This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: nFaJEItr9T+Uq7b8KUdvS6yiLSKz49Bqgv9+lvuwEl0= Subject key identifier: 85:00:05:34:66:CD:6A:B6:3C:2D:CB:D0:5E:75:42:12:78:01:06:98 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 0327 Signing time: Thu 04 Dec 2025 23:28:49 +0000 Manifest this update: Thu 04 Dec 2025 23:28:48 +0000 Manifest next update: Thu 11 Dec 2025 23:28:48 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: 4tL5PZ5UUrgaBRc3iWx1FuFubuFEKJz8+94Qyzgt0qA=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: q/TcJaaAitP3rzneDoOcxqjjnobWifgs1ChVJEG3jdI=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: NLX9iBQc5qpA5HiI79qnyQxZYjEiAaFpUSGQqEwDv14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Dec 4 23:28:48 2025 GMT Not After : Dec 11 23:28:48 2025 GMT Subject: CN=69321931-6fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:49:58:e7:9d:f4:58:b2:04:1b:05:77:e9: 20:27:a1:7d:8c:00:55:93:4b:97:c0:3d:75:e1:cb: 32:a7:7a:4e:27:e3:36:06:ef:7d:18:5c:bf:df:8d: ad:8a:97:d8:b9:b1:6f:4a:f2:44:c0:10:db:54:80: ed:4b:98:e9:09:5a:8d:60:94:50:9e:87:b1:45:9e: 6a:e6:bf:88:db:5d:61:0f:38:12:ec:d0:ca:d0:ea: d6:33:a4:59:f1:c2:f3:54:8a:49:0a:bd:48:b5:af: 72:67:0a:1e:d6:85:0d:2c:26:04:5a:9e:13:8d:d3: c9:28:05:12:27:fe:4a:98:9b:03:b9:8c:a7:c6:b9: e7:af:37:8d:25:e3:ed:4a:04:89:36:00:b2:c1:31: ca:6e:4b:2c:1a:73:96:cf:78:b4:dc:68:f6:cb:92: 01:63:a2:fb:4f:6f:44:ec:61:e7:95:af:43:27:79: 05:e6:83:bb:76:8e:e1:f3:01:a8:0f:39:08:27:ad: 3e:47:e9:2b:60:44:4c:a7:34:12:f3:81:9e:b6:55: f6:97:23:84:45:89:27:18:b4:12:39:b3:32:23:f6: 7c:2a:9e:1a:9c:f9:ab:c0:de:95:46:6e:b0:1c:91: c1:41:78:18:c8:b5:20:c9:9a:64:cd:4a:d8:49:3a: ad:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:00:05:34:66:CD:6A:B6:3C:2D:CB:D0:5E:75:42:12:78:01:06:98 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ef:70:3b:38:cd:0f:c4:f4:b8:6f:c4:c3:ce:59:2c:36:2d: 1e:c8:a5:1b:50:4d:5d:13:21:f6:52:77:79:ff:58:cd:36:24: 6d:88:29:cd:16:8e:70:3d:90:af:92:c9:79:00:a0:5b:19:15: ea:df:c4:8e:e7:14:39:1b:94:37:35:2b:bc:29:72:08:f2:37: 8e:99:97:15:a6:e3:14:7b:dd:d8:2b:1a:37:6b:19:6c:21:fe: 4b:f6:43:ca:22:cd:0b:a8:37:b9:57:be:09:96:9f:ad:4d:bc: 43:dc:a0:bb:c7:b8:1c:9b:b9:16:00:80:cb:07:7d:cc:75:07: 97:fa:47:3c:11:2f:a0:52:1e:8e:95:11:04:4d:9a:71:3a:97: e2:42:b3:6b:ec:d6:17:0f:ae:7a:a2:20:cb:83:a5:c4:ec:bd: 60:61:0e:2b:4d:4f:77:4e:78:e5:33:00:50:76:61:ea:3e:a5: b0:d1:6a:28:0e:66:04:08:26:b6:6d:f3:bc:81:c5:13:90:b6: fe:33:13:3b:b4:24:32:37:17:e9:f2:72:3f:4b:17:6e:03:27: 18:5f:e9:1d:9a:80:88:fd:e4:b9:e7:22:cf:a5:55:dc:95:c4: bd:85:f5:76:14:7d:ea:ee:90:8d:92:bd:f7:6f:42:83:8d:69: f1:6e:b1:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjUxMjA0MjMyODQ4WhcNMjUxMjExMjMyODQ4WjAYMRYwFAYD VQQDEw02OTMyMTkzMS02ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJxJWOed9FiyBBsFd+kgJ6F9jABVk0uXwD114csyp3pOJ+M2Bu99GFy/342t ipfYubFvSvJEwBDbVIDtS5jpCVqNYJRQnoexRZ5q5r+I211hDzgS7NDK0OrWM6RZ 8cLzVIpJCr1Ita9yZwoe1oUNLCYEWp4TjdPJKAUSJ/5KmJsDuYynxrnnrzeNJePt SgSJNgCywTHKbkssGnOWz3i03Gj2y5IBY6L7T29E7GHnla9DJ3kF5oO7do7h8wGo DzkIJ60+R+krYERMpzQS84GetlX2lyOERYknGLQSObMyI/Z8Kp4anPmrwN6VRm6w HJHBQXgYyLUgyZpkzUrYSTqtqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUABTRm zWq2PC3L0F51QhJ4AQaYMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE73A7OM0PxPS4b8TDzlksNi0eyKUbUE1dEyH2Und5/1jNNiRtiCnN Fo5wPZCvksl5AKBbGRXq38SO5xQ5G5Q3NSu8KXII8jeOmZcVpuMUe93YKxo3axls If5L9kPKIs0LqDe5V74Jlp+tTbxD3KC7x7gcm7kWAIDLB33MdQeX+kc8ES+gUh6O lREETZpxOpfiQrNr7NYXD656oiDLg6XE7L1gYQ4rTU93TnjlMwBQdmHqPqWw0Woo DmYECCa2bfO8gcUTkLb+MxM7tCQyNxfp8nI/SxduAycYX+kdmoCI/eS55yLPpVXc lcS9hfV2FH3q7pCNkr33b0KDjWnxbrEU -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:33 2025 by rpki-client