This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft File: nTQUKDsie49RLzBfKs20PN6eTRI.mft (raw, json) Hash identifier: H1PptTgD3dFkW6evz1rJYa9SsE1AS7CrDbTuZ3PuBjE= Subject key identifier: 17:E8:CC:12:09:98:AD:9D:78:34:F3:F2:57:30:F2:36:50:D6:C2:67 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft Manifest number: 0198 Signing time: Fri 05 Dec 2025 02:02:47 +0000 Manifest this update: Fri 05 Dec 2025 02:02:46 +0000 Manifest next update: Fri 12 Dec 2025 02:02:46 +0000 Files and hashes: 1: nTQUKDsie49RLzBfKs20PN6eTRI.crl (hash: r5EijF1MijDwH2BLkzPEsrrBg/T+4/TqU9iKFnCppHI=) 2: 31C9441E68ED11F0BA447B41C4F9AE02.roa (hash: KOUKQ6BoYe+OZvts9QDaZtXw/6SYWRIeerxskHjMAvw=) 3: CA364B681A1711F0A1D93523C4F9AE02.roa (hash: ZO+BY1B+XgvoW0KKoO0apsMteX7veM0k8UtwvOCudts=) 4: C75B642268F211EFB7A6A06EC4F9AE02.roa (hash: kOYdujebZuJtzPQYq/KrU4LAvGLUwAviwH7iInIzQIw=) 5: 551036FCF1CA11EFA1495230C4F9AE02.roa (hash: g1HOTpLTf3sk5gSzo54dPs52/QkaTA4XgGi9Wow0trs=) 6: 908E69B20D4311F0B83AB36BC4F9AE02.roa (hash: T3LJotaESWHFF09iX5g1WTlmIxWJcjLGAaC0q00LC9A=) 7: EDAA86E4AD6D11EE83DA6253C4F9AE02.roa (hash: lAFnFIzcRDVgDsSYcjZRPgQLtWezbOK+1/I57oP5hYQ=) 8: 3C880EBABEEF11EF9178186BC4F9AE02.roa (hash: iJAvuEQuZJZzuKlMozj/voZPn9Nd6pZK++lpcpudEMw=) 9: EC985F92AD6D11EE83DA6253C4F9AE02.roa (hash: w8uUD+FE/qLP77HxuP2e7CVi5lI4nhNhSCuDldSdTWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C, serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Dec 5 02:02:46 2025 GMT Not After : Dec 12 02:02:46 2025 GMT Subject: CN=69323d47-f908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:31:e4:37:dd:5b:a5:3f:bf:a4:3b:f2:e0: 12:e1:4d:d7:96:c5:73:bd:83:6d:d8:71:70:40:e4: 22:17:2b:ca:c3:0f:69:54:ab:6d:d2:c0:62:42:a7: ec:d2:c1:0a:fb:72:1a:51:f5:22:af:6c:6d:4c:13: 83:6f:e3:b5:3c:cf:db:bc:86:e7:e6:ee:7a:16:31: 00:0c:a7:a8:22:e2:95:53:94:82:82:e9:33:a1:d0: 25:97:7d:63:0c:58:2e:88:fd:ef:b2:b8:29:96:98: b7:46:7d:3e:bd:07:99:bf:9d:f0:ed:fc:3e:cb:e7: c9:9c:59:3a:5a:a3:4b:09:15:ca:63:01:29:b6:a1: 40:a3:ef:ea:44:12:f3:33:76:26:77:98:cc:36:e6: c6:a5:a1:f0:c8:05:4b:e5:9a:5b:22:ff:9b:62:11: c2:24:7c:6c:6d:51:d3:a6:3c:77:36:bb:7f:8b:b1: 8e:3b:74:aa:e0:37:bd:77:54:20:b5:37:3d:cd:30: d0:db:0d:b1:9f:9c:ea:65:e2:6d:7f:25:76:42:a9: f5:f6:58:73:fc:09:af:a1:ad:ba:ec:4c:0c:df:e7: 