This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: 8AO3tUYgdydyyuspbi8Ctxn86lkIMRGKxqQFrSNeHp0= Subject key identifier: 0A:03:D7:C5:8F:78:DF:AF:B9:6F:F4:00:72:26:5E:53:FE:A0:87:72 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1CC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1CAA Signing time: Sat 06 Dec 2025 15:51:01 +0000 Manifest this update: Sat 06 Dec 2025 15:51:01 +0000 Manifest next update: Sat 13 Dec 2025 15:51:01 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: 1Kujzw5BeMBtW+QCVRy67Ry/EvOLrcUVQWC8H2r3XjA=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: mbirPrlAXH5YzuouoktzvpQ1tw+oe1CclK8OL36QAb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7362 (0x1cc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Dec 6 15:51:01 2025 GMT Not After : Dec 13 15:51:01 2025 GMT Subject: CN=693450e5-716c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:41:d4:9c:54:ca:b7:fe:1e:f3:cc:1d:b7:9e: 41:a2:96:69:b6:5c:84:32:14:a7:9c:2a:d0:94:d0: 36:7b:f3:37:b8:a5:16:30:1a:b1:b8:02:16:f7:0c: ac:45:19:e3:4b:08:7f:cc:6d:77:b6:b4:3b:fb:03: 9d:e8:d2:f2:e0:92:26:15:f2:be:75:c8:a1:b6:1b: 01:65:54:94:41:dd:a8:a5:83:3c:53:85:30:68:67: ba:aa:38:45:b3:79:10:e8:ef:40:98:6a:ff:34:d6: 86:44:db:e1:f1:8e:79:d2:da:f1:3d:89:0e:74:5e: 55:3e:6f:3e:89:09:c4:73:8b:31:3e:2b:07:3c:c8: 5a:c5:c5:35:5a:81:16:e5:62:03:5a:3f:4b:dd:b7: d9:8f:b8:54:0e:46:2e:61:e4:9c:09:e0:97:b1:88: 81:10:66:ad:79:72:c7:1c:6f:70:df:76:7f:44:f4: c5:fa:9e:25:86:7e:12:68:6b:0c:f8:7e:8b:47:ea: 6e:2f:7a:6e:fc:dd:bd:ab:9b:3d:22:51:66:9d:d9: 9c:e4:d6:59:e1:5f:a0:0f:63:09:e3:56:34:7e:f5: 86:03:8c:d9:7a:94:f5:65:9f:b0:70:a8:fb:b4:41: 23:09:7d:ea:be:3e:7d:19:9a:4d:e8:52:44:37:c6: c7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:03:D7:C5:8F:78:DF:AF:B9:6F:F4:00:72:26:5E:53:FE:A0:87:72 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:9b:b8:2f:1e:b6:35:94:4b:8d:9f:f6:07:51:e9:af:3e:c9: f3:79:93:b1:fe:c9:32:1b:a1:f3:84:32:00:39:75:3c:5c:46: 71:77:f3:46:f9:04:f5:01:a8:2d:58:f0:7c:bc:ab:01:af:2b: 82:0d:fe:d7:a6:09:93:ad:d7:38:b3:b7:49:e0:c3:42:e0:ed: 80:04:6e:92:71:27:ed:08:c2:b6:e8:d2:5e:d8:16:31:05:8e: ba:9e:8f:ea:20:52:27:30:48:cb:55:a0:e4:fb:f7:b1:14:10: 33:95:94:ba:dc:ef:d1:2b:66:c0:6d:bb:72:35:1f:8c:bc:ff: f0:17:b8:3c:5c:5d:73:cd:c3:fd:81:93:47:e8:8e:ee:d9:e9: 43:50:2b:5d:57:3f:2f:64:04:ec:7f:a1:57:1f:1c:5d:a9:fc: 08:26:06:49:69:99:57:c6:5a:0e:ad:bd:5a:7a:cc:20:82:c0: bf:bf:9c:de:40:c1:1e:d0:de:57:56:51:83:06:c2:ed:e2:43: 4d:b4:1e:1e:b6:b6:7d:4a:53:b8:40:b4:6a:ac:c1:3f:c1:85: 6b:3f:a7:22:1b:0d:ef:30:ee:93:71:82:a6:95:d3:4b:88:97: 11:99:3b:9a:c5:d9:2a:55:ea:80:d9:12:6c:62:6d:cc:c7:f1: 65:e7:3b:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUxMjA2MTU1MTAxWhcNMjUxMjEzMTU1MTAxWjAYMRYwFAYD VQQDEw02OTM0NTBlNS03MTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkHUnFTKt/4e88wdt55BopZptlyEMhSnnCrQlNA2e/M3uKUWMBqxuAIW9wys RRnjSwh/zG13trQ7+wOd6NLy4JImFfK+dcihthsBZVSUQd2opYM8U4UwaGe6qjhF s3kQ6O9AmGr/NNaGRNvh8Y550trxPYkOdF5VPm8+iQnEc4sxPisHPMhaxcU1WoEW 5WIDWj9L3bfZj7hUDkYuYeScCeCXsYiBEGateXLHHG9w33Z/RPTF+p4lhn4SaGsM +H6LR+puL3pu/N29q5s9IlFmndmc5NZZ4V+gD2MJ41Y0fvWGA4zZepT1ZZ+wcKj7 tEEjCX3qvj59GZpN6FJEN8bHewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoD18WP eN+vuW/0AHImXlP+oIdyMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxm7gvHrY1lEuNn/YHUemvPsnzeZOx/skyG6HzhDIAOXU8XEZxd/NG +QT1AagtWPB8vKsBryuCDf7XpgmTrdc4s7dJ4MNC4O2ABG6ScSftCMK26NJe2BYx BY66no/qIFInMEjLVaDk+/exFBAzlZS63O/RK2bAbbtyNR+MvP/wF7g8XF1zzcP9 gZNH6I7u2elDUCtdVz8vZATsf6FXHxxdqfwIJgZJaZlXxloOrb1aeswggsC/v5ze QMEe0N5XVlGDBsLt4kNNtB4etrZ9SlO4QLRqrME/wYVrP6ciGw3vMO6TcYKmldNL iJcRmTuaxdkqVeqA2RJsYm3Mx/Fl5ztd -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:05 2025 by rpki-client