This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft File: n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft (raw, json) Hash identifier: 7fN1cciLvAeuoVfWQeVtGbWoA8SpB9x65yZY5mPNw54= Subject key identifier: 20:93:33:1A:20:79:F5:A4:FB:EB:13:F8:FF:02:FC:43:C8:69:6E:D9 Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft Manifest number: BD Signing time: Fri 05 Dec 2025 04:00:23 +0000 Manifest this update: Fri 05 Dec 2025 04:00:22 +0000 Manifest next update: Fri 12 Dec 2025 04:00:22 +0000 Files and hashes: 1: n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl (hash: 70f/8snHv+ga/RXRyAz2hY3HFdulGG4QcCqDl42I1Ew=) 2: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (hash: oV9dv3enUEk5QI7ZEWYNcHlwdjoeFV6bdPfVFfihoSE=) 3: 0A581522B5E211EFBEF4BC5AC4F9AE02.roa (hash: PxzOBVWe5yWGLa4iNAyNqYyPaQ/eMXGqSREN7aFVLso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Validity Not Before: Dec 5 04:00:22 2025 GMT Not After : Dec 12 04:00:22 2025 GMT Subject: CN=693258d7-b2ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:59:e2:b7:72:06:56:05:2f:18:b7:cc:81:6b: 48:2c:2e:ef:62:9d:88:cc:74:a1:80:74:1f:de:ba: ac:a3:ef:38:40:6a:39:27:c1:84:29:e7:d1:8d:ff: 6e:c8:10:4d:f8:4f:33:18:e0:a6:43:bb:1b:eb:b5: a8:c7:5e:92:37:ad:38:ef:b3:da:36:59:c0:4c:90: 6f:8a:85:ad:0c:52:d1:f2:ce:54:92:cd:d5:16:37: bd:0b:0a:c8:4a:50:7e:f3:37:7b:96:95:cc:b6:77: 01:bf:4d:78:b7:dc:42:37:15:f0:7d:53:5c:ba:5c: 53:80:40:36:a5:5a:34:39:8b:eb:99:b3:d5:cf:fe: c4:8f:33:34:aa:e5:08:ad:cd:f0:0d:de:59:88:15: 86:0e:9a:34:79:8e:77:25:be:8e:9b:64:42:7d:2f: 64:dd:6f:01:e8:f9:d1:8f:cd:46:07:72:07:f6:87: 18:6b:29:f2:f2:60:68:1e:d2:0a:18:b5:0e:5e:f0: 6c:67:d4:11:51:95:65:a3:c5:19:99:67:0b:d9:ef: 3b:b9:11:b9:bc:34:a0:13:47:0b:72:a1:43:6c:60: 83:63:a3:08:b0:ad:12:81:d5:b7:3c:c4:f7:36:e8: a0:5e:3c:b4:86:90:c4:c5:26:01:75:b1:18:17:38: 8c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:93:33:1A:20:79:F5:A4:FB:EB:13:F8:FF:02:FC:43:C8:69:6E:D9 X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ae:2f:2c:54:2c:98:bc:f0:5e:82:32:73:55:cb:28:c0:7a: ee:a9:92:1f:68:75:ca:43:6d:57:15:f0:2a:b8:47:14:06:d9: 8b:a3:0c:c7:08:f0:a9:fe:dd:d1:bb:5e:5b:5e:30:d2:97:66: d7:68:aa:7d:42:04:d5:4c:b0:33:9d:1b:23:0a:40:55:38:9c: 66:d6:8f:29:a1:42:67:21:6e:47:1f:17:bc:d0:64:c3:b1:9c: 85:5b:a8:1a:ea:a7:6c:b4:ea:33:3d:72:17:cb:8d:5f:ae:86: d7:b1:8a:42:4a:90:d9:17:ef:18:8f:d8:a3:58:68:6c:ab:c4: 13:c1:2e:2f:15:b1:f2:a7:5f:56:79:b8:75:36:4d:a5:1e:dc: 6c:1e:c7:7f:85:8c:58:de:d9:85:91:df:ef:41:ee:d9:e3:cc: 19:3c:f8:b6:73:2d:e3:82:54:e9:d4:be:d4:ec:7c:ff:c1:9b: 8a:c8:be:8f:c1:a1:5f:50:19:ea:cf:8b:7e:c4:6b:36:c8:ea: ee:b9:5d:bb:f9:a4:98:4a:95:45:87:d3:1b:e7:1b:d8:ff:6a: e2:84:07:7d:c5:a0:34:ae:5d:d2:d5:ee:d2:eb:19:ce:cf:7b: 23:97:24:e3:03:e3:14:e7:25:04:b0:a3:46:fd:48:9c:29:da: f4:54:63:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDlGNDkwNkMwRDRDQzk2NDVEOUJGRDkzMzY0QTIzQTVB MzNFRjU4REIwHhcNMjUxMjA1MDQwMDIyWhcNMjUxMjEyMDQwMDIyWjAYMRYwFAYD VQQDEw02OTMyNThkNy1iMmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFnit3IGVgUvGLfMgWtILC7vYp2IzHShgHQf3rqso+84QGo5J8GEKefRjf9u yBBN+E8zGOCmQ7sb67Wox16SN60477PaNlnATJBvioWtDFLR8s5Uks3VFje9CwrI SlB+8zd7lpXMtncBv014t9xCNxXwfVNculxTgEA2pVo0OYvrmbPVz/7EjzM0quUI rc3wDd5ZiBWGDpo0eY53Jb6Om2RCfS9k3W8B6PnRj81GB3IH9ocYayny8mBoHtIK GLUOXvBsZ9QRUZVlo8UZmWcL2e87uRG5vDSgE0cLcqFDbGCDY6MIsK0SgdW3PMT3 NuigXjy0hpDExSYBdbEYFziMuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCTMxog efWk++sT+P8C/EPIaW7ZMB8GA1UdIwQYMBaAFJ9JBsDUzJZF2b/ZM2SiOloz71jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82NzJEQjA0OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxrWFp2OWt6WktJNldqUHZX TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82NzJEQjA0OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxr WFp2OWt6WktJNldqUHZXTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZri8sVCyYvPBegjJzVcsowHruqZIfaHXKQ21XFfAquEcUBtmLowzH CPCp/t3Ru15bXjDSl2bXaKp9QgTVTLAznRsjCkBVOJxm1o8poUJnIW5HHxe80GTD sZyFW6ga6qdstOozPXIXy41frobXsYpCSpDZF+8Yj9ijWGhsq8QTwS4vFbHyp19W ebh1Nk2lHtxsHsd/hYxY3tmFkd/vQe7Z48wZPPi2cy3jglTp1L7U7Hz/wZuKyL6P waFfUBnqz4t+xGs2yOruuV27+aSYSpVFh9Mb5xvY/2rihAd9xaA0rl3S1e7S6xnO z3sjlyTjA+MU5yUEsKNG/UicKdr0VGNH -----END CERTIFICATE-----Generated at Sat Dec 6 22:47:21 2025 by rpki-client