This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: aVpXudpATLelnckTtDnw7z0opcPDHZDhNuL5jHoIzqc= Subject key identifier: C1:D0:32:90:5A:2B:35:FE:CC:E1:2F:86:DA:40:60:5B:4C:18:B3:4A Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0C9D Signing time: Sat 06 Dec 2025 17:44:30 +0000 Manifest this update: Sat 06 Dec 2025 17:44:29 +0000 Manifest next update: Sat 13 Dec 2025 17:44:29 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: 55wR7faZmQy2q6j9yTaQmJkwZD61s/JoRY3ylrk7fhA=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: I2P5GKiYO+A0JWj3FCOtq5Wyspf+9wzs4i0nVaTxKFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: Dec 6 17:44:29 2025 GMT Not After : Dec 13 17:44:29 2025 GMT Subject: CN=69346b7d-efcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e0:e4:a8:b4:45:aa:09:8f:49:9c:8e:f8:35: c7:4b:24:1b:9b:e9:5b:19:a5:b4:58:f8:e1:5d:db: be:6b:37:d9:2c:c2:66:d6:bb:c0:16:da:bd:d3:c2: 4c:06:ed:2f:31:38:59:a4:9f:ca:46:d1:71:26:5a: 0d:4d:88:5c:62:1b:97:37:15:41:a3:82:64:5e:57: d7:05:59:01:01:35:05:1e:a2:70:8e:93:f9:ce:e3: e5:31:39:69:49:e8:ca:5a:3d:b4:9c:a1:7b:a3:87: 48:f0:00:b7:33:3b:b2:56:7c:40:d0:8d:2e:32:a4: 43:9e:31:67:32:fc:5a:cd:65:cc:2e:e4:37:00:1c: 6d:f4:5d:4a:35:b0:30:35:6b:2b:d5:56:98:3d:85: 62:b1:2d:4a:e1:43:ca:0d:51:5b:84:81:ee:5e:0d: 02:26:dd:88:36:7f:cd:44:2c:65:a6:e3:34:9c:5f: ac:5f:41:6c:8a:5f:ec:28:32:09:cc:df:2c:6c:da: 12:2b:2c:eb:a4:ff:4f:5b:39:26:cd:7e:71:64:ef: ce:41:31:7f:05:89:87:31:4e:d6:89:b8:79:cf:d9: c1:79:6e:89:f6:c5:21:89:6e:79:e8:f6:9f:ec:7c: cd:cc:8a:62:29:19:8d:56:5d:97:06:3b:93:0c:a2: d7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D0:32:90:5A:2B:35:FE:CC:E1:2F:86:DA:40:60:5B:4C:18:B3:4A X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:a8:f8:59:b2:01:68:51:e8:98:b9:7b:ab:73:42:f1:dd:8f: 29:d2:94:4b:db:4e:6d:b8:74:9a:54:95:17:c4:ab:30:b1:fc: 0e:28:71:a0:b1:c6:8a:4d:73:8e:4c:1c:6e:cf:e2:96:5b:61: 43:41:ad:20:8a:72:6a:8a:9b:6f:23:b8:b9:11:f6:9f:9b:ac: dc:02:44:03:66:11:74:0a:df:dc:d4:df:63:11:21:69:74:19: 7b:b8:2d:45:d1:04:16:a4:0f:1f:d3:a9:ff:cf:8e:fa:91:84: 9a:3e:d4:96:e6:3b:ba:2c:b5:cc:14:a9:53:8a:93:2d:72:ec: 21:d5:99:be:49:24:cc:3c:59:51:0a:5d:9d:18:c5:6b:d5:4f: 79:ed:3e:e5:28:c6:08:72:80:4f:50:3b:8a:1c:fd:07:cb:37: 88:cf:99:dc:4c:a5:13:12:70:00:5a:5b:3e:f1:28:12:2f:f4: f6:6f:bd:b6:66:ba:7d:2d:b8:f9:c1:a6:e1:69:1c:69:8d:dd: c8:1f:3d:6f:e9:bb:ef:34:8b:34:80:99:a5:ef:e3:be:2c:a6: 88:fc:d8:5f:82:8d:fb:08:6f:9e:f7:7d:41:23:bb:d9:1d:6f: 9f:66:f2:cc:45:79:59:b9:3e:4c:bf:69:d8:99:a7:12:18:e3: 03:51:29:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjUxMjA2MTc0NDI5WhcNMjUxMjEzMTc0NDI5WjAYMRYwFAYD VQQDEw02OTM0NmI3ZC1lZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+DkqLRFqgmPSZyO+DXHSyQbm+lbGaW0WPjhXdu+azfZLMJm1rvAFtq908JM Bu0vMThZpJ/KRtFxJloNTYhcYhuXNxVBo4JkXlfXBVkBATUFHqJwjpP5zuPlMTlp SejKWj20nKF7o4dI8AC3MzuyVnxA0I0uMqRDnjFnMvxazWXMLuQ3ABxt9F1KNbAw NWsr1VaYPYVisS1K4UPKDVFbhIHuXg0CJt2INn/NRCxlpuM0nF+sX0Fsil/sKDIJ zN8sbNoSKyzrpP9PWzkmzX5xZO/OQTF/BYmHMU7Wibh5z9nBeW6J9sUhiW556Paf 7HzNzIpiKRmNVl2XBjuTDKLXLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHQMpBa KzX+zOEvhtpAYFtMGLNKMB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZqPhZsgFoUeiYuXurc0Lx3Y8p0pRL205tuHSaVJUXxKswsfwOKHGg scaKTXOOTBxuz+KWW2FDQa0ginJqiptvI7i5Efafm6zcAkQDZhF0Ct/c1N9jESFp dBl7uC1F0QQWpA8f06n/z476kYSaPtSW5ju6LLXMFKlTipMtcuwh1Zm+SSTMPFlR Cl2dGMVr1U957T7lKMYIcoBPUDuKHP0HyzeIz5ncTKUTEnAAWls+8SgSL/T2b722 Zrp9Lbj5wabhaRxpjd3IHz1v6bvvNIs0gJml7+O+LKaI/Nhfgo37CG+e931BI7vZ HW+fZvLMRXlZuT5Mv2nYmacSGOMDUSnh -----END CERTIFICATE-----Generated at Sat Dec 6 21:28:23 2025 by rpki-client