This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: BW4FpnDgzWbk6pg4Wqd6ST2bFIJBP54zAFb9MJKIIN4= Subject key identifier: F8:2A:47:E9:10:07:30:91:74:CE:B3:E5:60:2B:A7:00:3A:9B:BA:17 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 012A Signing time: Sun 07 Dec 2025 03:00:36 +0000 Manifest this update: Sun 07 Dec 2025 03:00:35 +0000 Manifest next update: Sun 14 Dec 2025 03:00:35 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: ySfnmS3lScjw0OxPm1cUr9rdWqd8Nsfsh6LepMq3ywg=) 2: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: N5o2mOrAAIEN4JkFArU+q/6rZ4IO6YadfTVlKFOEiVE=) 3: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: cwplvW7swmzZa2jvSta00RWJdejX+4mcpTxfaDMp2xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Dec 7 03:00:35 2025 GMT Not After : Dec 14 03:00:35 2025 GMT Subject: CN=6934edd4-a384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0f:d1:f1:ca:f3:ed:6f:28:bc:63:68:0f:2b: 02:e3:a7:6a:69:09:c3:d6:df:32:4e:2c:78:ab:24: 2d:ab:4e:a3:87:46:3d:91:54:4e:e9:62:93:99:b5: b1:2a:be:50:06:c6:49:d9:b8:48:2e:8e:e4:be:e9: 8c:83:16:f2:e5:8e:d3:e9:3d:df:31:7b:45:31:9a: 50:47:6d:ae:54:67:0a:7e:f9:b6:d3:02:4a:8d:95: 4a:92:bd:72:9d:e6:70:8e:3d:ca:da:32:62:b8:c5: d9:04:98:90:32:0f:cd:9f:32:f4:af:a9:7c:1e:f1: 21:04:42:cd:61:4d:57:0c:53:48:8e:a6:f9:11:3e: cb:e0:0c:44:69:6c:fa:82:29:b0:bd:32:c8:84:b0: e7:d6:f9:51:94:1b:ae:f2:f6:d7:ea:c6:35:97:37: 03:1a:df:d9:34:ef:9f:be:b1:72:f5:37:72:e5:b9: 6b:f5:fa:8c:15:ae:da:c1:5c:e3:be:6d:cd:3c:bf: 06:69:aa:69:5d:1b:89:83:f6:9f:d7:dc:56:3f:a6: 21:f0:be:20:ef:d4:e5:c8:87:87:e7:55:d6:cb:b8: b5:b4:ac:22:f1:fa:75:5c:dd:6c:31:f8:32:3c:4c: 83:62:33:f5:15:21:52:6f:c0:28:b7:92:82:17:d4: f1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2A:47:E9:10:07:30:91:74:CE:B3:E5:60:2B:A7:00:3A:9B:BA:17 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:6b:23:af:61:06:18:ad:8a:7b:a4:ad:bf:5f:3b:50:56:6c: 87:85:6d:a8:59:03:eb:d7:b1:61:ca:20:99:7a:3e:f6:2b:57: bb:25:5e:ea:82:e4:f6:db:98:a7:d3:aa:f9:04:4f:3e:8e:b6: c3:78:d0:1c:3c:b9:30:9b:c8:42:14:c7:8d:53:d2:3b:7b:b6: b9:a9:e8:10:67:d1:cc:4a:d9:81:b4:0b:d4:c7:dc:42:45:08: 45:9b:c0:aa:a2:de:86:0a:25:fb:95:45:3a:17:e5:27:92:ee: 5c:5b:0a:f1:f8:2b:04:97:36:da:e5:ec:a5:76:60:fe:a1:b5: d5:7f:c3:08:fa:f4:c4:34:1a:18:3d:a1:5d:0a:77:0d:50:45: 72:52:f6:5a:fa:00:82:2f:f8:06:70:06:b9:66:ff:ad:23:34: f3:29:56:19:af:16:b2:0f:e8:54:81:75:6e:42:d4:65:a1:45: 95:a8:32:e1:07:8a:eb:01:3b:e9:71:2c:df:c9:a4:33:6d:81: 53:c4:78:e8:2d:27:39:5d:43:b3:d4:39:82:0b:d1:95:e5:f4: fb:6d:c6:ed:65:d7:5e:93:b3:40:8a:c1:4b:54:93:fb:84:5b: 23:41:84:de:99:1c:a4:4b:1d:ac:ad:21:13:7c:4f:6b:d0:d2: a8:0d:94:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUxMjA3MDMwMDM1WhcNMjUxMjE0MDMwMDM1WjAYMRYwFAYD VQQDEw02OTM0ZWRkNC1hMzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoA/R8crz7W8ovGNoDysC46dqaQnD1t8yTix4qyQtq06jh0Y9kVRO6WKTmbWx Kr5QBsZJ2bhILo7kvumMgxby5Y7T6T3fMXtFMZpQR22uVGcKfvm20wJKjZVKkr1y neZwjj3K2jJiuMXZBJiQMg/NnzL0r6l8HvEhBELNYU1XDFNIjqb5ET7L4AxEaWz6 gimwvTLIhLDn1vlRlBuu8vbX6sY1lzcDGt/ZNO+fvrFy9Tdy5blr9fqMFa7awVzj vm3NPL8GaappXRuJg/af19xWP6Yh8L4g79TlyIeH51XWy7i1tKwi8fp1XN1sMfgy PEyDYjP1FSFSb8Aot5KCF9TxkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgqR+kQ BzCRdM6z5WArpwA6m7oXMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1ayOvYQYYrYp7pK2/XztQVmyHhW2oWQPr17FhyiCZej72K1e7JV7q guT225in06r5BE8+jrbDeNAcPLkwm8hCFMeNU9I7e7a5qegQZ9HMStmBtAvUx9xC RQhFm8Cqot6GCiX7lUU6F+Unku5cWwrx+CsElzba5eyldmD+obXVf8MI+vTENBoY PaFdCncNUEVyUvZa+gCCL/gGcAa5Zv+tIzTzKVYZrxayD+hUgXVuQtRloUWVqDLh B4rrATvpcSzfyaQzbYFTxHjoLSc5XUOz1DmCC9GV5fT7bcbtZddek7NAisFLVJP7 hFsjQYTemRykSx2srSETfE9r0NKoDZT0 -----END CERTIFICATE-----Generated at Mon Dec 8 09:07:28 2025 by rpki-client