This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: CI6pEi0H/0AJBpbraMBtxW15ZqZru8KenKpJ8ZlpDKQ= Subject key identifier: 1F:24:90:EF:14:76:9F:64:E3:43:2E:3D:53:23:7D:8F:C2:A4:91:C8 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 0141 Signing time: Sun 07 Dec 2025 02:42:37 +0000 Manifest this update: Sun 07 Dec 2025 02:42:37 +0000 Manifest next update: Sun 14 Dec 2025 02:42:36 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: fVqWcbOokW7pd1TW9AmYXPpg7YbQ0iDN1E9dxI/1CIA=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Dec 7 02:42:37 2025 GMT Not After : Dec 14 02:42:36 2025 GMT Subject: CN=6934e99d-5d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ed:a3:4f:9b:1e:73:31:56:97:2e:fe:dc:fa: d4:cc:87:21:cc:33:c7:12:c8:78:3d:9b:27:b3:42: 26:f7:3d:08:c7:7a:ad:33:7d:d6:72:5d:0d:ef:20: 0c:98:7c:b0:cd:bb:60:e5:8f:60:68:cc:f0:bb:26: d6:4b:00:bf:14:d6:ff:42:f5:c1:d1:fb:f9:7c:23: 62:5d:d1:b4:06:2c:d0:8f:eb:c6:bc:39:c0:41:5e: a2:98:a3:ba:29:4c:fa:68:93:98:b1:9d:db:8b:a4: 9b:c1:5e:df:cb:db:39:f2:64:e3:5f:3d:fc:53:08: 97:48:a5:bb:85:40:ab:45:12:db:a1:e6:c2:ec:8f: 33:3a:2a:76:eb:cb:6d:22:0a:b8:bf:ec:3f:5a:0c: 26:bd:6a:e7:16:bd:36:18:29:33:2b:a7:6b:2e:53: fc:b7:c0:1d:d2:d5:71:29:9d:1a:f9:24:05:1e:e0: 6d:73:96:61:41:b4:3d:70:00:45:11:6d:e3:5a:8c: e3:ca:b7:bc:7c:8b:6c:4e:51:a9:bc:15:bc:81:86: 67:f7:26:5c:40:4f:7e:2a:d7:40:c2:c9:ec:91:03: 0b:52:b5:af:81:96:27:1d:cc:f7:94:7e:5f:cf:58: b9:67:c9:ea:02:7a:ce:54:ed:32:f6:d7:ff:dc:e3: 67:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:24:90:EF:14:76:9F:64:E3:43:2E:3D:53:23:7D:8F:C2:A4:91:C8 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:64:a2:99:bc:bd:70:d8:bd:ba:57:a4:c3:98:94:e1:b7:90: 9d:ab:7a:51:00:7e:00:83:89:cc:60:04:e2:95:3c:41:44:79: 4e:b5:8c:b6:26:55:46:bb:e5:87:c1:eb:be:34:f0:1e:93:c1: 1f:4c:66:df:67:e6:31:5e:71:a7:49:d7:a4:79:ad:f8:84:a1: a7:e8:47:71:0b:48:cc:83:c8:99:15:25:c9:1b:bd:89:e1:0e: 89:64:ec:d5:17:cd:d2:c7:6a:a8:5e:8c:cc:92:22:f5:79:81: 7b:29:48:cd:74:4e:6a:c1:c4:68:76:8f:4b:54:f5:bc:cd:62: 9d:49:b3:2d:55:73:45:84:b0:ac:be:b7:57:90:54:67:45:d3: 8b:21:d4:38:d2:42:63:d2:78:07:b4:61:11:4d:ec:97:4b:52: 0e:02:a0:d5:5f:84:49:33:bd:60:ad:51:91:9a:ad:0f:53:c9: f0:e1:28:b3:f4:4e:bc:bf:38:c1:ee:51:ea:32:a2:cc:6b:99: e3:28:c1:74:f6:92:c1:ee:5c:dd:1e:d1:21:1a:bc:12:6c:7d: 2c:1b:55:64:4b:7a:e6:3c:8f:c2:c3:41:7b:6d:be:8c:98:85: 2c:52:9c:c8:2f:a5:ac:2f:2f:c8:23:81:7e:d6:a9:f1:3d:13: e5:06:48:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUxMjA3MDI0MjM3WhcNMjUxMjE0MDI0MjM2WjAYMRYwFAYD VQQDEw02OTM0ZTk5ZC01ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+2jT5seczFWly7+3PrUzIchzDPHEsh4PZsns0Im9z0Ix3qtM33Wcl0N7yAM mHywzbtg5Y9gaMzwuybWSwC/FNb/QvXB0fv5fCNiXdG0BizQj+vGvDnAQV6imKO6 KUz6aJOYsZ3bi6SbwV7fy9s58mTjXz38UwiXSKW7hUCrRRLboebC7I8zOip268tt Igq4v+w/WgwmvWrnFr02GCkzK6drLlP8t8Ad0tVxKZ0a+SQFHuBtc5ZhQbQ9cABF EW3jWozjyre8fItsTlGpvBW8gYZn9yZcQE9+KtdAwsnskQMLUrWvgZYnHcz3lH5f z1i5Z8nqAnrOVO0y9tf/3ONnCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8kkO8U dp9k40MuPVMjfY/CpJHIMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWZKKZvL1w2L26V6TDmJTht5Cdq3pRAH4Ag4nMYATilTxBRHlOtYy2 JlVGu+WHweu+NPAek8EfTGbfZ+YxXnGnSdekea34hKGn6EdxC0jMg8iZFSXJG72J 4Q6JZOzVF83Sx2qoXozMkiL1eYF7KUjNdE5qwcRodo9LVPW8zWKdSbMtVXNFhLCs vrdXkFRnRdOLIdQ40kJj0ngHtGERTeyXS1IOAqDVX4RJM71grVGRmq0PU8nw4Siz 9E68vzjB7lHqMqLMa5njKMF09pLB7lzdHtEhGrwSbH0sG1VkS3rmPI/Cw0F7bb6M mIUsUpzIL6WsLy/II4F+1qnxPRPlBkhN -----END CERTIFICATE-----Generated at Sun Dec 7 13:09:24 2025 by rpki-client