This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: CDmRqAOgvrL4U5s0cRPisur7wH2mNmdF24I49d+0BS0= Subject key identifier: 10:F8:04:5D:16:27:4A:56:6F:D9:37:8C:C6:3A:6D:97:48:C5:F6:74 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0F9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F98 Signing time: Sat 06 Dec 2025 17:00:24 +0000 Manifest this update: Sat 06 Dec 2025 17:00:23 +0000 Manifest next update: Sat 13 Dec 2025 17:00:23 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: GxwPNkmd2RCfk5aRrjJMZU+v0cbvRYFbY/5XuEuM+zQ=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3999 (0xf9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Dec 6 17:00:23 2025 GMT Not After : Dec 13 17:00:23 2025 GMT Subject: CN=69346128-58be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1b:2c:b5:d5:dd:12:62:d9:d1:e9:b9:03:ab: 74:21:0f:fd:f1:3d:34:36:ff:1b:ed:2e:e4:35:f3: 10:26:c4:94:35:cc:ef:27:e7:87:3b:0a:50:f1:a3: 13:94:da:4a:4c:20:9c:94:f8:44:78:80:79:cc:ae: 94:d1:16:e9:3f:15:c1:45:e9:0b:bf:66:c0:4a:9c: 9e:e7:ba:fe:c1:86:0b:e3:cc:62:6c:d1:ac:fc:81: 9e:b7:b5:91:d9:dd:b8:b8:7b:83:3b:37:08:3e:6e: aa:9a:2f:ae:c3:aa:b0:e9:bf:fa:ec:d8:b0:a6:c3: 61:65:d3:a6:60:4d:be:45:05:0c:da:fc:38:e4:d2: 23:90:54:6a:c1:31:f3:3d:c1:59:65:7d:0f:9b:57: 5d:13:6c:bf:67:66:18:84:2b:fe:8e:87:ea:65:c6: 84:19:d0:82:52:4e:16:58:64:78:e3:cc:81:d8:6a: 17:67:95:c0:c8:b7:62:c5:82:0c:cf:69:23:93:99: e4:fe:c9:cf:05:dc:39:7f:06:c2:be:d0:a8:b0:3e: a7:80:3d:17:be:86:c1:13:c2:12:23:3d:1d:81:a8: 9f:8b:8c:7b:73:fe:7f:88:61:06:e2:c1:19:0e:52: a3:e9:f8:1e:09:cb:d2:51:89:ff:fc:84:75:b7:c4: 63:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F8:04:5D:16:27:4A:56:6F:D9:37:8C:C6:3A:6D:97:48:C5:F6:74 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:14:5e:71:7a:2e:fe:8f:a0:3e:98:64:a0:cf:1d:19:c8:e2: 22:be:04:40:56:3e:1d:55:6b:57:56:f8:47:98:4f:94:51:c4: 53:f9:79:47:b0:9a:74:09:e5:26:0c:3d:82:c3:0b:7b:73:db: 99:fd:a6:91:12:77:35:be:f8:fd:f7:0b:8d:7f:c2:16:37:30: 25:fe:c9:67:0d:bf:cf:79:69:e8:69:21:32:f5:32:75:25:41: 76:ce:be:84:67:e0:85:0a:2d:7e:de:7e:72:48:0b:7c:a8:f9: 2c:5b:15:d5:cf:f3:1c:f4:6d:f2:47:6d:db:8d:a1:63:17:10: e9:3e:81:55:1c:cc:7d:f3:d4:58:75:92:ea:61:f9:d1:8b:5a: ac:02:87:51:76:a7:7f:de:a5:47:2d:e3:60:a0:78:04:c5:88: 7f:eb:65:a1:64:c0:f4:63:90:c5:ae:6e:65:74:e6:63:66:dd: b7:ba:13:63:c8:7a:e5:b4:bf:9d:75:e3:0b:52:cc:c1:8c:b6: c4:e5:55:bd:36:b1:36:0a:88:5c:df:f2:de:eb:9a:cc:99:3f: 2e:7f:4c:86:fd:6a:73:0f:b7:e9:13:e6:e3:7a:e6:20:ad:16: 2e:1f:c0:81:2e:33:07:87:f4:1a:e6:35:7d:b9:d8:91:1a:74: 21:82:a9:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUxMjA2MTcwMDIzWhcNMjUxMjEzMTcwMDIzWjAYMRYwFAYD VQQDEw02OTM0NjEyOC01OGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRsstdXdEmLZ0em5A6t0IQ/98T00Nv8b7S7kNfMQJsSUNczvJ+eHOwpQ8aMT lNpKTCCclPhEeIB5zK6U0RbpPxXBRekLv2bASpye57r+wYYL48xibNGs/IGet7WR 2d24uHuDOzcIPm6qmi+uw6qw6b/67NiwpsNhZdOmYE2+RQUM2vw45NIjkFRqwTHz PcFZZX0Pm1ddE2y/Z2YYhCv+jofqZcaEGdCCUk4WWGR448yB2GoXZ5XAyLdixYIM z2kjk5nk/snPBdw5fwbCvtCosD6ngD0XvobBE8ISIz0dgaifi4x7c/5/iGEG4sEZ DlKj6fgeCcvSUYn//IR1t8RjEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBD4BF0W J0pWb9k3jMY6bZdIxfZ0MB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsFF5xei7+j6A+mGSgzx0ZyOIivgRAVj4dVWtXVvhHmE+UUcRT+XlH sJp0CeUmDD2Cwwt7c9uZ/aaREnc1vvj99wuNf8IWNzAl/slnDb/PeWnoaSEy9TJ1 JUF2zr6EZ+CFCi1+3n5ySAt8qPksWxXVz/Mc9G3yR23bjaFjFxDpPoFVHMx989RY dZLqYfnRi1qsAodRdqd/3qVHLeNgoHgExYh/62WhZMD0Y5DFrm5ldOZjZt23uhNj yHrltL+ddeMLUszBjLbE5VW9NrE2Cohc3/Le65rMmT8uf0yG/WpzD7fpE+bjeuYg rRYuH8CBLjMHh/Qa5jV9udiRGnQhgqm9 -----END CERTIFICATE-----Generated at Sat Dec 6 19:34:27 2025 by rpki-client