This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: 5OBxjShaVqzU2hTTNzEKeKvqmM1/cHi0y0EVzppxm6s= Subject key identifier: AF:DA:CD:95:79:A6:B6:14:E6:8A:A7:54:C5:05:0D:79:47:76:50:0D Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 031E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0319 Signing time: Sun 21 Dec 2025 00:21:12 +0000 Manifest this update: Sun 21 Dec 2025 00:21:12 +0000 Manifest next update: Sun 28 Dec 2025 00:21:12 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: sn/0np2EB8f/arWM0w5KfAfSKmzgy1xUEt1nDhPDovU=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 798 (0x31e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Dec 21 00:21:12 2025 GMT Not After : Dec 28 00:21:12 2025 GMT Subject: CN=69473d78-726a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:38:1f:56:02:05:5c:83:42:1d:de:cd:20: 72:8b:56:43:aa:4b:f0:ea:90:fe:bf:3a:89:49:49: ec:09:21:87:60:51:47:38:6f:26:14:d1:0e:c7:2f: ad:6c:6b:28:a2:ca:10:a9:e5:4c:10:a7:39:4b:1a: 99:62:4b:74:01:07:e9:cb:01:a0:b6:b6:70:f3:ce: 1e:2a:a7:3c:c4:89:3b:83:f4:f4:f0:85:76:fc:f1: 7d:02:06:51:c3:f5:1b:73:3a:31:5a:51:1b:f5:ec: fd:0c:65:c6:27:5a:7b:d9:35:82:9b:bc:df:88:ef: ff:c6:2b:f3:7f:46:dd:6a:7f:58:bf:5f:a8:27:a9: 55:9d:b9:2c:6f:f5:4b:f2:10:eb:82:7d:ff:26:2f: 80:61:cd:59:29:40:cd:86:37:5e:5a:6e:d9:59:9b: 1f:62:58:2e:4d:28:c0:d7:05:ad:d3:bf:c3:7d:f3: 11:75:84:70:1a:f2:13:7f:06:75:5d:66:35:96:1b: a6:b2:a5:f0:eb:20:a8:0f:a6:75:ff:3d:d7:5f:25: 58:8a:f7:6a:37:2f:1d:45:39:83:c2:19:31:1b:45: 58:f1:29:06:2c:e0:29:58:25:6c:6e:51:d6:10:9a: 69:36:00:f8:bb:ee:c0:c8:db:69:ab:e5:3b:03:6d: a2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DA:CD:95:79:A6:B6:14:E6:8A:A7:54:C5:05:0D:79:47:76:50:0D X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:58:c3:10:32:ae:98:b2:86:b7:d0:79:9b:4f:bd:6a:2e:39: 81:2d:57:eb:7f:11:45:60:d9:07:e3:02:8c:61:ae:b1:18:0e: 77:6d:3b:c7:40:f4:48:5d:d0:d5:6c:b3:c6:12:0f:4e:4c:d3: b6:16:bf:56:28:8c:75:f3:b8:3b:53:ed:fc:76:49:5c:32:b1: 31:74:8b:35:8b:e9:bf:e8:6b:bf:1d:08:b5:f7:93:4e:dc:74: 06:e3:b8:e1:6e:84:7c:3e:f5:69:aa:4f:f7:fd:b6:b3:18:f7: 2b:de:e9:e7:e1:ca:e2:3d:e0:5e:d1:9f:53:5a:6e:58:a1:27: 35:df:4c:0f:bd:49:35:1f:93:cf:27:e0:02:b6:4c:13:ff:0b: 4c:7b:80:88:e7:16:6d:46:9f:be:93:db:98:6f:f2:df:2a:d9: f0:7d:e6:0a:63:06:d8:7e:e9:95:e8:c0:e9:62:b3:a4:b6:68: b4:49:bd:41:65:09:ab:7d:0b:91:8f:84:9e:f4:27:ba:8e:80: 0d:07:a3:6b:27:98:43:a2:de:07:49:17:e0:db:bb:6b:b4:34: e8:81:04:6a:d5:00:0a:64:1e:a2:b9:8b:84:7a:27:3c:0a:11: fa:bd:fc:6a:d9:b5:81:64:99:b7:58:93:31:0d:c4:dc:bd:cc: 24:24:e1:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUxMjIxMDAyMTEyWhcNMjUxMjI4MDAyMTEyWjAYMRYwFAYD VQQDDA02OTQ3M2Q3OC03MjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgM4H1YCBVyDQh3ezSByi1ZDqkvw6pD+vzqJSUnsCSGHYFFHOG8mFNEOxy+t bGsoosoQqeVMEKc5SxqZYkt0AQfpywGgtrZw884eKqc8xIk7g/T08IV2/PF9AgZR w/UbczoxWlEb9ez9DGXGJ1p72TWCm7zfiO//xivzf0bdan9Yv1+oJ6lVnbksb/VL 8hDrgn3/Ji+AYc1ZKUDNhjdeWm7ZWZsfYlguTSjA1wWt07/DffMRdYRwGvITfwZ1 XWY1lhumsqXw6yCoD6Z1/z3XXyVYivdqNy8dRTmDwhkxG0VY8SkGLOApWCVsblHW EJppNgD4u+7AyNtpq+U7A22inwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/azZV5 prYU5oqnVMUFDXlHdlANMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcWMMQMq6Ysoa30HmbT71qLjmBLVfrfxFFYNkH4wKMYa6xGA53bTvH QPRIXdDVbLPGEg9OTNO2Fr9WKIx187g7U+38dklcMrExdIs1i+m/6Gu/HQi195NO 3HQG47jhboR8PvVpqk/3/bazGPcr3unn4criPeBe0Z9TWm5YoSc130wPvUk1H5PP J+ACtkwT/wtMe4CI5xZtRp++k9uYb/LfKtnwfeYKYwbYfumV6MDpYrOktmi0Sb1B ZQmrfQuRj4Se9Ce6joANB6NrJ5hDot4HSRfg27trtDTogQRq1QAKZB6iuYuEeic8 ChH6vfxq2bWBZJm3WJMxDcTcvcwkJOGg -----END CERTIFICATE-----Generated at Sun Dec 21 05:22:58 2025 by rpki-client