This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft File: Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft (raw, json) Hash identifier: 0eEOVmJ3OGm4afEerUcYQNx6V9ZAClsz9DfRSi2MsA4= Subject key identifier: 13:D5:2E:65:43:1E:93:D4:53:74:B5:05:4B:13:DE:00:61:3C:3D:6A Authority key identifier: 36:0C:7C:7B:5C:6C:69:A9:06:9D:82:5B:F1:C7:0A:F2:08:DA:33:7B Certificate issuer: /CN=A9146251/serialNumber=360C7C7B5C6C69A9069D825BF1C70AF208DA337B Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft Manifest number: A4 Signing time: Fri 05 Dec 2025 04:16:15 +0000 Manifest this update: Fri 05 Dec 2025 04:16:14 +0000 Manifest next update: Fri 12 Dec 2025 04:16:14 +0000 Files and hashes: 1: Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl (hash: H4XrTWiGwWx7EHddBXmEIwIyzNzqT69T3oz3gD4ysN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146251, serialNumber=360C7C7B5C6C69A9069D825BF1C70AF208DA337B Validity Not Before: Dec 5 04:16:14 2025 GMT Not After : Dec 12 04:16:14 2025 GMT Subject: CN=69325c8f-de28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ce:c7:05:00:d5:b5:50:d6:81:64:3a:52:5c: e4:fc:81:30:73:2d:52:ec:95:57:6b:00:e5:a4:c4: 78:d7:b1:eb:06:97:17:43:4e:b0:7c:d7:e9:75:fc: 20:37:75:b3:4c:e8:03:cb:96:3d:82:51:86:df:f3: 6b:e2:49:2a:36:6a:48:99:4f:4b:ee:fa:14:c5:2c: 33:69:c3:04:9c:69:91:2e:ec:97:75:34:eb:ea:82: 8c:9b:60:a2:28:23:ce:9c:16:5a:6b:c1:dc:77:bc: e1:64:98:19:66:4b:91:60:33:81:37:1b:ab:da:90: 0a:0e:47:9c:1d:1a:f5:bf:87:d2:84:e3:3f:ef:ba: 1c:8e:d7:b0:8d:ca:f9:1d:9b:10:1e:c8:4c:78:08: b1:2a:b6:3f:f6:97:71:d7:fe:ed:9c:a4:4f:01:81: bd:8d:d9:4a:ba:b6:66:d3:3c:86:97:ad:e7:4b:cf: d2:f9:07:a6:60:2d:d5:90:d3:fc:33:a0:94:b9:f2: 87:b6:aa:61:d5:b8:43:47:bc:df:90:01:c6:9a:66: d1:6c:15:f1:74:6b:65:3f:e0:c6:72:9f:72:2b:ba: 02:25:d5:6a:cc:86:9c:30:f4:ac:aa:33:90:d5:68: 12:aa:26:bd:22:a6:f3:7d:b4:a2:c6:10:17:1b:54: 65:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D5:2E:65:43:1E:93:D4:53:74:B5:05:4B:13:DE:00:61:3C:3D:6A X509v3 Authority Key Identifier: keyid:36:0C:7C:7B:5C:6C:69:A9:06:9D:82:5B:F1:C7:0A:F2:08:DA:33:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:95:69:23:d9:b9:1d:9a:80:e6:79:af:73:d8:28:cb:fe:f3: 9f:68:90:48:7a:65:3e:4c:31:7b:12:9d:e8:2c:05:b7:1a:94: 69:27:a2:0a:72:19:de:60:fa:9f:83:78:79:3e:93:cc:a5:5f: 89:87:8d:c3:d3:62:89:ad:cd:24:83:38:ba:c2:34:97:54:4d: 07:76:fa:c5:3e:f2:d9:48:f1:38:ae:6b:8c:31:f8:7d:e9:51: 2c:09:fb:15:38:5c:9c:88:a3:cc:bf:87:22:76:f0:c3:4c:07: d9:d2:01:57:dd:34:9f:90:7a:92:0a:5d:63:8b:ff:2b:a2:45: 8a:8e:03:14:23:46:8d:d0:5d:c7:45:3f:d9:25:07:d4:a6:59: d5:03:f1:0d:99:07:30:b5:ef:41:64:06:8b:87:c3:d1:52:09: 2b:a0:1c:87:37:2d:76:ff:c8:07:b9:52:24:18:ba:18:3d:5e: 0c:63:15:b0:50:82:a2:56:2d:c8:74:2b:5b:a9:41:c6:76:aa: 18:76:25:18:58:2d:ee:d3:4b:3d:76:90:d0:0b:14:d0:3c:e6: 54:62:65:c0:a3:ef:5a:ab:36:0c:19:ed:bd:01:c0:b9:fd:2f: 3a:e3:4c:17:9a:5e:49:8c:7a:aa:bd:70:bc:1f:4b:f5:e4:2e: 9e:fd:65:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyNTExMTAvBgNVBAUTKDM2MEM3QzdCNUM2QzY5QTkwNjlEODI1QkYxQzcwQUYy MDhEQTMzN0IwHhcNMjUxMjA1MDQxNjE0WhcNMjUxMjEyMDQxNjE0WjAYMRYwFAYD VQQDEw02OTMyNWM4Zi1kZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs7HBQDVtVDWgWQ6Ulzk/IEwcy1S7JVXawDlpMR417HrBpcXQ06wfNfpdfwg N3WzTOgDy5Y9glGG3/Nr4kkqNmpImU9L7voUxSwzacMEnGmRLuyXdTTr6oKMm2Ci KCPOnBZaa8Hcd7zhZJgZZkuRYDOBNxur2pAKDkecHRr1v4fShOM/77ocjtewjcr5 HZsQHshMeAixKrY/9pdx1/7tnKRPAYG9jdlKurZm0zyGl63nS8/S+QemYC3VkNP8 M6CUufKHtqph1bhDR7zfkAHGmmbRbBXxdGtlP+DGcp9yK7oCJdVqzIacMPSsqjOQ 1WgSqia9IqbzfbSixhAXG1RlCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPVLmVD HpPUU3S1BUsT3gBhPD1qMB8GA1UdIwQYMBaAFDYMfHtcbGmpBp2CW/HHCvII2jN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjI1MS8wQjE2RUFBNEQ4 NzExMUVGOThDMjYwNzVDNEY5QUUwMi9OZ3g4ZTF4c2Fha0duWUpiOGNjSzhnamFN M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05neDhlMXhzYWFrR25ZSmI4Y2NLOGdqYU0zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjI1MS8wQjE2RUFBNEQ4NzExMUVGOThDMjYwNzVDNEY5QUUwMi9OZ3g4ZTF4c2Fh a0duWUpiOGNjSzhnamFNM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAllWkj2bkdmoDmea9z2CjL/vOfaJBIemU+TDF7Ep3oLAW3GpRpJ6IK chneYPqfg3h5PpPMpV+Jh43D02KJrc0kgzi6wjSXVE0HdvrFPvLZSPE4rmuMMfh9 6VEsCfsVOFyciKPMv4cidvDDTAfZ0gFX3TSfkHqSCl1ji/8rokWKjgMUI0aN0F3H RT/ZJQfUplnVA/ENmQcwte9BZAaLh8PRUgkroByHNy12/8gHuVIkGLoYPV4MYxWw UIKiVi3IdCtbqUHGdqoYdiUYWC3u00s9dpDQCxTQPOZUYmXAo+9aqzYMGe29AcC5 /S8640wXml5JjHqqvXC8H0v15C6e/WUv -----END CERTIFICATE-----Generated at Sat Dec 6 18:30:26 2025 by rpki-client