This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft File: NBfrvXgtZfKcRPwL3lgaTRst66Q.mft (raw, json) Hash identifier: eh5nOUKqjOchD3ZSRAZM2j/FbFuOcQEQWt2kCuT9i3A= Subject key identifier: 4A:2C:CA:9E:2A:4A:CA:DD:50:F7:47:68:CF:79:1B:E7:44:6E:97:D3 Authority key identifier: 34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 Certificate issuer: /CN=A91836DB/serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft Manifest number: 9A Signing time: Fri 05 Dec 2025 04:20:10 +0000 Manifest this update: Fri 05 Dec 2025 04:20:10 +0000 Manifest next update: Fri 12 Dec 2025 04:20:10 +0000 Files and hashes: 1: NBfrvXgtZfKcRPwL3lgaTRst66Q.crl (hash: zsAG6YYYMSW+c3FqyudndEszFtoM4Uc0ORmL3nBFVy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836DB, serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Validity Not Before: Dec 5 04:20:10 2025 GMT Not After : Dec 12 04:20:10 2025 GMT Subject: CN=69325d7a-ca1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d1:76:e1:e9:d5:86:58:f7:82:4c:0b:e8:ce: d2:fb:ac:d5:f6:a8:7f:ef:16:19:c2:f0:04:94:c5: 92:85:54:4c:dd:94:1f:e5:a1:10:c8:bb:98:2e:1f: 18:48:2b:0f:5c:c5:f9:6b:50:f9:23:10:e5:6a:65: 87:b4:e8:96:c5:3a:46:9c:ea:c4:d2:1a:22:21:ba: a0:65:c5:c5:df:5c:af:29:aa:17:17:10:50:49:fb: 40:d3:0d:2f:ce:ea:c0:3e:64:bb:f0:0d:6c:d5:b4: 83:59:67:c1:b1:a7:67:e4:d3:18:59:ac:de:27:bf: 71:23:3e:2d:3c:65:3c:dc:a3:51:de:13:3c:32:6c: ab:62:76:ef:da:c2:9d:27:3f:34:40:b2:ba:2d:dc: 60:1a:bb:cd:c5:2e:3b:65:07:8f:c3:5b:92:a5:37: 3b:cf:3a:23:0a:71:a8:7c:b4:f5:1f:cc:9e:2d:6b: 47:b9:d0:da:2b:e2:d4:62:ca:80:54:71:ec:cf:5d: 54:42:76:ec:6e:e3:0b:e2:1b:cd:a5:5c:13:21:0d: c4:a3:62:cc:05:18:a1:eb:30:9e:90:f7:e4:c2:68: b0:26:ff:66:39:11:ad:91:21:da:ec:d1:14:57:65: cb:db:85:b6:bd:cd:89:0c:f2:fc:ad:06:81:9c:ef: ef:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2C:CA:9E:2A:4A:CA:DD:50:F7:47:68:CF:79:1B:E7:44:6E:97:D3 X509v3 Authority Key Identifier: keyid:34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e6:f8:44:f6:b9:b5:f1:6b:97:8b:2c:09:77:23:99:7c:ac: 85:8f:39:b1:0b:8e:0a:ff:b6:d1:0b:44:3c:e2:cf:82:16:a0: d3:6e:b1:71:31:11:0d:e0:0f:b6:41:2a:49:b6:2d:65:a9:e1: 20:a8:86:82:b0:ed:31:11:3f:67:a7:99:78:ef:fb:59:0f:92: 80:6f:8e:82:3c:ef:8f:4c:bc:bf:87:96:73:65:bf:75:d6:10: 63:d6:1f:ff:6e:90:a6:09:f1:0d:f7:c4:f1:d6:48:23:77:a1: a0:b1:1a:16:df:b8:54:35:5a:d8:57:52:e3:d4:9b:0d:0d:7f: 59:54:b9:37:87:c0:6f:7c:bb:1b:2f:62:3a:7e:5f:73:c3:88: 42:66:49:71:2e:40:fd:8a:08:6b:d1:9d:ce:7c:ab:4d:a6:8e: 0c:2f:69:ae:4a:03:57:77:b5:41:fc:d9:c1:06:4e:0f:20:40: b3:09:75:ce:5c:f1:4a:61:e7:f3:96:77:f8:71:f9:47:c8:6a: 82:8b:9f:e7:f8:8e:9d:c4:3a:67:28:fc:98:a3:df:14:47:a7: fd:1e:ab:bc:38:ef:35:c5:c8:63:ed:c5:ef:b5:fc:ea:97:15: de:94:84:ec:df:9e:69:1c:22:f4:55:56:3d:ab:7b:15:8a:de: af:a3:26:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2REIxMTAvBgNVBAUTKDM0MTdFQkJENzgyRDY1RjI5QzQ0RkMwQkRFNTgxQTRE MUIyREVCQTQwHhcNMjUxMjA1MDQyMDEwWhcNMjUxMjEyMDQyMDEwWjAYMRYwFAYD VQQDEw02OTMyNWQ3YS1jYTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NF24enVhlj3gkwL6M7S+6zV9qh/7xYZwvAElMWShVRM3ZQf5aEQyLuYLh8Y SCsPXMX5a1D5IxDlamWHtOiWxTpGnOrE0hoiIbqgZcXF31yvKaoXFxBQSftA0w0v zurAPmS78A1s1bSDWWfBsadn5NMYWazeJ79xIz4tPGU83KNR3hM8MmyrYnbv2sKd Jz80QLK6LdxgGrvNxS47ZQePw1uSpTc7zzojCnGofLT1H8yeLWtHudDaK+LUYsqA VHHsz11UQnbsbuML4hvNpVwTIQ3Eo2LMBRih6zCekPfkwmiwJv9mORGtkSHa7NEU V2XL24W2vc2JDPL8rQaBnO/vWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEosyp4q SsrdUPdHaM95G+dEbpfTMB8GA1UdIwQYMBaAFDQX6714LWXynET8C95YGk0bLeuk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZEQi81OUFGQzIwQUU0 NUUxMUVGQTE1NjI4NDZDNEY5QUUwMi9OQmZydlhndFpmS2NSUHdMM2xnYVRSc3Q2 NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CZnJ2WGd0WmZLY1JQd0wzbGdhVFJzdDY2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEQi81OUFGQzIwQUU0NUUxMUVGQTE1NjI4NDZDNEY5QUUwMi9OQmZydlhndFpm S2NSUHdMM2xnYVRSc3Q2NlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW5vhE9rm18WuXiywJdyOZfKyFjzmxC44K/7bRC0Q84s+CFqDTbrFx MREN4A+2QSpJti1lqeEgqIaCsO0xET9np5l47/tZD5KAb46CPO+PTLy/h5ZzZb91 1hBj1h//bpCmCfEN98Tx1kgjd6GgsRoW37hUNVrYV1Lj1JsNDX9ZVLk3h8BvfLsb L2I6fl9zw4hCZklxLkD9ighr0Z3OfKtNpo4ML2muSgNXd7VB/NnBBk4PIECzCXXO XPFKYefzlnf4cflHyGqCi5/n+I6dxDpnKPyYo98UR6f9Hqu8OO81xchj7cXvtfzq lxXelITs355pHCL0VVY9q3sVit6voyZd -----END CERTIFICATE-----Generated at Sat Dec 6 23:23:22 2025 by rpki-client