This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: LImQGtqqWZxP4l1D/Cpu3DK1zXS3r/U9Mn7QA+gnOe4= Subject key identifier: 9C:13:20:3C:63:A5:E2:48:D0:BB:37:AB:48:E1:4A:32:CA:AA:37:F1 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 0316 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0311 Signing time: Thu 04 Dec 2025 23:32:11 +0000 Manifest this update: Thu 04 Dec 2025 23:32:10 +0000 Manifest next update: Thu 11 Dec 2025 23:32:10 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: L/npHSzi832orOzt36dwDlIGxE1Mpk/bU756EUFoyxg=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Dec 4 23:32:10 2025 GMT Not After : Dec 11 23:32:10 2025 GMT Subject: CN=693219fa-ab4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d0:5a:9d:48:ee:ad:86:13:f9:04:4f:19:45: 52:bc:12:57:3b:56:00:92:7e:4c:6c:59:68:bf:30: aa:cc:9e:7d:97:ef:8f:9c:c0:27:fa:40:bf:dd:7d: f2:8c:ce:a9:8f:d3:d2:8d:9e:fe:36:45:65:db:dd: dd:f7:4c:fd:e6:8a:86:2e:93:98:5e:4e:71:95:44: 11:25:03:b7:ed:79:51:28:13:21:ee:3e:41:a0:00: 76:c4:d7:d2:ef:54:05:fe:0e:f0:f8:ba:ca:53:83: bf:e1:d0:b8:1f:1f:d3:4c:9d:64:bb:4c:5e:14:41: 52:8f:ce:66:92:e6:f8:72:22:84:8e:40:f6:28:12: 44:4d:c2:3b:19:7d:94:48:25:8d:7b:a1:1d:cc:38: 20:51:50:e1:c0:ba:8b:87:5a:03:15:f2:fa:63:41: 25:f8:4b:37:c3:b8:60:f3:13:a4:fb:89:ad:7f:fb: 7d:3f:7c:97:7b:e7:ff:a6:85:65:af:cd:d8:f4:24: c8:47:59:6a:8d:2d:61:6d:81:70:a9:cd:bf:b4:b3: 78:8c:b1:92:a0:06:e7:5d:24:36:f8:a3:d9:35:20: a7:a8:e6:25:4d:5a:4e:17:99:0e:fc:2f:f5:8c:00: 01:02:1e:aa:1d:36:25:ac:f7:ab:d9:6d:75:d1:c4: b8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:13:20:3C:63:A5:E2:48:D0:BB:37:AB:48:E1:4A:32:CA:AA:37:F1 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:9f:0d:7e:40:04:f2:32:6f:01:fd:df:c7:ad:cf:94:ca:bf: 8f:be:9e:32:1a:bc:1a:c2:1f:05:e3:65:af:04:ed:8f:21:c5: d7:c3:d7:c9:ed:a0:71:43:92:92:4e:d3:bf:29:af:33:be:19: ef:24:c9:9e:15:fa:cc:bf:7a:36:aa:0b:20:cb:3f:23:6b:0c: 5a:e0:f0:6f:1c:d6:af:72:74:1f:6d:65:43:4f:d5:a0:a7:1e: 4a:12:3f:d2:08:1e:39:6f:9b:7d:8c:e2:ce:af:15:2d:68:36: 33:29:60:72:3b:d6:75:8d:4a:77:12:a0:c3:f4:1c:fb:1c:ca: 15:4e:4b:d8:62:14:59:05:ca:4b:14:ae:05:b8:7d:55:09:f6: fc:df:17:ba:11:57:7e:ec:b9:a4:4e:05:b1:6a:f5:3e:09:53: ae:f1:4f:fa:ef:b0:49:c3:89:b3:23:a1:b6:45:e0:60:85:58: b1:68:97:34:15:f4:76:18:0a:44:49:b4:03:38:17:c4:60:e2: 73:76:1e:2e:31:48:b1:4a:5a:16:94:98:45:ff:f2:f6:a1:3e: 21:71:c2:52:1a:89:cb:5c:3e:99:7e:09:31:26:e9:bb:2e:ab: de:42:60:50:ce:70:1a:8c:8d:e3:cb:70:50:a5:0d:c3:6c:87: 02:9e:98:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUxMjA0MjMzMjEwWhcNMjUxMjExMjMzMjEwWjAYMRYwFAYD VQQDEw02OTMyMTlmYS1hYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dBanUjurYYT+QRPGUVSvBJXO1YAkn5MbFlovzCqzJ59l++PnMAn+kC/3X3y jM6pj9PSjZ7+NkVl293d90z95oqGLpOYXk5xlUQRJQO37XlRKBMh7j5BoAB2xNfS 71QF/g7w+LrKU4O/4dC4Hx/TTJ1ku0xeFEFSj85mkub4ciKEjkD2KBJETcI7GX2U SCWNe6EdzDggUVDhwLqLh1oDFfL6Y0El+Es3w7hg8xOk+4mtf/t9P3yXe+f/poVl r83Y9CTIR1lqjS1hbYFwqc2/tLN4jLGSoAbnXSQ2+KPZNSCnqOYlTVpOF5kO/C/1 jAABAh6qHTYlrPer2W110cS48wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwTIDxj peJI0Ls3q0jhSjLKqjfxMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBenw1+QATyMm8B/d/Hrc+Uyr+Pvp4yGrwawh8F42WvBO2PIcXXw9fJ 7aBxQ5KSTtO/Ka8zvhnvJMmeFfrMv3o2qgsgyz8jawxa4PBvHNavcnQfbWVDT9Wg px5KEj/SCB45b5t9jOLOrxUtaDYzKWByO9Z1jUp3EqDD9Bz7HMoVTkvYYhRZBcpL FK4FuH1VCfb83xe6EVd+7LmkTgWxavU+CVOu8U/677BJw4mzI6G2ReBghVixaJc0 FfR2GApESbQDOBfEYOJzdh4uMUixSloWlJhF//L2oT4hccJSGonLXD6ZfgkxJum7 LqveQmBQznAajI3jy3BQpQ3DbIcCnpiq -----END CERTIFICATE-----Generated at Sat Dec 6 23:25:42 2025 by rpki-client