This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft File: nQi_OKDTi4yrfP2I9djE7WZ3jME.mft (raw, json) Hash identifier: 0z3Wdgl4mMNYKZ7qnxGm8Q2DmFOF3+1r+4g9ZboYCK0= Subject key identifier: DA:A8:F3:65:ED:DD:A5:EB:E0:6F:9C:49:56:9E:29:04:D2:00:90:5D Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft Manifest number: 0173 Signing time: Fri 05 Dec 2025 02:01:53 +0000 Manifest this update: Fri 05 Dec 2025 02:01:52 +0000 Manifest next update: Fri 12 Dec 2025 02:01:52 +0000 Files and hashes: 1: nQi_OKDTi4yrfP2I9djE7WZ3jME.crl (hash: WizQQYDfmzfCpPx9nm7I/vS8D2KeIm9QrtmYQmhJ/i4=) 2: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (hash: tBwNVvJX12RI1rw1ArvMyaYybwsSqQmw1mHttd1wbm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF, serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Validity Not Before: Dec 5 02:01:52 2025 GMT Not After : Dec 12 02:01:52 2025 GMT Subject: CN=69323d10-d32a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:30:72:9b:94:c3:c7:14:8c:4e:b7:bb:53:2a: 60:fe:e1:68:1d:e5:27:5e:35:58:45:7b:24:45:88: 89:1d:a5:9e:4d:59:e0:f0:d7:4a:eb:dc:0c:e8:30: a9:dc:2b:87:6f:e7:ae:58:18:ef:34:bb:f4:c2:3b: 2c:66:7c:8f:47:e5:6c:7c:dd:6d:b3:0e:8f:4a:31: 36:2c:34:ae:93:80:a7:24:5e:68:3d:37:d4:17:17: 1e:d9:2b:47:63:1f:60:7b:99:4a:03:5a:68:fd:1a: 46:2d:df:78:04:69:f3:56:9f:a6:05:e2:5c:18:d0: de:36:9e:8f:02:f5:64:65:13:65:f8:ce:0e:ef:d2: 16:f9:94:c0:21:f6:49:ee:1f:9d:0b:5f:af:68:1a: 67:ba:ea:4a:8f:c5:78:f0:cb:02:fc:32:12:28:0c: aa:d0:19:12:83:41:61:44:76:5a:7e:25:0e:36:56: e4:80:50:ca:c7:db:8b:5d:52:ca:10:29:4e:ab:d1: e5:8e:a7:c6:83:4e:5c:6a:28:30:ef:8e:e4:1b:33: 6f:50:2a:9c:d3:aa:d3:76:e7:7c:0c:63:bc:a2:d4: 61:fc:64:1d:c2:52:7b:41:03:f5:64:03:4f:fc:3f: d2:5c:b3:0c:cc:36:18:49:8c:16:c8:99:78:aa:4e: 1e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A8:F3:65:ED:DD:A5:EB:E0:6F:9C:49:56:9E:29:04:D2:00:90:5D X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:54:37:a9:2d:bf:c8:bd:27:c5:40:41:cb:64:f9:79:02:43: 4b:1a:91:7d:53:80:2d:62:07:57:c5:68:29:1e:23:50:44:40: 67:53:de:e9:da:2d:5a:83:f8:f4:ae:cd:d9:5b:63:dd:af:ae: b6:ac:28:8e:34:4a:e7:7a:b1:2b:44:22:8a:f0:90:7b:a5:37: bd:9e:32:05:b3:65:bd:be:3a:3b:17:ef:e4:62:32:bf:e3:8d: aa:2c:f2:a6:32:3a:91:6f:5c:ce:f9:39:6a:b3:dc:66:43:af: 8d:94:dc:5f:52:13:42:db:89:97:46:c1:aa:9c:2c:ec:5e:6a: 52:1c:01:4d:1f:40:26:b9:c8:f1:77:ab:da:29:87:95:2f:2d: 18:19:eb:b5:90:12:c0:ab:a7:ce:44:7c:7f:f6:7b:ec:d0:10: a2:9a:a0:52:8c:cb:5d:42:f1:84:8d:67:04:a7:ab:c3:52:0a: cd:95:9a:0f:98:10:c2:14:40:78:e4:54:6c:6a:3a:8e:fd:98: 2a:7d:91:5a:5e:e4:a6:43:5d:e5:36:3a:56:03:0b:33:34:e6: 6a:99:39:5d:e6:0e:3e:2a:e8:0e:08:f2:c4:ef:77:ff:13:aa: 7a:18:3d:04:1a:72:ce:b2:86:e6:f8:8e:63:6d:52:54:ba:76: fe:18:81:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwREYxMTAvBgNVBAUTKDlEMDhCRjM4QTBEMzhCOENBQjdDRkQ4OEY1RDhDNEVE NjY3NzhDQzEwHhcNMjUxMjA1MDIwMTUyWhcNMjUxMjEyMDIwMTUyWjAYMRYwFAYD VQQDEw02OTMyM2QxMC1kMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTBym5TDxxSMTre7Uypg/uFoHeUnXjVYRXskRYiJHaWeTVng8NdK69wM6DCp 3CuHb+euWBjvNLv0wjssZnyPR+VsfN1tsw6PSjE2LDSuk4CnJF5oPTfUFxce2StH Yx9ge5lKA1po/RpGLd94BGnzVp+mBeJcGNDeNp6PAvVkZRNl+M4O79IW+ZTAIfZJ 7h+dC1+vaBpnuupKj8V48MsC/DISKAyq0BkSg0FhRHZafiUONlbkgFDKx9uLXVLK EClOq9HljqfGg05caigw747kGzNvUCqc06rTdud8DGO8otRh/GQdwlJ7QQP1ZANP /D/SXLMMzDYYSYwWyJl4qk4ePQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqo82Xt 3aXr4G+cSVaeKQTSAJBdMB8GA1UdIwQYMBaAFJ0Ivzig04uMq3z9iPXYxO1md4zB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBERi9FNTA4MzY0ODk5 MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0eXJmUDJJOWRqRTdXWjNq TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBERi9FNTA4MzY0ODk5MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0 eXJmUDJJOWRqRTdXWjNqTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIVDepLb/IvSfFQEHLZPl5AkNLGpF9U4AtYgdXxWgpHiNQREBnU97p 2i1ag/j0rs3ZW2Pdr662rCiONErnerErRCKK8JB7pTe9njIFs2W9vjo7F+/kYjK/ 442qLPKmMjqRb1zO+Tlqs9xmQ6+NlNxfUhNC24mXRsGqnCzsXmpSHAFNH0Amucjx d6vaKYeVLy0YGeu1kBLAq6fORHx/9nvs0BCimqBSjMtdQvGEjWcEp6vDUgrNlZoP mBDCFEB45FRsajqO/ZgqfZFaXuSmQ13lNjpWAwszNOZqmTld5g4+KugOCPLE73f/ E6p6GD0EGnLOsobm+I5jbVJUunb+GIF6 -----END CERTIFICATE-----Generated at Sat Dec 6 12:20:29 2025 by rpki-client