This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: o8SMd1Q1unhx69Y/NWZmuUpt8ArHufcYhgigc9X48jI= Subject key identifier: FE:A2:C0:03:8A:7E:F1:C4:FB:B7:46:2D:E0:98:36:A2:16:65:98:51 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0279 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0267 Signing time: Fri 05 Dec 2025 00:04:17 +0000 Manifest this update: Fri 05 Dec 2025 00:04:17 +0000 Manifest next update: Fri 12 Dec 2025 00:04:17 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: nQR5YUfC2u77EN4RTDOCR0NXIVMw/83gDvqJpubO2to=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 04Cy+y4IVlv3nSRQiE3T4udS3Y09bNADoSP454aG6f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Dec 5 00:04:17 2025 GMT Not After : Dec 12 00:04:17 2025 GMT Subject: CN=69322181-facd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:b4:b0:96:7e:42:47:18:c2:83:23:5c:9f: 2f:06:6e:91:55:89:4d:3f:1b:bd:51:0d:91:ab:53: 2c:c4:dc:c0:c1:d7:a5:c4:6a:a7:9c:77:66:a4:73: d8:54:5b:0a:93:11:a6:4c:87:7b:8a:9d:51:e8:22: a0:dc:b4:35:c4:23:f2:a7:f4:b4:a2:e8:b4:b8:56: 58:6a:e3:82:49:80:47:3c:a9:e4:f4:b1:95:a5:8a: 8e:27:81:e0:cb:bd:5c:d2:c2:8a:31:7c:e0:00:8c: c6:6a:4d:c8:fb:44:92:1f:cb:aa:01:40:03:b8:66: c1:c5:b4:6d:de:ff:0f:c0:bd:3d:0c:57:68:60:0e: c6:b2:2f:ef:6a:c6:95:48:72:c7:e7:b5:29:a9:1d: ea:56:e4:1b:e0:22:47:f8:45:e8:5f:0f:ba:96:bf: 64:e1:62:af:0e:9e:76:f3:6b:f6:6f:3c:39:a3:cf: 5f:00:37:94:88:1d:0d:29:87:69:5d:1c:68:df:48: 81:32:c8:d1:58:54:85:e2:7c:15:bd:e0:ec:4b:0c: 22:7f:b5:98:b2:d0:61:6f:26:ae:79:29:03:cf:bf: fc:3b:6d:b0:66:07:f5:79:5f:ff:aa:3e:03:22:61: 9f:6b:d7:30:85:33:01:2e:54:c1:19:00:6c:48:52: 97:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A2:C0:03:8A:7E:F1:C4:FB:B7:46:2D:E0:98:36:A2:16:65:98:51 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:11:9f:f5:05:e9:20:8b:1f:08:2f:8d:4a:e5:c8:e3:74:aa: 62:9c:dc:ce:d8:9f:31:ce:d4:56:55:69:8c:e8:93:8d:63:1b: 40:4b:07:b6:30:f5:6d:5a:d0:63:46:a4:98:b9:f3:e3:af:bb: 1c:1d:98:13:8b:28:a7:5d:bd:41:b6:80:d1:ac:3b:43:13:c2: 62:bf:b2:d1:7a:29:d3:a9:77:8f:43:a0:a5:7c:67:3e:55:0c: 3a:38:9e:06:6e:7a:a4:55:7c:e0:be:38:83:64:df:a6:46:9f: a7:75:b0:2c:17:f6:07:74:ad:52:ad:46:5c:80:8e:ef:2d:20: f8:3b:5e:3d:a2:00:23:e6:9e:49:0e:5f:34:09:e5:66:20:a5: 9e:94:cc:f8:82:3d:81:c0:49:35:5c:22:a9:be:18:cc:c0:1e: e7:2e:29:2f:c2:ed:9f:33:a9:d7:b0:62:ce:a9:d6:65:e9:a2: 2c:89:db:b6:30:9a:0a:70:27:06:2b:de:be:f4:a3:7c:36:57: fd:df:52:53:fc:c7:14:80:d0:6d:d1:b2:2a:35:7b:c8:49:04: 31:95:eb:59:a7:21:30:62:a0:44:5c:55:e4:ce:a8:b7:50:03: 7e:1e:dc:9c:74:e6:fc:71:db:37:94:1e:ba:aa:a4:f8:d6:f0: 7d:cb:ce:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUxMjA1MDAwNDE3WhcNMjUxMjEyMDAwNDE3WjAYMRYwFAYD VQQDEw02OTMyMjE4MS1mYWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxna0sJZ+QkcYwoMjXJ8vBm6RVYlNPxu9UQ2Rq1MsxNzAwdelxGqnnHdmpHPY VFsKkxGmTId7ip1R6CKg3LQ1xCPyp/S0oui0uFZYauOCSYBHPKnk9LGVpYqOJ4Hg y71c0sKKMXzgAIzGak3I+0SSH8uqAUADuGbBxbRt3v8PwL09DFdoYA7Gsi/vasaV SHLH57UpqR3qVuQb4CJH+EXoXw+6lr9k4WKvDp5282v2bzw5o89fADeUiB0NKYdp XRxo30iBMsjRWFSF4nwVveDsSwwif7WYstBhbyaueSkDz7/8O22wZgf1eV//qj4D ImGfa9cwhTMBLlTBGQBsSFKXTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6iwAOK fvHE+7dGLeCYNqIWZZhRMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKEZ/1Bekgix8IL41K5cjjdKpinNzO2J8xztRWVWmM6JONYxtASwe2 MPVtWtBjRqSYufPjr7scHZgTiyinXb1BtoDRrDtDE8Jiv7LReinTqXePQ6ClfGc+ VQw6OJ4GbnqkVXzgvjiDZN+mRp+ndbAsF/YHdK1SrUZcgI7vLSD4O149ogAj5p5J Dl80CeVmIKWelMz4gj2BwEk1XCKpvhjMwB7nLikvwu2fM6nXsGLOqdZl6aIsidu2 MJoKcCcGK96+9KN8Nlf931JT/McUgNBt0bIqNXvISQQxletZpyEwYqBEXFXkzqi3 UAN+HtycdOb8cds3lB66qqT41vB9y87U -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:34 2025 by rpki-client