This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: z1OUMC40xoSRPaFr2Z4bh8Q0rzf2nY20B0M4z/aVjq4= Subject key identifier: 6D:A2:83:16:B1:80:9D:1D:2C:F0:71:F9:D4:08:BD:FA:48:FE:8B:A9 Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 04E0 Signing time: Sat 06 Dec 2025 22:29:05 +0000 Manifest this update: Sat 06 Dec 2025 22:29:04 +0000 Manifest next update: Sat 13 Dec 2025 22:29:04 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: UK1mwikD5YzP7bHuKXOs4qrW1/569Q61vQJv9wbcL9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Dec 6 22:29:04 2025 GMT Not After : Dec 13 22:29:04 2025 GMT Subject: CN=6934ae31-bcad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3b:2d:0f:09:84:0b:df:ce:10:1b:d8:a7:d7: 3f:ab:a0:29:c6:ff:7f:21:36:bd:09:5c:77:49:ea: 7d:f3:56:48:05:19:39:f1:f7:53:2e:9a:3b:26:96: 5a:64:a3:13:71:94:f0:5d:b3:cc:f1:f2:05:35:88: 55:62:80:1a:58:b0:7f:2b:55:9e:0c:60:f2:02:cc: 92:05:2b:3e:35:4e:ce:84:20:ba:57:d4:9e:d3:de: b1:07:9d:b6:36:19:60:57:41:24:7e:8d:f0:fd:ba: bc:ec:d3:c8:f6:cb:79:ec:c7:bc:d8:a5:49:73:10: 06:a9:0a:a8:c0:db:98:bc:21:3d:21:54:61:94:96: 05:ac:90:dc:a9:7f:c9:f4:50:b3:13:5d:a4:d0:be: 66:81:d6:1c:40:7c:26:d5:0f:41:2a:10:3d:57:6b: b0:c9:21:b7:4a:4a:14:b6:95:2d:b2:c2:fe:62:c9: 04:2f:94:38:75:57:70:9a:43:70:b5:eb:e7:1a:db: c4:af:27:d7:57:b3:20:61:65:d4:8c:b4:77:e8:fa: 86:87:77:df:83:92:20:c8:a2:61:1a:4d:0e:5a:18: d4:25:d1:4b:5e:56:30:f3:3a:02:66:65:e2:c0:25: 71:9e:c7:64:9d:bf:84:25:b6:c2:6e:3b:65:9d:6a: c4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:A2:83:16:B1:80:9D:1D:2C:F0:71:F9:D4:08:BD:FA:48:FE:8B:A9 X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2e:19:20:0f:28:fa:e9:aa:9d:64:30:c3:1c:ae:74:92:aa: 0c:db:2f:2e:67:79:1a:bf:0a:17:85:de:91:89:1e:e1:c9:19: f6:5c:7a:f2:b7:00:a8:32:e3:7c:d1:09:76:4f:b3:66:8e:a4: 28:a3:97:a7:57:b4:62:94:8f:b9:41:c9:b8:e5:bf:ef:5b:e5: 0d:3b:71:20:b6:41:9f:a4:9f:dc:a4:87:c7:06:be:73:d9:3e: 77:06:41:32:ec:a6:15:bc:86:8e:bb:87:7b:0b:ee:ab:25:d4: d2:70:60:67:2a:b5:09:7e:75:6a:62:6c:8a:b5:dd:16:2e:44: 3f:c8:2c:c9:0a:9c:7d:59:85:f2:bf:09:70:51:71:f2:20:93: 81:0b:65:e6:30:97:6b:fc:83:02:d9:ec:66:2d:d5:54:24:b7: 8e:f3:d7:57:e6:eb:cf:5c:26:61:dc:d9:ed:99:0a:71:0e:1c: cb:5b:96:39:9a:cd:50:8a:23:98:2e:76:11:03:b3:ad:c5:5c: 02:28:55:7a:c7:83:f6:0e:cb:82:2f:e9:ec:b7:9b:f4:33:3e: 96:b9:51:98:86:c4:48:93:b4:17:cc:72:2d:40:30:a1:be:d3: cd:2f:6b:7b:43:c5:81:4f:99:5b:91:bb:07:3a:5b:08:0d:c9: 78:47:04:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUxMjA2MjIyOTA0WhcNMjUxMjEzMjIyOTA0WjAYMRYwFAYD VQQDEw02OTM0YWUzMS1iY2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjstDwmEC9/OEBvYp9c/q6Apxv9/ITa9CVx3Sep981ZIBRk58fdTLpo7JpZa ZKMTcZTwXbPM8fIFNYhVYoAaWLB/K1WeDGDyAsySBSs+NU7OhCC6V9Se096xB522 NhlgV0Ekfo3w/bq87NPI9st57Me82KVJcxAGqQqowNuYvCE9IVRhlJYFrJDcqX/J 9FCzE12k0L5mgdYcQHwm1Q9BKhA9V2uwySG3SkoUtpUtssL+YskEL5Q4dVdwmkNw tevnGtvEryfXV7MgYWXUjLR36PqGh3ffg5IgyKJhGk0OWhjUJdFLXlYw8zoCZmXi wCVxnsdknb+EJbbCbjtlnWrE2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2igxax gJ0dLPBx+dQIvfpI/oupMB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtLhkgDyj66aqdZDDDHK50kqoM2y8uZ3kavwoXhd6RiR7hyRn2XHry twCoMuN80Ql2T7NmjqQoo5enV7RilI+5Qcm45b/vW+UNO3EgtkGfpJ/cpIfHBr5z 2T53BkEy7KYVvIaOu4d7C+6rJdTScGBnKrUJfnVqYmyKtd0WLkQ/yCzJCpx9WYXy vwlwUXHyIJOBC2XmMJdr/IMC2exmLdVUJLeO89dX5uvPXCZh3NntmQpxDhzLW5Y5 ms1QiiOYLnYRA7OtxVwCKFV6x4P2DsuCL+nst5v0Mz6WuVGYhsRIk7QXzHItQDCh vtPNL2t7Q8WBT5lbkbsHOlsIDcl4RwRj -----END CERTIFICATE-----Generated at Sun Dec 7 04:31:10 2025 by rpki-client