This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: wC569J3y7VDd/QSap/MULSLwveM8BpCG4tJ5cgIT7ho= Subject key identifier: 63:EB:CF:8A:55:01:E4:2F:B1:56:25:B5:9C:A0:EA:FA:58:63:64:BC Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: 61 Signing time: Fri 05 Dec 2025 05:00:37 +0000 Manifest this update: Fri 05 Dec 2025 05:00:36 +0000 Manifest next update: Fri 12 Dec 2025 05:00:36 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: 3RSCw1yMm8eP/X5J4HHeS5ti2TiWFqukvO7oozsSKSw=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: iZRDXQppbsQwPvsyTvXzZpqvjaraKsPpnctxXUoNoxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Dec 5 05:00:36 2025 GMT Not After : Dec 12 05:00:36 2025 GMT Subject: CN=693266f4-6146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:82:e7:58:76:59:40:ea:a7:69:45:77:41:13: a5:c1:cf:21:93:58:5c:57:b5:bf:bf:d2:4a:03:57: 1e:9d:98:86:57:83:5a:64:b7:ad:01:f9:e3:db:93: 8a:e7:e0:e5:05:57:44:1e:98:f1:82:8e:6a:af:fb: 6e:02:31:3c:ca:ec:75:97:c0:72:f0:25:1c:d3:aa: 4b:3d:9d:bd:2f:55:f9:9b:49:3c:06:13:98:cf:6f: 56:92:55:1a:b0:22:e9:38:65:83:6f:4c:12:a1:63: 48:11:da:bb:94:49:37:2c:15:5e:5d:42:f6:d0:3c: 78:75:e6:cc:9a:19:16:1c:dc:b0:ac:27:0e:8c:77: aa:20:72:cf:8e:ad:12:ae:91:34:fb:a6:ff:32:e2: 16:d1:62:95:10:a7:dc:e8:a9:3c:33:63:27:89:be: 32:cb:84:7a:d4:ac:77:3a:58:97:aa:17:64:fc:5b: 74:f1:8f:3e:3a:1d:ce:78:7d:64:e7:a4:39:93:be: 67:1c:85:81:3f:22:6c:ce:0e:2f:01:25:6d:4f:6c: 61:29:7a:b1:c0:2d:97:cd:80:ee:24:ef:6e:14:dc: 89:3d:29:c5:e5:ce:f4:ba:d8:fe:7d:0b:02:71:9e: 23:83:7d:40:1c:2b:dc:dd:ec:6e:50:d4:04:9b:c0: 05:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EB:CF:8A:55:01:E4:2F:B1:56:25:B5:9C:A0:EA:FA:58:63:64:BC X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:12:98:cb:45:54:52:6a:3e:92:02:99:a6:d0:6e:77:1d:5a: ca:5e:81:96:f2:24:d6:64:18:9f:c2:8e:24:e2:9f:97:76:87: 81:33:6d:a7:67:61:ff:06:a7:0a:87:75:71:c4:c1:01:29:d7: eb:ee:5a:f4:b1:ba:6e:b5:d4:25:8b:af:52:66:16:dd:bb:e8: dd:c1:c9:c4:e7:8f:9f:6b:b2:a7:e0:d5:b4:61:e9:50:c9:2b: 2d:82:ea:e8:eb:91:3c:99:de:f2:37:e3:8a:ba:52:70:66:d4: e4:46:3c:6e:d2:00:1f:23:12:fa:c1:56:8a:86:b0:74:a8:2c: 5c:09:3a:f8:36:45:13:15:20:96:f8:1f:9e:6f:95:90:57:87: a9:3a:69:da:9c:b8:85:78:03:0d:a9:e0:0b:0b:d0:9d:bc:e0: 8d:24:f1:d0:a7:ef:d3:9b:fb:9d:7d:d3:cc:8a:fa:f6:9b:b9: aa:da:c8:13:66:3d:3b:b3:b8:df:b1:75:0c:70:af:2b:3f:d5: 3b:5b:00:a2:f0:8a:dd:3e:79:fa:df:13:71:ed:d8:59:2f:be: a1:e7:66:23:4f:ab:6f:2f:4b:f1:2d:c6:c4:07:cb:e4:0e:8b: 1c:72:f7:f2:6b:0e:3a:39:dc:06:c4:c8:96:f3:5f:0f:3a:6c: 2e:6b:a4:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0REQjExMC8GA1UEBRMoMzRDREE2NUIwMkYxNzZCRkMyNDg3ODREQUE5QUM4QTdC RTE2NTNEQjAeFw0yNTEyMDUwNTAwMzZaFw0yNTEyMTIwNTAwMzZaMBgxFjAUBgNV BAMTDTY5MzI2NmY0LTYxNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD4gudYdllA6qdpRXdBE6XBzyGTWFxXtb+/0koDVx6dmIZXg1pkt60B+ePbk4rn 4OUFV0QemPGCjmqv+24CMTzK7HWXwHLwJRzTqks9nb0vVfmbSTwGE5jPb1aSVRqw Iuk4ZYNvTBKhY0gR2ruUSTcsFV5dQvbQPHh15syaGRYc3LCsJw6Md6ogcs+OrRKu kTT7pv8y4hbRYpUQp9zoqTwzYyeJvjLLhHrUrHc6WJeqF2T8W3Txjz46Hc54fWTn pDmTvmcchYE/ImzODi8BJW1PbGEperHALZfNgO4k724U3Ik9KcXlzvS62P59CwJx niODfUAcK9zd7G5Q1ASbwAWHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY+vPilUB 5C+xViW1nKDq+lhjZLwwHwYDVR0jBBgwFoAUNM2mWwLxdr/CSHhNqprIp74WU9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRERCLzBFM0JEQUVDNDcy NDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTk0ybVd3THhkcl9DU0hoTnFwcklwNzRXVTlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RERCLzBFM0JEQUVDNDcyNDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJf Q1NIaE5xcHJJcDc0V1U5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUSmMtFVFJqPpICmabQbncdWspegZbyJNZkGJ/CjiTin5d2h4Ezbadn Yf8GpwqHdXHEwQEp1+vuWvSxum611CWLr1JmFt276N3BycTnj59rsqfg1bRh6VDJ Ky2C6ujrkTyZ3vI344q6UnBm1ORGPG7SAB8jEvrBVoqGsHSoLFwJOvg2RRMVIJb4 H55vlZBXh6k6adqcuIV4Aw2p4AsL0J284I0k8dCn79Ob+51908yK+vabuarayBNm PTuzuN+xdQxwrys/1TtbAKLwit0+efrfE3Ht2FkvvqHnZiNPq28vS/EtxsQHy+QO ixxy9/JrDjo53AbEyJbzXw86bC5rpK8= -----END CERTIFICATE-----Generated at Sat Dec 6 20:40:21 2025 by rpki-client