This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft File: NPs4YMs0-seCIJnB-5kfzfY8hs0.mft (raw, json) Hash identifier: f9zJ0cYQKfrjfQwnoRB0b8WamIY1PjWP8O2bZb+oNSE= Subject key identifier: 2A:9C:AE:D1:B9:6E:7C:99:07:D4:18:71:46:5E:96:59:C8:29:BB:5D Authority key identifier: 34:FB:38:60:CB:34:FA:C7:82:20:99:C1:FB:99:1F:CD:F6:3C:86:CD Certificate issuer: /CN=A91C1710/serialNumber=34FB3860CB34FAC7822099C1FB991FCDF63C86CD Certificate serial: 0448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft Manifest number: 085C Signing time: Thu 04 Dec 2025 22:45:14 +0000 Manifest this update: Thu 04 Dec 2025 22:45:13 +0000 Manifest next update: Thu 11 Dec 2025 22:45:13 +0000 Files and hashes: 1: NPs4YMs0-seCIJnB-5kfzfY8hs0.crl (hash: MrrFOvxfJnlolFXhYg/C603WkkgKDH7qYEYkgibd068=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710, serialNumber=34FB3860CB34FAC7822099C1FB991FCDF63C86CD Validity Not Before: Dec 4 22:45:13 2025 GMT Not After : Dec 11 22:45:13 2025 GMT Subject: CN=69320efa-98b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:3c:b5:66:73:39:88:69:0f:48:7d:87:80: 85:e5:98:aa:c8:68:a1:d5:fe:75:bc:d3:f4:76:b3: 38:f5:88:e3:5d:d8:2c:98:37:18:45:40:4c:4e:4d: 66:84:f6:f5:e0:1a:ae:8c:96:47:42:07:2a:f9:a7: 76:db:39:b3:26:72:19:24:9f:75:de:28:42:a8:2b: 07:7d:9a:72:76:d5:6d:8b:d8:31:31:3c:fc:98:9b: 83:71:ef:2f:2c:4a:2c:2c:1c:59:7a:69:e9:8f:3f: 81:93:19:1d:3c:1c:cf:37:24:4c:c5:78:ad:41:3f: 2a:f3:58:14:55:7e:67:39:84:85:d0:98:56:b2:1d: e8:3f:2a:86:be:e4:9e:1b:ee:73:37:43:a7:4b:5f: a6:59:d7:03:93:04:e1:2a:89:0c:1b:c0:e2:a3:18: 26:c9:a5:33:4a:57:e3:85:3c:40:eb:04:8e:ee:e9: 32:d1:88:60:e3:bf:24:8e:6b:fe:b8:10:90:fe:26: 79:67:c3:12:0a:b6:71:9f:fa:62:75:f8:7b:73:71: 0f:be:6d:9d:4c:84:35:0a:cf:7f:20:81:2f:fc:2c: 8a:99:d4:5c:34:91:5f:8b:39:d5:20:a0:c1:a5:2c: b7:0a:42:ec:8e:bd:a6:1c:49:e3:11:dd:68:71:38: 27:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9C:AE:D1:B9:6E:7C:99:07:D4:18:71:46:5E:96:59:C8:29:BB:5D X509v3 Authority Key Identifier: keyid:34:FB:38:60:CB:34:FA:C7:82:20:99:C1:FB:99:1F:CD:F6:3C:86:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:e5:9f:d9:e7:a2:da:99:0c:b3:b1:17:8d:8e:38:b0:08:aa: 30:73:95:ba:40:78:b7:df:94:90:5f:4b:6d:2a:23:1e:a4:76: