This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: Zj1l9qogLBdTYUfj83SC2EEiQyjoWjgHtYp6dQdSqgY= Subject key identifier: BC:04:4C:C2:BC:89:2A:3A:BB:1A:56:A3:64:86:63:CE:F9:D0:A5:35 Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2AB2 Signing time: Sat 06 Dec 2025 15:20:59 +0000 Manifest this update: Sat 06 Dec 2025 15:20:59 +0000 Manifest next update: Sat 13 Dec 2025 15:20:59 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: SA96yGMsc6Zh8ZcIKcJR0++xRJcBM1YPL2Hpw9taBE0=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: Ey/Kmg1iRRIttYY5811s3SHGsRnkg9ROhR5r3BngPPg=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: foVnGp/jqxcrwmjuMi9JIuJxuKPFhTJXYXUK/5x/qrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10994 (0x2af2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: Dec 6 15:20:59 2025 GMT Not After : Dec 13 15:20:59 2025 GMT Subject: CN=693449db-d996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7d:f3:46:b3:7f:1e:b8:89:e1:4e:dd:3e:27: 12:33:6d:6b:c8:df:41:0e:81:ba:29:b6:82:f0:26: 76:65:55:79:56:e5:a4:a9:6c:89:5e:e1:1a:19:a6: 37:3a:ec:d1:2e:1b:0d:35:bf:16:5d:c2:a4:85:a0: 5f:95:c9:69:2e:e6:35:53:55:b7:43:67:97:da:34: 88:70:13:13:7e:8f:56:35:12:07:91:6a:0d:18:85: d3:13:50:15:9c:b9:b6:d1:d6:32:d0:74:bd:60:ee: ec:fe:a9:1e:2d:a9:83:a7:2d:e8:32:fd:32:27:50: a3:c8:18:cd:91:ac:99:d9:7d:e6:6f:df:c4:b4:ed: c4:d7:bc:1f:38:28:0d:9a:cc:69:d0:75:e2:fd:4f: 73:c2:f5:96:2f:8b:f8:72:a8:1d:04:b2:5a:34:c7: 02:85:cc:bb:b1:88:aa:df:7d:49:90:e8:d1:ec:60: dd:37:f9:e4:64:94:65:0a:4f:5e:78:90:38:ba:ee: 93:e9:11:68:b1:83:41:4a:60:4d:c6:10:4f:be:c6: e0:a9:cd:e2:5f:f8:31:1f:ff:f9:bc:19:d1:f0:52: 59:9c:78:9f:5b:6b:58:e4:b4:e1:4f:dd:55:32:de: d9:cb:7d:bf:ec:56:3f:48:0f:56:3b:ac:b8:b5:39: 2e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:04:4C:C2:BC:89:2A:3A:BB:1A:56:A3:64:86:63:CE:F9:D0:A5:35 X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:56:5c:b8:db:15:25:4c:76:2a:f9:72:6e:f2:95:0d:4b:cf: bc:f9:67:ee:a8:81:4a:bc:ba:2c:ec:ef:0c:48:1e:ef:fc:19: 4b:a4:d8:0a:be:32:b4:4a:9d:90:f2:f0:33:90:12:6e:03:a9: 8b:5f:75:12:c6:b6:6a:6b:6a:b4:83:29:50:ff:9a:41:05:d7: 5e:bf:da:d4:c8:18:0f:19:a7:fd:4b:00:e2:59:57:98:3b:24: 80:1b:3f:f7:ce:96:fd:32:3a:e4:fb:75:d5:b4:79:ff:1d:24: 50:e1:2f:7a:e3:37:82:01:dc:3b:ec:1f:7e:2f:fe:ac:6d:dd: b7:1a:cf:d9:b2:a9:cb:4d:31:53:96:6f:bf:3b:34:f3:f3:00: 56:fb:c6:19:36:87:53:fb:e3:18:06:8a:c3:72:87:5c:7f:74: 94:95:f5:7c:9c:b1:dd:59:cf:4a:ce:4d:01:ca:b9:d8:1b:19: 66:47:a7:22:c3:7f:b0:95:a5:c3:de:73:38:85:53:fa:ac:d6: 3d:c3:72:55:49:4d:79:13:ae:22:a0:e0:b6:ac:44:63:2f:7d: a9:2f:49:d8:e7:14:99:25:21:84:66:9f:e2:d1:f3:97:95:cd: bd:d2:09:5c:c0:fa:3f:c4:40:42:f2:04:67:67:ad:2b:de:5c: 4d:00:62:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjUxMjA2MTUyMDU5WhcNMjUxMjEzMTUyMDU5WjAYMRYwFAYD VQQDEw02OTM0NDlkYi1kOTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6H3zRrN/HriJ4U7dPicSM21ryN9BDoG6KbaC8CZ2ZVV5VuWkqWyJXuEaGaY3 OuzRLhsNNb8WXcKkhaBflclpLuY1U1W3Q2eX2jSIcBMTfo9WNRIHkWoNGIXTE1AV nLm20dYy0HS9YO7s/qkeLamDpy3oMv0yJ1CjyBjNkayZ2X3mb9/EtO3E17wfOCgN msxp0HXi/U9zwvWWL4v4cqgdBLJaNMcChcy7sYiq331JkOjR7GDdN/nkZJRlCk9e eJA4uu6T6RFosYNBSmBNxhBPvsbgqc3iX/gxH//5vBnR8FJZnHifW2tY5LThT91V Mt7Zy32/7FY/SA9WO6y4tTkuJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwETMK8 iSo6uxpWo2SGY8750KU1MB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLVly42xUlTHYq+XJu8pUNS8+8+WfuqIFKvLos7O8MSB7v/BlLpNgK vjK0Sp2Q8vAzkBJuA6mLX3USxrZqa2q0gylQ/5pBBddev9rUyBgPGaf9SwDiWVeY OySAGz/3zpb9Mjrk+3XVtHn/HSRQ4S964zeCAdw77B9+L/6sbd23Gs/ZsqnLTTFT lm+/OzTz8wBW+8YZNodT++MYBorDcodcf3SUlfV8nLHdWc9Kzk0ByrnYGxlmR6ci w3+wlaXD3nM4hVP6rNY9w3JVSU15E64ioOC2rERjL32pL0nY5xSZJSGEZp/i0fOX lc290glcwPo/xEBC8gRnZ60r3lxNAGIw -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:11 2025 by rpki-client