This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: VqqBmKlowusmxkWKBVTEGS6INiOMmoNkz1SWKF9LX4I= Subject key identifier: 1F:18:E8:F6:86:19:E9:71:BE:8F:96:E1:B5:63:AC:7A:03:06:8E:F5 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 13D9 Signing time: Sat 06 Dec 2025 18:34:16 +0000 Manifest this update: Sat 06 Dec 2025 18:34:15 +0000 Manifest next update: Sat 13 Dec 2025 18:34:15 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: zZu8PTSPGdJLWG7QR1oupVsBlD9NHhZ9/ztCmEdltIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Dec 6 18:34:15 2025 GMT Not After : Dec 13 18:34:15 2025 GMT Subject: CN=69347727-3766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:41:49:bf:9f:a8:33:9c:59:d2:56:ff:35:8c: d8:ce:ba:41:76:d7:50:0d:dd:5a:2d:01:1b:85:92: 44:1e:b5:e8:c7:56:36:77:4d:be:6f:80:18:ab:1d: 29:c2:93:c8:c2:bf:3c:9a:ef:f9:17:de:d9:ad:c5: 76:21:b4:f0:52:b2:79:bd:20:3e:e5:a2:8a:ef:9d: 1a:e1:ae:3f:a2:5d:f2:4c:fe:15:c6:55:39:e1:28: 5a:2f:7d:fa:39:7b:ba:ed:c3:0f:22:a5:15:dc:50: 61:5a:74:c6:37:a2:c7:6b:62:53:8a:48:91:ab:6e: 9a:7c:76:b5:e7:bb:ce:bb:53:41:4f:9a:db:e2:05: b7:f1:ec:5a:1b:c3:4a:57:c4:3f:d1:5f:5e:4e:c1: fc:03:25:db:3d:98:fd:a2:f4:f4:3f:4a:0f:cd:3f: 2c:30:6a:8b:98:bc:b2:bd:67:d4:35:43:b1:55:72: b4:e5:af:f4:4c:d0:ad:90:a3:30:61:cd:6d:5b:c6: 10:ad:96:de:a6:d9:aa:68:03:c7:f4:a9:b4:a7:9b: 8f:7c:e7:69:53:6c:a6:57:85:a2:6c:55:dd:ef:5d: a2:6c:be:40:09:b8:56:81:a6:8a:84:42:7c:ba:11: 6e:c9:60:53:21:e5:9c:17:f3:e7:07:5f:bb:18:c1: cb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:18:E8:F6:86:19:E9:71:BE:8F:96:E1:B5:63:AC:7A:03:06:8E:F5 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:51:ef:d0:3f:ad:b1:e3:5e:49:ce:b5:c4:4c:3f:7e:2b:74: 32:93:9d:de:9f:76:50:6d:7b:d5:61:63:21:14:f3:cc:dd:05: 85:3d:93:9e:d7:be:d6:d4:1d:22:1d:4b:1b:39:72:56:fc:78: ce:89:75:ad:58:0f:02:a8:be:54:89:7e:7d:3b:52:8a:34:23: 74:66:3d:51:72:9e:cc:97:2e:1d:73:90:d1:aa:9d:34:02:9f: 67:d3:96:57:e5:72:e6:de:9b:43:4a:74:db:70:47:3a:7f:68: a7:25:c8:7a:28:24:cd:1f:a4:12:46:fc:94:fe:f7:a4:50:c8: a4:5f:1d:31:27:30:30:a4:12:ba:94:41:26:20:59:49:9a:9d: f1:f6:fb:5f:e5:3d:59:e3:f0:b9:07:5a:60:84:67:3f:f7:f8: 57:47:8d:b7:79:a0:96:c3:e2:a2:82:ff:a8:7b:31:00:4d:37: 3e:67:27:63:14:e3:b4:5f:3e:19:16:fc:41:e9:d0:bc:f1:58: 3c:da:f9:dd:6a:e1:bb:68:f4:88:c0:e1:f7:9a:1c:a7:66:e7: cc:b6:3e:23:d5:54:97:6d:47:06:fe:31:23:7a:4a:75:8f:c6: 32:99:43:d9:e5:a8:05:d7:ba:f0:2d:11:ba:ad:20:ff:55:00: cb:1c:21:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUxMjA2MTgzNDE1WhcNMjUxMjEzMTgzNDE1WjAYMRYwFAYD VQQDEw02OTM0NzcyNy0zNzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0FJv5+oM5xZ0lb/NYzYzrpBdtdQDd1aLQEbhZJEHrXox1Y2d02+b4AYqx0p wpPIwr88mu/5F97ZrcV2IbTwUrJ5vSA+5aKK750a4a4/ol3yTP4VxlU54ShaL336 OXu67cMPIqUV3FBhWnTGN6LHa2JTikiRq26afHa157vOu1NBT5rb4gW38exaG8NK V8Q/0V9eTsH8AyXbPZj9ovT0P0oPzT8sMGqLmLyyvWfUNUOxVXK05a/0TNCtkKMw Yc1tW8YQrZbeptmqaAPH9Km0p5uPfOdpU2ymV4WibFXd712ibL5ACbhWgaaKhEJ8 uhFuyWBTIeWcF/PnB1+7GMHLqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8Y6PaG Gelxvo+W4bVjrHoDBo71MB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFUe/QP62x415JzrXETD9+K3Qyk53en3ZQbXvVYWMhFPPM3QWFPZOe 177W1B0iHUsbOXJW/HjOiXWtWA8CqL5UiX59O1KKNCN0Zj1Rcp7Mly4dc5DRqp00 Ap9n05ZX5XLm3ptDSnTbcEc6f2inJch6KCTNH6QSRvyU/vekUMikXx0xJzAwpBK6 lEEmIFlJmp3x9vtf5T1Z4/C5B1pghGc/9/hXR423eaCWw+Kigv+oezEATTc+Zydj FOO0Xz4ZFvxB6dC88Vg82vndauG7aPSIwOH3mhynZufMtj4j1VSXbUcG/jEjekp1 j8YymUPZ5agF17rwLRG6rSD/VQDLHCEg -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:13 2025 by rpki-client