This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: qteMj3b2pqWC/Iu8qrXL8bj2XACmchcx9fNKpYKIdfY= Subject key identifier: 2E:09:D8:58:C5:DF:0B:53:45:4B:06:2B:5D:08:6C:25:5E:52:30:B9 Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0BC4 Signing time: Thu 04 Dec 2025 18:17:36 +0000 Manifest this update: Thu 04 Dec 2025 18:17:36 +0000 Manifest next update: Thu 11 Dec 2025 18:17:36 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: I/RuHx70Mg7duTMIqbECeAv1gtBrQcyJq9epkk97pAc=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: SccF8HRtnWqPr6dbqcwFHPaBm6ma5y4QuMfEodFq0x8=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: qucjAVGWpouOPQ3WeFCClp/39PYcY3aBfMI0Mahgzo8=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: SLgBz/egPkek4QY9s+goKoqiOELjoV2wU84pCw7L2Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Dec 4 18:17:36 2025 GMT Not After : Dec 11 18:17:36 2025 GMT Subject: CN=6931d040-3d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6c:63:96:6d:53:5c:c6:44:13:37:2d:79:50: ea:c3:05:b5:76:9f:d2:3d:89:df:4e:24:81:26:1c: 34:a2:60:db:57:44:a5:9b:76:b0:ca:fb:5a:3a:1f: 02:d8:99:9c:6e:1b:df:bc:be:52:dd:e9:a8:04:39: fc:86:09:dd:5e:b6:88:98:4f:d7:c8:51:be:43:86: 4e:a7:98:1a:a5:94:da:8b:a7:88:da:08:ed:fe:e8: 0d:a6:5d:0e:2c:8c:ec:d4:1c:df:78:3d:c1:25:9c: 74:7d:a7:20:37:8d:0a:41:ed:d3:53:2d:ab:f4:15: a6:fc:8b:09:ba:40:49:48:b1:14:07:4c:09:22:72: a6:80:78:a8:dd:e3:ed:2f:2f:46:28:94:e0:b8:1e: e5:e1:f3:ab:09:8b:9c:db:8c:7d:8c:fa:6a:60:76: 1f:5d:ef:c7:96:e9:7d:d5:a8:67:17:7f:83:e3:09: 2a:3b:2f:b5:2e:21:38:d8:bf:a8:c9:c7:78:d8:cf: 17:5a:49:bb:52:1e:57:5f:55:be:5c:31:c3:37:67: 2f:68:0a:37:7c:95:f5:4f:45:72:2a:85:e0:12:d6: 0f:81:c6:14:ca:9e:e0:93:71:9d:b5:04:47:24:b3: 61:7b:45:ad:9e:cb:60:ca:83:7b:a2:f3:91:b6:4a: b3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:09:D8:58:C5:DF:0B:53:45:4B:06:2B:5D:08:6C:25:5E:52:30:B9 X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:c5:d8:81:43:28:cf:0e:40:78:fe:6d:e1:06:ef:cf:36:54: 45:0a:75:6f:37:5a:71:58:d1:7d:6d:36:59:b7:b3:dd:af:75: 29:e4:55:71:25:17:9e:2c:2d:4f:d7:a3:a4:24:92:12:73:5d: e5:d0:70:42:d7:2c:7b:3f:b9:80:b4:c9:56:af:88:49:c0:0a: 59:4e:aa:de:52:d9:3b:95:fa:c2:7d:69:a0:07:e6:67:e3:6d: 59:aa:9f:57:17:4d:5b:59:d1:c8:84:a9:f9:54:6d:c0:4f:99: b9:97:65:1c:94:77:00:f4:43:0a:0f:39:99:37:ba:33:8a:eb: 97:60:ea:23:31:17:f5:08:b2:8e:30:92:34:bc:2c:a5:21:11: 6a:9a:07:56:b6:2e:17:3a:ea:dd:09:ca:8f:02:ee:7f:e3:b1: 3a:0d:b8:74:2e:0c:3b:6f:84:7f:86:a8:38:aa:65:c4:4f:66: c6:32:ed:a2:8b:a2:d5:b3:2c:df:65:26:af:12:e7:a1:88:a9: aa:a9:f0:c7:aa:2a:dd:36:ba:3d:8f:66:07:63:68:96:a5:08: b1:0c:d3:df:7f:33:d6:08:7e:76:3f:d9:ae:ec:12:0c:bd:20: ae:6d:68:30:e6:60:d9:4b:61:5c:8c:3c:16:44:63:f9:ed:3e: 26:49:b3:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjUxMjA0MTgxNzM2WhcNMjUxMjExMTgxNzM2WjAYMRYwFAYD VQQDEw02OTMxZDA0MC0zZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mxjlm1TXMZEEzcteVDqwwW1dp/SPYnfTiSBJhw0omDbV0Slm3awyvtaOh8C 2JmcbhvfvL5S3emoBDn8hgndXraImE/XyFG+Q4ZOp5gapZTai6eI2gjt/ugNpl0O LIzs1BzfeD3BJZx0facgN40KQe3TUy2r9BWm/IsJukBJSLEUB0wJInKmgHio3ePt Ly9GKJTguB7l4fOrCYuc24x9jPpqYHYfXe/Hlul91ahnF3+D4wkqOy+1LiE42L+o ycd42M8XWkm7Uh5XX1W+XDHDN2cvaAo3fJX1T0VyKoXgEtYPgcYUyp7gk3GdtQRH JLNhe0WtnstgyoN7ovORtkqzEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4J2FjF 3wtTRUsGK10IbCVeUjC5MB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCexdiBQyjPDkB4/m3hBu/PNlRFCnVvN1pxWNF9bTZZt7Pdr3Up5FVx JReeLC1P16OkJJISc13l0HBC1yx7P7mAtMlWr4hJwApZTqreUtk7lfrCfWmgB+Zn 421Zqp9XF01bWdHIhKn5VG3AT5m5l2UclHcA9EMKDzmZN7oziuuXYOojMRf1CLKO MJI0vCylIRFqmgdWti4XOurdCcqPAu5/47E6Dbh0Lgw7b4R/hqg4qmXET2bGMu2i i6LVsyzfZSavEuehiKmqqfDHqirdNro9j2YHY2iWpQixDNPffzPWCH52P9mu7BIM vSCubWgw5mDZS2FcjDwWRGP57T4mSbOQ -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:08 2025 by rpki-client