This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: EDSwgfK+9k20ORp8ZBQa9kG+/c0SZwTN08YaPgqNSV0= Subject key identifier: 7D:1C:85:E3:AC:78:4A:D4:01:C2:4B:77:84:CA:1F:A8:94:50:73:20 Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 7E Signing time: Fri 05 Dec 2025 04:39:35 +0000 Manifest this update: Fri 05 Dec 2025 04:39:35 +0000 Manifest next update: Fri 12 Dec 2025 04:39:35 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: tEILRAJY3q331KBasdDm+voYP9aKUJXANnMw1/3UKPA=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: xmriq54EyLF1B3bTExDk9IsDRaD4W5eEAO8AyaCzAaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Dec 5 04:39:35 2025 GMT Not After : Dec 12 04:39:35 2025 GMT Subject: CN=69326207-5e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b5:98:54:7a:2f:90:96:30:4d:d7:8b:c9:77: b8:a8:49:3a:d5:cd:15:f1:89:3a:00:af:ad:35:c1: 54:65:27:78:74:4d:76:f5:c8:7b:73:6f:21:42:42: af:3d:01:3c:b5:af:2a:dc:fd:79:24:9e:3a:09:a4: 29:8a:5c:70:f3:20:03:ad:57:ea:03:02:67:c6:70: fa:ae:25:99:3f:30:1b:63:58:34:c7:61:01:2c:ca: 12:8c:b8:4e:ba:1c:6f:fe:63:80:81:06:cf:7d:d6: 0b:6d:fe:be:04:6b:50:5f:d7:1b:ad:89:12:cb:2e: a9:66:f1:0d:81:b7:72:40:23:27:f5:12:39:81:6d: 38:c3:ed:b2:6b:b9:0d:49:6c:16:e2:97:e4:31:1a: f6:7c:2f:79:82:8d:b1:23:d9:9f:e0:47:7f:70:e6: 66:94:b7:41:d6:74:05:83:2d:53:c7:79:8f:be:4a: 31:be:79:6f:37:43:0c:66:c2:35:a8:d0:93:05:66: 63:1f:6c:89:61:cd:65:1a:82:72:c5:f1:e5:f0:75: 77:19:f2:bf:5c:99:b4:6a:b0:9f:46:12:69:12:09: f4:58:67:d5:12:f0:39:d4:5b:1d:0a:be:d8:a3:9c: e3:19:61:37:0e:4d:f8:c2:ef:11:c5:6e:4d:dd:12: 5d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:1C:85:E3:AC:78:4A:D4:01:C2:4B:77:84:CA:1F:A8:94:50:73:20 X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:8e:ba:83:58:38:a2:3a:72:66:eb:bc:e6:80:78:46:db:d6: 7b:66:57:16:23:0c:a8:2d:17:fd:77:57:d5:53:73:04:58:0e: 26:a8:f2:55:b6:49:1e:f4:2e:3c:8a:84:56:45:af:61:01:41: e4:b6:75:92:45:e9:f2:7d:b2:c7:c5:15:a1:1d:33:8c:f4:0d: 6e:a1:65:bc:f5:b4:d5:83:81:cd:47:60:a6:dd:9e:0d:df:58: 10:c4:e6:2c:cd:fc:2a:93:c6:ad:b1:15:88:a9:dc:d3:fb:d1: f0:d5:40:27:0f:38:f3:b5:75:b1:6a:8d:34:ac:85:00:24:54: b1:c7:81:ab:3c:eb:97:0f:05:d3:a0:fe:a2:ad:e8:e0:05:4e: e5:90:98:4f:87:85:66:65:72:59:55:2b:18:06:d2:fc:38:3a: e4:58:6d:63:7f:bb:7c:49:5c:af:7b:6a:73:b5:1e:d8:ef:55: e0:03:91:0d:d3:0e:e0:09:b9:bd:21:a2:b7:0d:7d:91:ed:53: 5b:11:bd:7d:20:47:cb:66:0b:56:48:87:f5:fd:33:d9:73:fe: 4c:21:b3:86:03:1b:4a:47:0c:f4:55:57:20:bc:24:5c:50:7c: 79:0d:60:ff:86:7e:b9:03:2a:cf:ab:aa:fe:3d:f4:20:d2:4b: 8b:e5:32:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGQUMxMTAvBgNVBAUTKDlENDU2N0ZCRTI1MkM2NjE2NDJBQTMzRTc4MDQ4QTg3 MTdGQTdDQjMwHhcNMjUxMjA1MDQzOTM1WhcNMjUxMjEyMDQzOTM1WjAYMRYwFAYD VQQDEw02OTMyNjIwNy01ZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LWYVHovkJYwTdeLyXe4qEk61c0V8Yk6AK+tNcFUZSd4dE129ch7c28hQkKv PQE8ta8q3P15JJ46CaQpilxw8yADrVfqAwJnxnD6riWZPzAbY1g0x2EBLMoSjLhO uhxv/mOAgQbPfdYLbf6+BGtQX9cbrYkSyy6pZvENgbdyQCMn9RI5gW04w+2ya7kN SWwW4pfkMRr2fC95go2xI9mf4Ed/cOZmlLdB1nQFgy1Tx3mPvkoxvnlvN0MMZsI1 qNCTBWZjH2yJYc1lGoJyxfHl8HV3GfK/XJm0arCfRhJpEgn0WGfVEvA51FsdCr7Y o5zjGWE3Dk34wu8RxW5N3RJd3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0cheOs eErUAcJLd4TKH6iUUHMgMB8GA1UdIwQYMBaAFJ1FZ/viUsZhZCqjPngEiocX+nyz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0ZBQy9BRkY1NjNFNjEw MTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9uVVZuLS1KU3htRmtLcU0tZUFTS2h4ZjZm TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0ZBQy9BRkY1NjNFNjEwMTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9uVVZuLS1KU3ht RmtLcU0tZUFTS2h4ZjZmTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSjrqDWDiiOnJm67zmgHhG29Z7ZlcWIwyoLRf9d1fVU3MEWA4mqPJV tkke9C48ioRWRa9hAUHktnWSRenyfbLHxRWhHTOM9A1uoWW89bTVg4HNR2Cm3Z4N 31gQxOYszfwqk8atsRWIqdzT+9Hw1UAnDzjztXWxao00rIUAJFSxx4GrPOuXDwXT oP6irejgBU7lkJhPh4VmZXJZVSsYBtL8ODrkWG1jf7t8SVyve2pztR7Y71XgA5EN 0w7gCbm9IaK3DX2R7VNbEb19IEfLZgtWSIf1/TPZc/5MIbOGAxtKRwz0VVcgvCRc UHx5DWD/hn65AyrPq6r+PfQg0kuL5TJS -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:48 2025 by rpki-client