This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: NSMOD5I9Be+X9scBtV/OBPoe6mr2ZpATeLepWNmLKSw= Subject key identifier: BD:6F:A0:4C:AF:01:2A:93:CF:C3:B6:F2:A1:80:4A:9E:EE:A6:D5:73 Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1E92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1E55 Signing time: Sat 06 Dec 2025 15:46:55 +0000 Manifest this update: Sat 06 Dec 2025 15:46:54 +0000 Manifest next update: Sat 13 Dec 2025 15:46:54 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: q75gnEAGRjcK2GB8quEXXkTje0B/0tnlGDN4yi8n9ys=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: zuUsKZCcjPOj5pM09o9z0mAoFhewcmu+fcIGUoGJ1jw=) 3: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: G/Ubv3z+VEdcNFiGQpNHf2mTf7Lsh6KdDEju5wCmKbw=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: lSszTQ1c+gMLFVw7Gk7VDvJy/TEZ74hKfBC2kdiByE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7826 (0x1e92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Dec 6 15:46:54 2025 GMT Not After : Dec 13 15:46:54 2025 GMT Subject: CN=69344fee-ad00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:6e:54:95:b2:e9:a0:c5:d9:29:69:f6:8b: 0c:3c:96:17:ab:e6:36:bf:f8:ab:30:f4:2e:3f:1c: 7f:d0:10:2d:49:d9:73:59:23:c7:50:87:c1:c8:60: 3d:2e:24:1f:d2:e8:35:8e:f4:18:b4:1d:8e:00:d6: d7:ce:2d:5c:71:e9:09:04:29:a8:d4:1c:69:1c:3e: 05:9d:5e:cc:d4:99:2d:84:d3:4c:43:bc:86:e1:9e: 9d:2f:6b:10:59:40:57:80:c7:4f:51:6a:54:72:0c: 7e:29:d1:7a:91:7d:13:af:bb:d8:79:35:eb:c0:49: 02:1f:ff:bf:85:96:0d:ac:5a:d2:f8:cf:e1:a7:a5: 15:ce:b0:c3:cc:c8:10:6e:ae:de:1a:6b:90:6c:e5: ed:55:78:10:ac:cf:81:a6:43:9d:c6:b3:6b:b3:9c: 20:83:3a:3d:2c:b6:b5:c2:7a:eb:db:01:d7:06:8c: 5e:5d:ff:fb:2d:72:be:8c:b7:81:3b:69:23:83:ed: a9:b5:f1:7c:1c:f9:1e:f6:07:59:ca:d5:11:b5:ae: 0a:aa:9b:a6:68:21:7e:6d:f8:7d:b3:95:80:eb:df: 44:d1:d1:03:61:91:0b:9b:35:62:40:b7:ce:83:d1: ea:fe:1c:43:55:ba:af:8d:47:f9:ec:71:4e:00:b8: 6d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6F:A0:4C:AF:01:2A:93:CF:C3:B6:F2:A1:80:4A:9E:EE:A6:D5:73 X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:70:f7:1b:d3:6a:47:0c:b2:29:eb:6e:12:e1:94:8a:14:07: 40:dc:90:e8:30:79:5e:2d:a5:b2:16:d8:79:c3:28:01:67:3b: 71:39:2b:42:62:74:5c:70:19:de:8c:5a:4c:fc:8b:6f:9b:ce: 35:8f:de:95:97:78:5a:e7:33:fb:6d:62:93:1b:e7:b3:77:81: 88:44:7a:fa:c1:87:86:61:c4:42:cf:45:cc:0b:c7:ce:87:fb: be:0d:4a:c7:b6:34:b3:8c:6e:83:45:b4:03:f0:e8:8a:f7:54: 62:9d:c4:87:55:12:85:13:93:11:b5:d7:0f:e7:6f:2a:be:ca: f5:35:2a:94:ce:a8:68:b6:c5:49:1d:81:f3:8b:dd:cb:7c:eb: 34:1d:38:f5:04:f9:dc:de:d5:5a:a7:ff:83:92:a5:3e:c7:f8: 44:ee:8b:a0:d1:7f:11:52:4c:b9:30:89:e5:7c:40:1c:26:f6: 49:e7:cb:fb:03:de:a5:c0:a7:fc:c4:45:06:5d:b6:1e:c6:ce: 00:61:38:66:31:f6:8b:84:e0:45:ff:eb:08:bb:cb:30:49:ff: ae:82:06:cb:e7:f4:21:d1:5e:37:04:0d:33:fe:46:61:f8:9c: 9b:67:3d:78:12:0f:16:e4:90:7c:92:6c:49:12:42:ce:e5:47: e6:61:86:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjUxMjA2MTU0NjU0WhcNMjUxMjEzMTU0NjU0WjAYMRYwFAYD VQQDEw02OTM0NGZlZS1hZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyW9uVJWy6aDF2Slp9osMPJYXq+Y2v/irMPQuPxx/0BAtSdlzWSPHUIfByGA9 LiQf0ug1jvQYtB2OANbXzi1ccekJBCmo1BxpHD4FnV7M1JkthNNMQ7yG4Z6dL2sQ WUBXgMdPUWpUcgx+KdF6kX0Tr7vYeTXrwEkCH/+/hZYNrFrS+M/hp6UVzrDDzMgQ bq7eGmuQbOXtVXgQrM+BpkOdxrNrs5wggzo9LLa1wnrr2wHXBoxeXf/7LXK+jLeB O2kjg+2ptfF8HPke9gdZytURta4KqpumaCF+bfh9s5WA699E0dEDYZELmzViQLfO g9Hq/hxDVbqvjUf57HFOALhtwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1voEyv ASqTz8O28qGASp7uptVzMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBecPcb02pHDLIp624S4ZSKFAdA3JDoMHleLaWyFth5wygBZztxOStC YnRccBnejFpM/Itvm841j96Vl3ha5zP7bWKTG+ezd4GIRHr6wYeGYcRCz0XMC8fO h/u+DUrHtjSzjG6DRbQD8OiK91RincSHVRKFE5MRtdcP528qvsr1NSqUzqhotsVJ HYHzi93LfOs0HTj1BPnc3tVap/+DkqU+x/hE7oug0X8RUky5MInlfEAcJvZJ58v7 A96lwKf8xEUGXbYexs4AYThmMfaLhOBF/+sIu8swSf+uggbL5/Qh0V43BA0z/kZh +JybZz14Eg8W5JB8kmxJEkLO5UfmYYbP -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:25 2025 by rpki-client