This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft File: NAcoRkbqh4WDwlsPqefW7aCRMpg.mft (raw, json) Hash identifier: oCzM88DR0RTL9+qqqZqwM5PeWJ4yFGqAFqhR8eWyE7E= Subject key identifier: 33:CE:BB:A1:6C:CE:F5:84:31:3F:76:EF:2F:DC:59:9B:CC:A3:B7:19 Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft Manifest number: 095E Signing time: Thu 04 Dec 2025 19:20:15 +0000 Manifest this update: Thu 04 Dec 2025 19:20:14 +0000 Manifest next update: Thu 11 Dec 2025 19:20:14 +0000 Files and hashes: 1: NAcoRkbqh4WDwlsPqefW7aCRMpg.crl (hash: Tzw3Sgaal4htq6O5XRH4AR42BVZKJoJwAhn8pY1sxYs=) 2: 9AA539E6A82411EA996D5F41C4F9AE02.roa (hash: pMMXr/lqWr+5GcVstLkkyd8gkDTgGy1DHQolAjMLixQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Dec 4 19:20:14 2025 GMT Not After : Dec 11 19:20:14 2025 GMT Subject: CN=6931deee-3830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:cc:d9:f7:ad:c6:76:39:6f:c6:f3:94:0c: 3a:83:90:1d:8c:be:f0:69:87:3d:d8:c4:9d:ab:dd: 49:5d:66:95:f2:77:c6:04:28:06:a7:9a:9f:cc:e7: d0:de:d8:c9:1e:cb:b1:dc:fc:b0:d6:f5:bd:cb:03: df:35:07:59:89:ed:7d:d8:66:bc:79:54:b4:ef:bb: a3:bd:5e:c9:9d:95:cc:f6:08:41:f0:82:33:9b:5d: a9:af:96:53:ba:33:22:b8:09:04:0b:fe:cd:bf:23: 82:da:54:c6:57:36:4f:87:48:6c:20:47:1d:92:9b: 48:b8:04:03:cf:1b:9a:38:ec:ba:b9:07:e8:d9:0f: 9c:8e:bb:59:d0:c5:14:3d:a4:16:61:de:a8:74:a5: d2:1f:6b:2b:51:2c:1d:25:16:d9:ee:69:ee:4e:fb: 6a:bd:83:19:6e:65:96:dd:25:f7:1e:66:89:94:04: 4c:ef:d5:19:29:0f:89:a0:58:7b:b2:f7:81:95:fd: 7c:07:47:1d:d1:13:e3:b2:af:4b:49:18:63:8c:37: 26:ed:61:37:23:3d:14:b1:7a:3c:b0:23:89:50:59: ee:0e:0b:6b:b5:4c:7d:80:f5:20:88:22:67:6b:fd: 91:d6:55:5d:12:48:27:27:16:d8:b5:9a:e0:35:75: c4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CE:BB:A1:6C:CE:F5:84:31:3F:76:EF:2F:DC:59:9B:CC:A3:B7:19 X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:5e:07:1e:49:96:dc:be:51:72:ef:58:13:08:07:eb:61:2a: ca:33:6f:00:00:07:2f:9b:ba:06:de:6e:72:70:f4:36:ea:c4: 15:c5:83:12:37:8b:bf:b5:a6:96:cb:4f:46:cc:e7:dd:ae:3b: d9:fb:7a:03:cd:0f:00:23:9d:cc:59:19:cf:e1:d1:22:9f:ad: d6:fe:05:f7:90:3b:4c:04:ff:c8:3f:fa:a8:61:55:4e:3f:f3: bf:6d:b0:f1:bd:84:87:1b:68:d3:2c:2a:1e:16:1f:3d:e4:77: f2:b7:cc:f0:8a:2d:3a:df:6a:e8:f5:64:e3:b1:a1:6b:36:5c: d9:ca:79:41:e4:8e:84:72:78:b4:a8:50:64:0e:61:d2:fb:5a: e0:08:29:36:1c:94:70:0f:eb:0a:5c:4e:8b:7f:7e:66:db:da: 0c:c4:e4:c2:76:a3:8e:af:78:5d:55:ff:47:7a:74:12:9a:ab: 1b:bc:b9:c3:50:09:8f:a0:8c:df:5b:77:bb:ce:a8:28:ee:67: 63:e3:b4:67:bf:8f:05:d9:38:76:46:7a:94:7a:2a:6e:d5:0c: 9b:15:c0:fc:38:ce:db:f9:53:1e:6e:bf:78:bb:4a:b3:87:48: 1f:7a:5c:3b:b9:eb:b4:b7:22:0a:67:30:25:ad:e3:55:a7:74: e8:96:3f:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUxMjA0MTkyMDE0WhcNMjUxMjExMTkyMDE0WjAYMRYwFAYD VQQDEw02OTMxZGVlZS0zODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqorM2fetxnY5b8bzlAw6g5AdjL7waYc92MSdq91JXWaV8nfGBCgGp5qfzOfQ 3tjJHsux3Pyw1vW9ywPfNQdZie192Ga8eVS077ujvV7JnZXM9ghB8IIzm12pr5ZT ujMiuAkEC/7NvyOC2lTGVzZPh0hsIEcdkptIuAQDzxuaOOy6uQfo2Q+cjrtZ0MUU PaQWYd6odKXSH2srUSwdJRbZ7mnuTvtqvYMZbmWW3SX3HmaJlARM79UZKQ+JoFh7 sveBlf18B0cd0RPjsq9LSRhjjDcm7WE3Iz0UsXo8sCOJUFnuDgtrtUx9gPUgiCJn a/2R1lVdEkgnJxbYtZrgNXXE9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPOu6Fs zvWEMT927y/cWZvMo7cZMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzMxOC82NUI2NzFCNkE4MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0 V0R3bHNQcWVmVzdhQ1JNcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1XgceSZbcvlFy71gTCAfrYSrKM28AAAcvm7oG3m5ycPQ26sQVxYMS N4u/taaWy09GzOfdrjvZ+3oDzQ8AI53MWRnP4dEin63W/gX3kDtMBP/IP/qoYVVO P/O/bbDxvYSHG2jTLCoeFh895Hfyt8zwii0632ro9WTjsaFrNlzZynlB5I6Ecni0 qFBkDmHS+1rgCCk2HJRwD+sKXE6Lf35m29oMxOTCdqOOr3hdVf9HenQSmqsbvLnD UAmPoIzfW3e7zqgo7mdj47Rnv48F2Th2RnqUeipu1QybFcD8OM7b+VMebr94u0qz h0gfelw7ueu0tyIKZzAlreNVp3Tolj9p -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:24 2025 by rpki-client