This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: QN9m23EQpzKUrI5N1E27zUpB9pq4DrS7915B1WIKXzU= Subject key identifier: 6C:6C:20:B4:B6:C6:CF:F8:02:6F:36:BE:28:99:D5:66:57:2F:DE:C4 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 07AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 07A4 Signing time: Thu 04 Dec 2025 20:24:57 +0000 Manifest this update: Thu 04 Dec 2025 20:24:57 +0000 Manifest next update: Thu 11 Dec 2025 20:24:57 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: z8sw8B53DzCUorcAAqUN1UW/hSzeC9Dtbw3SSe3ZipI=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Dec 4 20:24:57 2025 GMT Not After : Dec 11 20:24:57 2025 GMT Subject: CN=6931ee19-b407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cd:57:bb:39:03:6f:f1:fe:e8:be:09:a6:74: 84:df:72:d0:19:17:64:2e:d8:56:75:20:e6:d1:d5: 59:18:5e:30:8f:0e:06:8e:e2:31:5a:dd:20:92:b0: 60:75:e8:ff:2b:43:e5:b7:3d:55:58:f0:92:83:23: 3c:36:0e:e6:22:86:0d:fd:ad:15:da:bb:61:72:de: 17:bf:4d:44:7e:72:ec:22:4c:84:16:6b:b7:5d:8c: 33:21:48:85:4e:7a:90:31:1d:b0:15:74:ba:ad:c2: 93:19:5d:96:8b:61:03:77:b5:f0:1f:9f:d7:63:c5: 23:e8:1f:97:53:85:49:fd:71:cf:1c:86:42:bd:a3: fb:99:f7:08:25:a1:2a:f1:2d:00:32:88:39:ab:99: 3e:b5:bc:13:79:2d:1b:00:49:66:04:72:ff:ad:c7: 5a:cc:10:b5:f3:9e:6c:b4:a9:3b:aa:e4:44:89:cd: 5c:b2:24:56:b3:b7:92:9f:25:44:59:5e:89:f9:7c: fc:be:4c:92:0e:1f:1f:b0:08:75:a6:59:79:a7:42: 67:cc:00:3e:da:25:60:07:9c:46:22:3e:04:fc:3b: 88:75:eb:ba:3a:c0:b9:33:bb:fd:4f:b1:30:14:c5: c0:4d:be:ad:4c:1a:67:41:d6:47:00:09:3d:ac:99: 2b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6C:20:B4:B6:C6:CF:F8:02:6F:36:BE:28:99:D5:66:57:2F:DE:C4 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:32:c2:e6:dc:ff:44:a3:42:3c:48:d2:55:a8:a8:c6:83:47: 0d:e3:15:5f:ee:fb:5f:cc:f7:bb:78:fd:db:e9:0a:ce:34:40: fa:bf:61:27:64:2d:fd:c1:69:3e:95:36:fb:67:d9:d1:d5:0b: 05:8e:f2:58:9e:02:8b:6f:3c:68:a3:38:6c:43:d4:08:8f:30: ef:71:ea:ee:d8:33:cb:33:25:b6:02:21:f1:87:5e:6d:67:c1: a6:df:db:41:85:70:80:06:ef:1d:76:0a:79:1d:78:23:dd:07: e1:7f:5f:11:da:e0:5a:6e:f9:e5:45:4c:15:0b:51:37:ec:36: 2c:60:d9:f1:74:d9:39:87:a6:59:1d:b6:31:a7:42:af:1c:5c: 16:21:d4:97:fd:f3:07:5f:b0:71:6e:7d:70:0f:95:c1:ea:99: 1b:08:67:5c:2d:1a:7d:76:30:20:74:2c:60:a6:b3:d4:1b:e4: 37:a5:5f:12:2a:f1:02:f4:fc:f6:4c:f0:cd:0d:c4:99:4e:8d: e7:23:be:7c:eb:2c:87:71:67:9e:8c:ee:61:9e:91:f0:e0:df: 4e:36:3b:4a:c4:3c:a5:06:78:70:61:0c:81:5b:78:dc:c6:c4: d5:c3:2e:f4:38:5f:35:f2:03:27:77:38:0e:ba:43:96:0f:4e: 97:cb:9b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUxMjA0MjAyNDU3WhcNMjUxMjExMjAyNDU3WjAYMRYwFAYD VQQDEw02OTMxZWUxOS1iNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt81XuzkDb/H+6L4JpnSE33LQGRdkLthWdSDm0dVZGF4wjw4GjuIxWt0gkrBg dej/K0Pltz1VWPCSgyM8Ng7mIoYN/a0V2rthct4Xv01EfnLsIkyEFmu3XYwzIUiF TnqQMR2wFXS6rcKTGV2Wi2EDd7XwH5/XY8Uj6B+XU4VJ/XHPHIZCvaP7mfcIJaEq 8S0AMog5q5k+tbwTeS0bAElmBHL/rcdazBC1855stKk7quREic1csiRWs7eSnyVE WV6J+Xz8vkySDh8fsAh1pll5p0JnzAA+2iVgB5xGIj4E/DuIdeu6OsC5M7v9T7Ew FMXATb6tTBpnQdZHAAk9rJkrEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxsILS2 xs/4Am82viiZ1WZXL97EMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaMsLm3P9Eo0I8SNJVqKjGg0cN4xVf7vtfzPe7eP3b6QrONED6v2En ZC39wWk+lTb7Z9nR1QsFjvJYngKLbzxoozhsQ9QIjzDvceru2DPLMyW2AiHxh15t Z8Gm39tBhXCABu8ddgp5HXgj3Qfhf18R2uBabvnlRUwVC1E37DYsYNnxdNk5h6ZZ HbYxp0KvHFwWIdSX/fMHX7Bxbn1wD5XB6pkbCGdcLRp9djAgdCxgprPUG+Q3pV8S KvEC9Pz2TPDNDcSZTo3nI7586yyHcWeejO5hnpHw4N9ONjtKxDylBnhwYQyBW3jc xsTVwy70OF818gMndzgOukOWD06Xy5tq -----END CERTIFICATE-----Generated at Sat Dec 6 15:08:49 2025 by rpki-client