This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: 0arHBpPiRdPXRGNaYYBMqfeUBDWHNfZsbIqq4lA+Av8= Subject key identifier: AA:3B:BD:CF:6E:32:FC:83:39:03:9C:50:99:65:45:D2:D5:E3:AF:A8 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0755 Signing time: Thu 04 Dec 2025 20:42:10 +0000 Manifest this update: Thu 04 Dec 2025 20:42:09 +0000 Manifest next update: Thu 11 Dec 2025 20:42:09 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: Lk3KYmo/w/iW57528pE0O4VTOf2bPsgZpaYaDoj0Flo=) 2: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: kMBiYRb8mxC3e0GjqxC5EdicFThYrTP4waXCvHjqnwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Dec 4 20:42:09 2025 GMT Not After : Dec 11 20:42:09 2025 GMT Subject: CN=6931f221-cd38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2f:83:76:8f:12:7b:31:fc:31:87:11:c8:50: 20:b3:4d:63:45:87:09:26:ef:7e:e4:25:cb:f4:59: 7a:16:d4:e8:20:a9:05:9e:d3:b7:e9:fb:46:9f:44: de:16:d5:9e:30:21:a4:2f:31:e4:64:b3:10:18:97: a8:a5:de:32:8e:b3:42:88:e5:07:af:0a:36:01:88: cb:85:68:1c:01:67:b9:d8:25:76:d7:00:56:15:7a: ae:17:09:54:ac:be:82:57:eb:6f:dd:da:0f:b0:5c: 0c:21:20:80:72:c1:c4:f1:a2:10:4f:d6:70:f7:3a: 5c:3c:ba:3b:fc:c0:c8:5c:64:a4:44:ad:7f:8c:a2: 1d:6f:4b:c4:6c:c6:83:d6:3a:7a:07:e1:00:99:9a: 29:5b:c3:02:38:fb:2b:6a:b5:52:5f:46:19:c3:95: 95:9b:d1:39:10:04:00:9e:49:cd:df:d2:8b:05:e9: a2:ec:4f:f7:c2:98:c7:4e:d5:af:74:bf:33:21:04: e7:c3:4a:74:03:d0:3e:21:ed:b9:9a:a9:76:24:71: 21:f8:08:2c:52:fb:58:fd:34:e6:8c:51:1a:01:fb: a5:1f:8c:a4:ee:bc:88:a6:5c:e1:1e:df:19:df:d7: a6:30:bd:6c:dc:4a:a9:e5:0a:23:1d:b1:3e:0e:31: 9e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3B:BD:CF:6E:32:FC:83:39:03:9C:50:99:65:45:D2:D5:E3:AF:A8 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:2e:6b:5c:90:63:b4:b2:bc:f5:c3:d0:fd:75:c8:77:65:80: 00:d2:3e:db:52:5a:3e:35:15:98:91:2a:58:52:6d:7c:5d:d9: cb:55:54:9f:38:3d:9f:c4:ec:51:b6:70:55:6b:00:79:80:36: b4:9c:f6:e8:a6:40:fc:81:b3:53:93:d7:9e:86:43:94:08:73: f1:ae:22:26:fd:f3:a9:8c:87:4f:84:ea:62:cf:66:1e:e3:4f: 97:39:5c:b0:b0:62:b6:04:1c:8d:8e:08:39:41:a5:70:df:01: c0:f6:d0:12:51:df:7c:61:97:22:8d:1f:cb:50:13:07:54:05: 27:da:b3:de:a2:db:16:d1:4a:a2:f1:88:93:33:c4:03:0e:c4: 33:97:e3:83:6c:61:0a:94:d9:3f:83:9e:11:fa:69:77:e1:e2: 89:85:06:2f:8d:b1:02:9e:f8:f2:94:fc:91:cd:33:8c:0f:b1: e8:13:67:3d:c3:a5:11:1e:10:66:58:59:71:a8:98:65:01:64: fa:e2:e2:13:9f:5d:19:a7:ea:b2:af:c2:3c:9d:a6:0b:e3:0c: 53:63:b7:28:d1:c4:b5:91:87:54:c3:c0:72:3c:90:a0:50:ec: 30:eb:94:43:7a:05:44:1e:04:2e:bb:d9:0c:94:bf:db:ba:10: 30:7e:6e:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUxMjA0MjA0MjA5WhcNMjUxMjExMjA0MjA5WjAYMRYwFAYD VQQDEw02OTMxZjIyMS1jZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y+Ddo8SezH8MYcRyFAgs01jRYcJJu9+5CXL9Fl6FtToIKkFntO36ftGn0Te FtWeMCGkLzHkZLMQGJeopd4yjrNCiOUHrwo2AYjLhWgcAWe52CV21wBWFXquFwlU rL6CV+tv3doPsFwMISCAcsHE8aIQT9Zw9zpcPLo7/MDIXGSkRK1/jKIdb0vEbMaD 1jp6B+EAmZopW8MCOPsrarVSX0YZw5WVm9E5EAQAnknN39KLBemi7E/3wpjHTtWv dL8zIQTnw0p0A9A+Ie25mql2JHEh+AgsUvtY/TTmjFEaAfulH4yk7ryIplzhHt8Z 39emML1s3Eqp5QojHbE+DjGeMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKo7vc9u MvyDOQOcUJllRdLV46+oMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3LmtckGO0srz1w9D9dch3ZYAA0j7bUlo+NRWYkSpYUm18XdnLVVSf OD2fxOxRtnBVawB5gDa0nPbopkD8gbNTk9eehkOUCHPxriIm/fOpjIdPhOpiz2Ye 40+XOVywsGK2BByNjgg5QaVw3wHA9tASUd98YZcijR/LUBMHVAUn2rPeotsW0Uqi 8YiTM8QDDsQzl+ODbGEKlNk/g54R+ml34eKJhQYvjbECnvjylPyRzTOMD7HoE2c9 w6URHhBmWFlxqJhlAWT64uITn10Zp+qyr8I8naYL4wxTY7co0cS1kYdUw8ByPJCg UOww65RDegVEHgQuu9kMlL/buhAwfm4/ -----END CERTIFICATE-----Generated at Sat Dec 6 15:07:54 2025 by rpki-client