This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: 2X0/zM6XeY5+xLK4UVyLsEXuJnBd6rnvtX9ZWaBDfDc= Subject key identifier: 37:A0:1A:B0:DC:0A:73:B3:E1:C8:64:6E:D2:08:37:65:51:85:5E:97 Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2A6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2A61 Signing time: Sat 06 Dec 2025 14:22:17 +0000 Manifest this update: Sat 06 Dec 2025 14:22:17 +0000 Manifest next update: Sat 13 Dec 2025 14:22:17 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: YD9+9EKMwBrEUS+0NvGaGLJHn2JkOBvgQlH7tg3fx+I=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: symelOI4KiPwqS+zxOG2abXkQkOu/9Ecrvxkqaxc9Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10860 (0x2a6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Dec 6 14:22:17 2025 GMT Not After : Dec 13 14:22:17 2025 GMT Subject: CN=69343c19-bcb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:17:eb:db:0e:3e:8c:47:b5:d2:ec:e6:5c:3f: 6d:1a:40:21:d2:da:f8:e5:0a:76:aa:70:8e:73:42: 3d:80:54:34:28:ac:9b:1e:6e:e0:67:e0:a0:47:be: 18:f3:d4:cb:a6:07:83:f1:ac:22:7f:8d:e0:09:50: bd:be:f1:28:34:55:ed:33:fa:78:bb:29:82:21:41: 72:ba:79:e3:d5:9e:1d:fe:55:92:af:3d:37:ee:30: 2e:6f:d1:91:9e:5d:53:b4:90:a7:0c:3e:2b:42:ca: 50:5e:46:de:1d:c1:6e:da:a5:14:58:93:bc:a1:6f: 71:3b:ca:44:3e:58:9e:86:75:c7:01:44:bc:47:89: 6c:7f:cb:86:7a:8b:3f:b4:1a:a0:80:02:61:68:8c: e6:0f:ef:18:dd:56:f9:94:78:2c:63:84:d3:39:43: ba:29:70:41:c4:a0:18:0b:c3:cd:9f:07:c0:52:73: 2b:5e:83:09:8c:83:16:50:64:b1:7e:ea:92:7d:07: 42:45:b9:8a:2a:2e:c7:a5:82:84:5a:40:93:dc:03: b3:2c:c8:a4:50:cb:38:ca:26:e7:88:f4:06:c6:18: 46:c9:ec:ab:71:a9:96:3a:cd:b8:60:79:fa:f2:a8: d4:dc:f1:40:91:1b:45:7e:d4:a4:9d:36:43:b2:32: c1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A0:1A:B0:DC:0A:73:B3:E1:C8:64:6E:D2:08:37:65:51:85:5E:97 X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:5b:e3:f1:23:c7:65:01:22:e6:7f:72:e8:12:94:e0:9e:cf: 93:4a:67:7d:f5:21:14:70:d9:ee:22:a4:c6:da:7e:7c:0c:51: 74:6c:56:fc:8b:4a:ce:bf:22:6e:86:5b:c7:76:6a:d1:e9:77: f9:12:56:66:a6:8e:0e:4b:53:e6:1a:0c:b6:e3:0c:f1:88:f2: 66:c3:1d:d6:01:29:ef:f0:d3:b1:c4:18:f8:32:85:72:15:2c: b8:f5:cd:76:56:86:a6:c5:ba:1d:15:19:76:2a:8b:d3:5e:40: 5e:85:14:d3:52:ce:2d:26:bb:f6:95:3e:96:e2:29:12:40:dd: f8:da:6f:de:29:41:cf:41:38:e9:f0:53:b8:35:f4:a1:e4:c0: f5:5a:01:91:e9:03:a2:fc:25:e0:bc:fb:b2:cb:9c:07:32:9a: 6b:5e:8b:0f:cd:f8:5a:f7:9a:2a:59:bf:fe:39:b5:31:87:08: cd:64:da:03:59:9c:cb:63:7b:a8:b6:9c:d3:e8:70:12:ad:57: cd:88:4e:b1:ed:e5:79:b6:a0:1e:8b:a9:41:be:fe:17:bc:ce: 6a:5b:13:02:f3:15:5a:db:d4:bc:53:14:54:7f:98:92:d6:3e: 47:57:c8:1d:d8:fc:49:82:bf:00:33:f6:8e:12:8c:d5:9b:44: af:8d:78:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjUxMjA2MTQyMjE3WhcNMjUxMjEzMTQyMjE3WjAYMRYwFAYD VQQDEw02OTM0M2MxOS1iY2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRfr2w4+jEe10uzmXD9tGkAh0tr45Qp2qnCOc0I9gFQ0KKybHm7gZ+CgR74Y 89TLpgeD8awif43gCVC9vvEoNFXtM/p4uymCIUFyunnj1Z4d/lWSrz037jAub9GR nl1TtJCnDD4rQspQXkbeHcFu2qUUWJO8oW9xO8pEPliehnXHAUS8R4lsf8uGeos/ tBqggAJhaIzmD+8Y3Vb5lHgsY4TTOUO6KXBBxKAYC8PNnwfAUnMrXoMJjIMWUGSx fuqSfQdCRbmKKi7HpYKEWkCT3AOzLMikUMs4yibniPQGxhhGyeyrcamWOs24YHn6 8qjU3PFAkRtFftSknTZDsjLByQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDegGrDc CnOz4chkbtIIN2VRhV6XMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRW+PxI8dlASLmf3LoEpTgns+TSmd99SEUcNnuIqTG2n58DFF0bFb8 i0rOvyJuhlvHdmrR6Xf5ElZmpo4OS1PmGgy24wzxiPJmwx3WASnv8NOxxBj4MoVy FSy49c12VoamxbodFRl2KovTXkBehRTTUs4tJrv2lT6W4ikSQN342m/eKUHPQTjp 8FO4NfSh5MD1WgGR6QOi/CXgvPuyy5wHMpprXosPzfha95oqWb/+ObUxhwjNZNoD WZzLY3uotpzT6HASrVfNiE6x7eV5tqAei6lBvv4XvM5qWxMC8xVa29S8UxRUf5iS 1j5HV8gd2PxJgr8AM/aOEozVm0SvjXh0 -----END CERTIFICATE-----Generated at Sun Dec 7 04:45:27 2025 by rpki-client