This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft File: nxMMOdAwdvSok0-jNJXO2TfiMKs.mft (raw, json) Hash identifier: YKGiITRzfLVG46BbGStWA6W6SgNgX30RcO6xScb1XuU= Subject key identifier: 4E:CB:C6:01:08:87:F5:6A:7B:CF:C2:B6:76:78:17:9D:8A:6B:6F:9D Authority key identifier: 9F:13:0C:39:D0:30:76:F4:A8:93:4F:A3:34:95:CE:D9:37:E2:30:AB Certificate issuer: /CN=A91430D6/serialNumber=9F130C39D03076F4A8934FA33495CED937E230AB Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft Manifest number: 4B Signing time: Fri 05 Dec 2025 05:10:32 +0000 Manifest this update: Fri 05 Dec 2025 05:10:32 +0000 Manifest next update: Fri 12 Dec 2025 05:10:32 +0000 Files and hashes: 1: nxMMOdAwdvSok0-jNJXO2TfiMKs.crl (hash: Pq0HvEPoQKseZfqULPkqID2aW/7xzKWZuCwvHbhS7AE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.crl rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91430D6, serialNumber=9F130C39D03076F4A8934FA33495CED937E230AB Validity Not Before: Dec 5 05:10:32 2025 GMT Not After : Dec 12 05:10:32 2025 GMT Subject: CN=69326948-24cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:23:8f:c1:a6:d6:6f:3b:3a:8c:ca:2c:bc:a8: 25:78:2c:79:bd:fb:e4:a4:ad:15:52:46:8d:91:3c: f9:16:e3:73:ec:96:ce:23:c7:80:cd:05:4a:64:e4: 06:69:1b:8d:bb:ce:0b:42:41:1c:7f:6f:33:fe:3b: 29:1c:d9:d5:7d:0f:a8:83:7c:af:e2:07:83:cf:27: 3b:6f:a5:94:67:88:0a:2a:98:b1:f3:c9:39:7a:33: 39:9a:9b:51:ce:cb:36:34:e2:ff:bf:d2:25:00:94: 1c:28:6b:c8:69:0c:cb:1e:c5:5d:eb:5b:30:df:cf: d4:6b:6b:9e:a2:db:52:e4:75:b6:65:02:b2:cb:10: 52:60:0b:6f:dc:ea:8c:73:94:88:87:1c:92:37:73: 25:d0:a0:84:a5:08:8a:23:d8:00:de:d1:a0:a9:ad: 9a:f7:68:7a:56:86:35:d1:cb:5f:1f:37:e8:25:c8: 82:55:82:3e:5f:32:b5:62:73:fc:e1:fd:de:7f:c0: 41:68:43:68:6b:ec:aa:b1:c2:40:d7:5f:16:d8:fa: d8:ad:50:57:d5:b1:36:55:8c:c6:cd:89:b3:40:7d: 55:ff:cb:d6:ee:11:17:2b:3f:3f:78:b9:cf:2f:ef: ea:5e:2a:80:41:97:92:91:23:d4:a1:7c:bd:e5:d1: d1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CB:C6:01:08:87:F5:6A:7B:CF:C2:B6:76:78:17:9D:8A:6B:6F:9D X509v3 Authority Key Identifier: keyid:9F:13:0C:39:D0:30:76:F4:A8:93:4F:A3:34:95:CE:D9:37:E2:30:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:3a:bb:b6:a0:da:c2:d3:21:5d:e4:7c:b3:c0:b7:9a:97:e8: 68:be:9c:80:93:7b:e8:8b:da:9b:a2:c8:54:8d:44:9b:19:b4: 