cf:54:ec:ea:d0:dd:fc:8e:d7:c9:c2:1f:a8:54:a9:73:d5:4e: 59:39:26:49:0c:11:a7:29:c9:53:0e:bf:0b:81:f3:f3:c0:b3: 9a:1b:00:48:c1:ce:0d:c0:b5:5b:77:a6:76:1b:75:a2:b7:02: 01:0d:dd:1c:74:ca:24:b7:09:8a:22:18:7d:46:15:cc:3a:0a: 41:36:d7:b5:21:8b:fa:3c:81:2f:10:64:3f:34:ab:31:22:bf: 75:02:77:91:43:21:10:10:cc:33:79:3b:f0:c2:4e:0d:3e:65: b7:f0:86:f5:62:da:b1:31:8a:c2:79:a0:bb:66:04:1b:f1:fe: 56:e2:22:bf:26:1f:07:ca:49:97:01:08:0f:65:cf:1d:9f:4f: e3:ec:74:fc:10:88:41:47:3b:65:96:b1:8a:db:37:f3:d3:4d: fa:da:28:cf:cb:6e:cb:10:47:a5:a0:80:25:80:0a:a8:d1:d7: 8e:e2:75:21:94:cd:13:6f:cb:5a:94:a8:db:81:50:51:37:9d: a7:cf:ad:43:c5:48:4c:c9:96:73:26:30:ed:2f:ba:cf:72:2b: e6:d0:39:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3MTAxMTAvBgNVBAUTKDM0RkIzODYwQ0IzNEZBQzc4MjIwOTlDMUZCOTkxRkNE RjYzQzg2Q0QwHhcNMjUxMjA0MjI0NTEzWhcNMjUxMjExMjI0NTEzWjAYMRYwFAYD VQQDEw02OTMyMGVmYS05OGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOw8tWZzOYhpD0h9h4CF5ZiqyGih1f51vNP0drM49YjjXdgsmDcYRUBMTk1m hPb14BqujJZHQgcq+ad22zmzJnIZJJ913ihCqCsHfZpydtVti9gxMTz8mJuDce8v LEosLBxZemnpjz+BkxkdPBzPNyRMxXitQT8q81gUVX5nOYSF0JhWsh3oPyqGvuSe G+5zN0OnS1+mWdcDkwThKokMG8DioxgmyaUzSlfjhTxA6wSO7uky0Yhg478kjmv+ uBCQ/iZ5Z8MSCrZxn/pidfh7c3EPvm2dTIQ1Cs9/IIEv/CyKmdRcNJFfiznVIKDB pSy3CkLsjr2mHEnjEd1ocTgn8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqcrtG5 bnyZB9QYcUZellnIKbtdMB8GA1UdIwQYMBaAFDT7OGDLNPrHgiCZwfuZH832PIbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTcxMC8xODIyOUE4Njgy NkIxMUVDQTExQkE1MkJDNEY5QUUwMi9OUHM0WU1zMC1zZUNJSm5CLTVrZnpmWTho czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05QczRZTXMwLXNlQ0lKbkItNWtmemZZOGhzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTcxMC8xODIyOUE4NjgyNkIxMUVDQTExQkE1MkJDNEY5QUUwMi9OUHM0WU1zMC1z ZUNJSm5CLTVrZnpmWThoczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm5Z/Z56LamQyzsReNjjiwCKowc5W6QHi335SQX0ttKiMepHbPVOzq 0N38jtfJwh+oVKlz1U5ZOSZJDBGnKclTDr8LgfPzwLOaGwBIwc4NwLVbd6Z2G3Wi twIBDd0cdMoktwmKIhh9RhXMOgpBNte1IYv6PIEvEGQ/NKsxIr91AneRQyEQEMwz eTvwwk4NPmW38Ib1YtqxMYrCeaC7ZgQb8f5W4iK/Jh8HykmXAQgPZc8dn0/j7HT8 EIhBRztllrGK2zfz00362ijPy27LEEeloIAlgAqo0deO4nUhlM0Tb8talKjbgVBR N52nz61DxUhMyZZzJjDtL7rPcivm0Dmy -----END CERTIFICATE-----Generated at Sat Dec 6 22:56:46 2025 by rpki-client