This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: 7CZSO5Teu/BHq5zLYT6Q4YpOtVvH5xTjvKcJgjJYDwQ= Subject key identifier: 30:28:D1:1D:B2:88:71:0D:C3:00:BE:38:17:31:28:82:8F:02:80:94 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 08CA Signing time: Sat 06 Dec 2025 19:35:05 +0000 Manifest this update: Sat 06 Dec 2025 19:35:05 +0000 Manifest next update: Sat 13 Dec 2025 19:35:05 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: SrUfNv90J5Qr3AKQqm8cW3RlfcofZ4XJe1seKcqWLIg=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2256 (0x8d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Dec 6 19:35:05 2025 GMT Not After : Dec 13 19:35:05 2025 GMT Subject: CN=69348569-6444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b9:71:31:3f:bf:13:28:70:65:34:b5:ab:7e: 3c:3e:59:f9:9d:a9:9c:27:64:30:bd:0e:87:39:8b: 01:cb:90:6e:6b:87:c3:e8:f2:e4:f3:96:2c:4f:70: f0:0b:52:72:d6:2c:c4:db:1b:5f:ff:71:b5:f6:35: 0f:b3:c0:ec:3e:c2:0c:dd:01:9d:1e:ec:c6:33:08: 4c:de:b5:35:24:5d:e9:bc:83:70:c6:b7:2e:6e:36: 0c:cc:f7:f5:41:0e:80:66:c3:9c:76:ca:2a:5b:6f: 0b:5b:46:59:db:6a:58:6c:cd:6b:1f:7b:27:4f:b7: 3b:f6:b7:41:3f:3d:ae:3d:ab:9d:24:55:74:9b:17: 72:ba:5c:85:ba:39:e0:d2:ad:44:4b:8a:4a:b3:ad: 73:2b:ef:66:1e:0e:85:00:33:85:fd:70:45:c1:c2: 9b:7f:92:82:ab:e4:43:40:2f:d0:3a:5c:b6:f9:10: e9:7c:15:cb:fe:c3:63:08:85:94:65:37:f2:3b:9a: 02:da:46:23:63:6f:37:41:89:fb:2f:62:c2:82:a3: da:5e:7c:20:b9:70:14:80:3e:fa:9b:5c:28:31:c6: 8d:20:91:e1:36:49:fc:97:77:5f:df:cb:32:56:ed: cb:24:d6:6b:84:7e:bd:23:99:ab:a6:12:79:fe:b3: 37:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:28:D1:1D:B2:88:71:0D:C3:00:BE:38:17:31:28:82:8F:02:80:94 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:5d:ed:c4:8f:ac:74:f4:dc:65:15:a7:1b:a9:3a:96:6f:ce: 5a:43:9e:1a:e9:cc:f2:65:ba:70:27:32:74:c0:9b:08:63:da: 56:e5:ee:7a:b7:f6:e2:2f:70:67:61:22:c5:c1:f5:63:69:03: 70:ce:0b:f3:6c:71:88:d8:60:c0:45:84:1a:89:f9:8a:ff:af: 07:2c:7a:1a:fe:32:02:f9:e2:b9:66:44:39:d8:f1:a8:32:d1: fd:b5:67:2f:31:d5:b1:f7:3e:7f:7a:8e:84:ee:88:3f:cb:aa: 42:7e:6f:3f:e0:ac:aa:a1:d7:cd:09:21:e0:56:6b:e2:a9:24: bf:73:12:58:f1:14:39:f8:28:4d:20:c3:65:df:f0:9f:ca:63: b1:45:d0:31:3e:7f:05:40:25:3c:d3:e4:49:2e:28:ca:39:b2: a5:78:0c:5c:67:ea:23:e7:81:fd:86:18:54:7f:e4:2a:85:61: 69:f4:66:61:f9:fa:9a:5b:59:04:9f:0b:13:72:8b:46:e6:0a: 27:f6:49:12:d0:ea:ad:e3:6a:2c:cd:90:43:06:3b:ed:5a:02: 8f:43:2e:2d:6b:27:be:37:6b:61:f6:23:0e:2f:f2:bb:88:c9: 23:be:63:d9:1f:1e:04:45:0b:cd:ed:b1:bf:fc:f2:eb:b5:61: b4:77:2e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUxMjA2MTkzNTA1WhcNMjUxMjEzMTkzNTA1WjAYMRYwFAYD VQQDEw02OTM0ODU2OS02NDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7lxMT+/EyhwZTS1q348Pln5namcJ2QwvQ6HOYsBy5Bua4fD6PLk85YsT3Dw C1Jy1izE2xtf/3G19jUPs8DsPsIM3QGdHuzGMwhM3rU1JF3pvINwxrcubjYMzPf1 QQ6AZsOcdsoqW28LW0ZZ22pYbM1rH3snT7c79rdBPz2uPaudJFV0mxdyulyFujng 0q1ES4pKs61zK+9mHg6FADOF/XBFwcKbf5KCq+RDQC/QOly2+RDpfBXL/sNjCIWU ZTfyO5oC2kYjY283QYn7L2LCgqPaXnwguXAUgD76m1woMcaNIJHhNkn8l3df38sy Vu3LJNZrhH69I5mrphJ5/rM3iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAo0R2y iHENwwC+OBcxKIKPAoCUMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjXe3Ej6x09NxlFacbqTqWb85aQ54a6czyZbpwJzJ0wJsIY9pW5e56 t/biL3BnYSLFwfVjaQNwzgvzbHGI2GDARYQaifmK/68HLHoa/jIC+eK5ZkQ52PGo MtH9tWcvMdWx9z5/eo6E7og/y6pCfm8/4KyqodfNCSHgVmviqSS/cxJY8RQ5+ChN IMNl3/CfymOxRdAxPn8FQCU80+RJLijKObKleAxcZ+oj54H9hhhUf+QqhWFp9GZh +fqaW1kEnwsTcotG5gon9kkS0Oqt42oszZBDBjvtWgKPQy4taye+N2th9iMOL/K7 iMkjvmPZHx4ERQvN7bG//PLrtWG0dy46 -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:06 2025 by rpki-client