2d:b5:6c:83:99:0a:00:b3:37:c5:47:45: 99:fd:0c:51:f0:5c:df:c6:ea:5f:f1:f6:6f:04:b1:57:bb:bb: ef:76:d1:45:5e:a3:f0:09:39:15:98:d3:1c:b7:47:bc:88:1d: 79:90:10:06:7b:ed:fe:1f:81:23:a9:90:64:38:8f:4b:9b:81: 64:97:05:e3:a8:5a:cc:a6:59:a8:6a:46:c0:f2:19:00:f2:00: d5:4b:f6:58:9c:42:6d:74:1e:e9:06:ad:a2:27:92:a8:0a:df: e9:4d:e9:75:cd:5c:21:49:4d:58:3e:ac:0b:16:67:22:b2:37: c5:77:fc:68:d2:a7:d0:d6:87:9a:94:fd:0c:a2:b8:42:a2:b9: c2:ba:e3:90:0c:d5:04:19:67:a2:fa:70:15:ce:79:58:58:5b: 3d:7b:91:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDREQxMTAvBgNVBAUTKDlFNDJCMUY2OTE0NjBFMjg0NkZBNzFGMDZEQzg5QkYy Qzc0MURCOUEwHhcNMjUxMjA1MDE1MjQzWhcNMjUxMjEyMDE1MjQzWjAYMRYwFAYD VQQDEw02OTMyM2FlYi1lNjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7VuGuOMcecvmjuo20AOfUQ2ktaX8y/DI/sHSaP0e1CTZLMmlynBSn60kG/e pkLR8qO18/lLL5YkccHmDZEYKocDH7dicdaYpTArtLt1eJGtA5Gbol00A9UCpJMc DUGRTDXvlZKTw6aM1CSEsKrM30nmqjE2ZgWV4tFWT7ix3Beq7g3rTnZDczq5DM9+ PZkTDH0Zrei+JPfKIU2w82zmO4BiX001oDpHo6E9NT5sk4Bb8bouIrSxM/S4zHYI A0j5ICyZGrIl2YEvdMVfB+foiJ6LZAXJNgkDIt7pKyGELVzeJXnCfzVEEtP2aXaF dO2jwM1Jn2fGNt3c18Fl023oiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbjqm2W y0GiUwS7C73QhS2SvZChMB8GA1UdIwQYMBaAFJ5CsfaRRg4oRvpx8G3Im/LHQdua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkNERC8zNDhBRDhBQzg2 MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0RpaEctbkh3YmNpYjhzZEIy NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25rS3g5cEZHRGloRy1uSHdiY2liOHNkQjI1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkNERC8zNDhBRDhBQzg2MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0Rp aEctbkh3YmNpYjhzZEIyNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAHYTnOWTE+ANeXfTyZ70tWFckvNgU80ATB6wYEm5JxATADR3TV8y1 5nXDav35uBa57TTJ0OCl4vHbbtkETnsWOb3cfS6snQQTSP5yKPyOw+dG01Euby58 yjIDE7fniPUttWyDmQoAszfFR0WZ/QxR8Fzfxupf8fZvBLFXu7vvdtFFXqPwCTkV mNMct0e8iB15kBAGe+3+H4EjqZBkOI9Lm4FklwXjqFrMplmoakbA8hkA8gDVS/ZY nEJtdB7pBq2iJ5KoCt/pTel1zVwhSU1YPqwLFmcisjfFd/xo0qfQ1oealP0MorhC ornCuuOQDNUEGWei+nAVznlYWFs9e5G+ -----END CERTIFICATE-----Generated at Sat Dec 6 12:37:39 2025 by rpki-client