2a:c3:d0:1b:3f:78:77:8b:95:ea:0d:37:0d:d3:e9: db:e3:80:51:cc:51:56:ff:5d:0b:6f:9b:b8:47:f2: d7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E8:CC:12:09:98:AD:9D:78:34:F3:F2:57:30:F2:36:50:D6:C2:67 X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f7:00:5f:cb:3f:0f:30:72:d4:da:1a:5c:0d:eb:f5:53:33: 00:da:63:42:ef:4f:f6:7a:c4:75:d6:34:50:f2:f6:16:9d:bb: ff:54:3e:4a:ee:50:f8:10:75:0a:7c:91:9e:75:59:a4:eb:35: f9:9f:d9:2f:a6:0a:f7:8c:cd:89:bd:2e:24:a6:20:e6:a0:32: ef:72:e1:bc:92:47:f0:f4:60:62:c2:b3:d4:a3:7c:71:9f:9b: 6f:0a:77:c3:09:90:72:15:b7:b0:dd:fc:83:be:91:f6:72:da: 6b:d3:29:54:e2:bc:26:6d:ce:44:23:d5:48:20:7d:f4:dd:65: ac:9b:38:f8:ac:56:16:d5:fa:79:28:c1:e8:40:d3:ec:97:b7: f3:67:b2:b8:52:49:7e:bd:e9:8a:3c:28:fc:24:07:30:bc:fd: 06:2a:d6:12:7f:8b:b1:be:48:5b:44:dd:ca:6b:24:fc:00:16: df:a4:e3:8c:88:7a:d4:51:50:20:ed:1d:a0:2b:77:62:58:58: fe:d9:f6:47:91:36:2d:19:4c:3f:2a:bf:70:a4:31:36:2d:c6: 1f:3c:46:0c:13:52:b6:10:78:d1:66:17:12:42:01:c9:4b:8e: 6b:de:80:f2:c2:01:a1:74:d0:19:9e:86:c0:05:ad:2f:14:51: 0e:9f:85:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjUxMjA1MDIwMjQ2WhcNMjUxMjEyMDIwMjQ2WjAYMRYwFAYD VQQDEw02OTMyM2Q0Ny1mOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd0x5DfdW6U/v6Q78uAS4U3XlsVzvYNt2HFwQOQiFyvKww9pVKtt0sBiQqfs 0sEK+3IaUfUir2xtTBODb+O1PM/bvIbn5u56FjEADKeoIuKVU5SCgukzodAll31j DFguiP3vsrgplpi3Rn0+vQeZv53w7fw+y+fJnFk6WqNLCRXKYwEptqFAo+/qRBLz M3Ymd5jMNubGpaHwyAVL5ZpbIv+bYhHCJHxsbVHTpjx3Nrt/i7GOO3Sq4De9d1Qg tTc9zTDQ2w2xn5zqZeJtfyV2Qqn19lhz/Amvoa267EwM3+cqw9AbP3h3i5XqDTcN 0+nb44BRzFFW/10Lb5u4R/LXgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfozBIJ mK2deDTz8lcw8jZQ1sJnMB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUQyQy8wMDM3M0M2QzlCQkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0 OVJMekJmS3MyMFBONmVUUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI9wBfyz8PMHLU2hpcDev1UzMA2mNC70/2esR11jRQ8vYWnbv/VD5K 7lD4EHUKfJGedVmk6zX5n9kvpgr3jM2JvS4kpiDmoDLvcuG8kkfw9GBiwrPUo3xx n5tvCnfDCZByFbew3fyDvpH2ctpr0ylU4rwmbc5EI9VIIH303WWsmzj4rFYW1fp5 KMHoQNPsl7fzZ7K4Ukl+vemKPCj8JAcwvP0GKtYSf4uxvkhbRN3KayT8ABbfpOOM iHrUUVAg7R2gK3diWFj+2fZHkTYtGUw/Kr9wpDE2LcYfPEYME1K2EHjRZhcSQgHJ S45r3oDywgGhdNAZnobABa0vFFEOn4Xo -----END CERTIFICATE-----Generated at Sat Dec 6 22:21:13 2025 by rpki-client