11:97:82:1e:7a:15:c3:25:29:93:11:0a:42:b6:91:57:a6:da: 4f:52:e7:f2:1b:d8:80:d1:12:94:61:18:5d:a6:e6:f9:a2:8e: fb:60:a3:da:16:02:05:24:e0:6c:d7:00:43:df:94:1d:29:52: d1:71:60:d8:33:b3:74:96:de:64:91:04:b4:b8:59:08:e6:31: c7:4c:b1:dc:5c:dc:4a:da:9d:af:75:8e:cc:31:b0:68:d0:7c: 69:16:74:d9:96:ad:c0:6c:cf:e4:03:71:62:26:7e:71:47:69: cd:34:91:9c:61:56:ba:d0:7e:4c:67:9c:0f:6a:0e:90:15:ad: ba:09:86:31:13:26:06:d4:e4:2e:bf:79:ea:f7:01:47:d0:d5: ba:f8:12:7d:17:1b:87:26:dd:b7:cf:81:c3:17:a9:08:2e:03: ea:2a:0b:b0:14:a9:e3:e4:dc:82:eb:0e:ad:ef:f3:21:34:36: 72:b8:be:c8:01:bd:0b:df:c6:ab:78:a1:cc:bb:be:d4:b9:20: 85:ec:2e:33:94:fc:17:f7:fd:dc:9b:da:a4:4f:7a:b9:29:90: 98:87:e9:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MzBENjExMC8GA1UEBRMoOUYxMzBDMzlEMDMwNzZGNEE4OTM0RkEzMzQ5NUNFRDkz N0UyMzBBQjAeFw0yNTEyMDUwNTEwMzJaFw0yNTEyMTIwNTEwMzJaMBgxFjAUBgNV BAMTDTY5MzI2OTQ4LTI0Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChI4/BptZvOzqMyiy8qCV4LHm9++SkrRVSRo2RPPkW43Psls4jx4DNBUpk5AZp G427zgtCQRx/bzP+Oykc2dV9D6iDfK/iB4PPJztvpZRniAoqmLHzyTl6Mzmam1HO yzY04v+/0iUAlBwoa8hpDMsexV3rWzDfz9Rra56i21LkdbZlArLLEFJgC2/c6oxz lIiHHJI3cyXQoISlCIoj2ADe0aCprZr3aHpWhjXRy18fN+glyIJVgj5fMrVic/zh /d5/wEFoQ2hr7KqxwkDXXxbY+titUFfVsTZVjMbNibNAfVX/y9buERcrPz94uc8v 7+peKoBBl5KRI9ShfL3l0dFJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTsvGAQiH 9Wp7z8K2dngXnYprb50wHwYDVR0jBBgwFoAUnxMMOdAwdvSok0+jNJXO2TfiMKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzMEQ2LzIwRjlGM0IwNUZF MDExRjBCMkZEOEY1N0M0RjlBRTAyL254TU1PZEF3ZHZTb2swLWpOSlhPMlRmaU1L cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbnhNTU9kQXdkdlNvazAtak5KWE8yVGZpTUtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQz MEQ2LzIwRjlGM0IwNUZFMDExRjBCMkZEOEY1N0M0RjlBRTAyL254TU1PZEF3ZHZT b2swLWpOSlhPMlRmaU1Lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAE6u7ag2sLTIV3kfLPAt5qX6Gi+nICTe+iL2puiyFSNRJsZtBGXgh56 FcMlKZMRCkK2kVem2k9S5/Ib2IDREpRhGF2m5vmijvtgo9oWAgUk4GzXAEPflB0p UtFxYNgzs3SW3mSRBLS4WQjmMcdMsdxc3Erana91jswxsGjQfGkWdNmWrcBsz+QD cWImfnFHac00kZxhVrrQfkxnnA9qDpAVrboJhjETJgbU5C6/eer3AUfQ1br4En0X G4cm3bfPgcMXqQguA+oqC7AUqePk3ILrDq3v8yE0NnK4vsgBvQvfxqt4ocy7vtS5 IIXsLjOU/Bf3/dyb2qRPerkpkJiH6Qk= -----END CERTIFICATE-----Generated at Sat Dec 6 15:54:10 2025 by rpki-client