This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: Biil5zA83HWEjXfo+tHq5IE0HfhhxyiRfKTrmmvUyFc= Subject key identifier: E8:21:F2:90:10:0B:7F:E1:EF:7B:F2:AD:CD:9C:9C:4A:B0:D2:0A:63 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 014C Signing time: Fri 05 Dec 2025 02:29:41 +0000 Manifest this update: Fri 05 Dec 2025 02:29:40 +0000 Manifest next update: Fri 12 Dec 2025 02:29:40 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: nca8sERSNwnDP8BLIp4CNABSboUCOamSa1yIt2X8zMg=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: /KMShVz7xPQb/IFHjv8WLpc7f7w5sCo+1tbPQq7vaKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Dec 5 02:29:40 2025 GMT Not After : Dec 12 02:29:40 2025 GMT Subject: CN=69324395-2ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:15:86:b4:a5:89:71:ce:18:5c:66:5b:44:f6: 97:e5:aa:d9:ab:cc:cd:24:79:85:23:c5:98:6a:b3: 8a:e0:ab:3f:81:71:05:4c:58:df:0d:2e:0a:d8:43: 14:6e:97:c5:2f:1d:6b:53:7b:0f:c0:64:42:50:0a: 88:e7:bc:d8:9d:77:7f:99:8e:00:20:ea:11:f3:cf: 03:34:78:53:8d:db:2d:f8:3d:f0:ad:da:15:ea:45: 7b:80:4e:d4:36:b1:cb:a4:e1:ec:c3:a2:f9:60:38: c8:c5:46:f8:09:c4:28:d2:a0:8c:f9:ad:0d:b7:4c: 5d:3e:a1:58:32:75:ec:e7:5d:a0:0f:cc:b3:8d:5a: e0:ac:d1:c6:51:4c:dd:6a:94:79:e8:14:cd:d3:49: 10:b9:c7:0e:59:82:d8:d3:67:1d:ca:cb:fa:2d:f8: f3:d8:d3:41:7a:b2:6f:1b:d2:59:70:5e:89:ae:61: 40:a2:83:ae:6d:45:ee:b5:e0:f2:9f:45:46:ee:cd: 12:42:44:42:e5:21:90:be:a6:98:52:b8:d4:93:89: a4:18:94:6c:e3:cb:52:34:47:2d:7a:b3:e0:da:60: 18:19:bd:f4:4e:2d:86:96:72:1e:c9:4c:0b:ef:09: fa:49:42:9f:1f:a8:b4:b4:56:ff:0b:8e:49:94:9f: c7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:21:F2:90:10:0B:7F:E1:EF:7B:F2:AD:CD:9C:9C:4A:B0:D2:0A:63 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e2:18:2d:ea:1d:81:cb:43:80:bc:b6:50:77:75:af:2d:7c: 04:a8:43:5c:83:95:17:ef:9c:d7:65:7a:21:a9:39:9b:50:83: 12:ac:61:bf:86:66:e3:48:75:9d:f1:27:a9:aa:6d:45:b7:70: d6:7c:46:67:2a:dc:cb:ed:97:02:d9:cf:57:2a:a0:08:d8:8c: c8:a8:1b:4e:19:03:ba:4d:35:d3:b1:f6:a3:87:44:33:20:17: f4:ce:de:5b:c9:d6:ac:90:cd:6e:86:4f:99:2f:79:8f:55:f0: d8:fa:c4:5a:d5:9a:36:3c:66:ad:39:c9:ec:3d:13:8b:b5:95: 90:40:c2:11:df:70:ec:80:57:f3:07:41:e0:3d:e4:ca:75:59: 93:db:a8:50:73:6f:55:ac:8f:47:85:da:7f:44:ae:58:49:3e: 3d:19:c5:d3:5b:92:33:3c:23:b4:cb:67:b3:9c:70:7c:bb:82: 2f:60:54:d8:83:6b:e1:64:7c:f5:71:3b:19:64:a7:ca:c5:1a: ae:8a:a2:25:36:1d:b2:bb:97:a0:9f:09:64:16:bd:a4:18:d1: 10:12:46:ea:f3:f9:f5:25:5a:c3:a2:66:a9:5e:5e:3c:a5:7c: c5:80:7a:ed:f2:32:74:5a:07:73:2f:cd:eb:c4:20:05:78:8b: ac:97:80:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjUxMjA1MDIyOTQwWhcNMjUxMjEyMDIyOTQwWjAYMRYwFAYD VQQDEw02OTMyNDM5NS0yZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RWGtKWJcc4YXGZbRPaX5arZq8zNJHmFI8WYarOK4Ks/gXEFTFjfDS4K2EMU bpfFLx1rU3sPwGRCUAqI57zYnXd/mY4AIOoR888DNHhTjdst+D3wrdoV6kV7gE7U NrHLpOHsw6L5YDjIxUb4CcQo0qCM+a0Nt0xdPqFYMnXs512gD8yzjVrgrNHGUUzd apR56BTN00kQuccOWYLY02cdysv6Lfjz2NNBerJvG9JZcF6JrmFAooOubUXuteDy n0VG7s0SQkRC5SGQvqaYUrjUk4mkGJRs48tSNEcterPg2mAYGb30Ti2GlnIeyUwL 7wn6SUKfH6i0tFb/C45JlJ/HVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgh8pAQ C3/h73vyrc2cnEqw0gpjMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD4hgt6h2By0OAvLZQd3WvLXwEqENcg5UX75zXZXohqTmbUIMSrGG/ hmbjSHWd8Sepqm1Ft3DWfEZnKtzL7ZcC2c9XKqAI2IzIqBtOGQO6TTXTsfajh0Qz IBf0zt5bydaskM1uhk+ZL3mPVfDY+sRa1Zo2PGatOcnsPROLtZWQQMIR33DsgFfz B0HgPeTKdVmT26hQc29VrI9Hhdp/RK5YST49GcXTW5IzPCO0y2eznHB8u4IvYFTY g2vhZHz1cTsZZKfKxRquiqIlNh2yu5egnwlkFr2kGNEQEkbq8/n1JVrDomapXl48 pXzFgHrt8jJ0WgdzL83rxCAFeIusl4AN -----END CERTIFICATE-----Generated at Sat Dec 6 16:05:52 2025 by rpki-client