This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft File: nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft (raw, json) Hash identifier: /GnnCyxBngY37JkCUadrsPN5DhTcBzDum3POLdH3ZEc= Subject key identifier: 61:73:AE:3E:F8:28:E9:DD:B3:E9:B6:B3:70:DE:5C:3F:52:34:DA:3A Authority key identifier: 9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD Certificate issuer: /CN=A9185D34/serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Certificate serial: 086F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft Manifest number: 0862 Signing time: Sat 06 Dec 2025 19:49:39 +0000 Manifest this update: Sat 06 Dec 2025 19:49:38 +0000 Manifest next update: Sat 13 Dec 2025 19:49:38 +0000 Files and hashes: 1: nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl (hash: w/Dr4KaTNvMmywPZfN0fBXOgtjmwSrumBYCMYb0osE0=) 2: C1171FCAB1B111ECBA7F614FC4F9AE02.roa (hash: 5pc4Fgf96yhJHg1dXqyOkvTiTCFOmyYqtcguriQDwlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2159 (0x86f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D34, serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Validity Not Before: Dec 6 19:49:38 2025 GMT Not After : Dec 13 19:49:38 2025 GMT Subject: CN=693488d2-52ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bc:c7:6d:d2:be:4e:c2:52:ac:eb:fd:38:c0: 8b:22:d6:51:6a:fa:70:ae:cc:ca:d3:1b:43:08:d9: 37:e6:40:dd:49:ac:9c:46:08:9b:c9:b6:cd:b9:c6: 89:b0:9e:91:c6:34:a7:9b:12:6c:9f:5c:74:cd:9c: 80:bd:69:ab:92:56:44:6f:64:70:b6:6a:b1:86:06: b5:11:35:0d:ce:58:5d:56:ab:ad:4b:e7:4d:b0:01: fc:97:f4:89:ba:0e:17:d8:ff:43:f6:34:29:9e:f1: ad:59:7e:bf:2c:0e:6c:ce:c7:a9:82:a8:3d:50:4b: 51:4c:af:d1:a4:31:23:1e:61:76:90:63:f2:ff:05: 21:8d:f3:24:d4:57:99:03:52:1d:0e:60:cf:75:51: b7:4c:b5:34:c9:69:36:b2:25:3e:69:fa:f1:48:f8: ed:c8:ed:d8:55:b4:d2:9b:aa:c4:aa:0c:1c:b1:01: cc:b9:dc:4d:9a:db:ee:c0:f3:b7:28:c4:f9:c0:03: 93:fc:c8:30:f6:6b:bf:e2:2e:9a:d6:fb:fc:6c:7f: 35:95:0b:bf:dc:a8:ab:42:ef:04:7a:d9:2a:42:af: f8:d4:4b:99:b4:92:35:73:d5:bc:d6:fb:29:42:b9: a1:24:9e:6b:9e:81:59:26:ba:98:fb:d9:16:f9:8d: c3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:73:AE:3E:F8:28:E9:DD:B3:E9:B6:B3:70:DE:5C:3F:52:34:DA:3A X509v3 Authority Key Identifier: keyid:9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:70:fd:8e:e1:7c:f3:ae:d8:b4:a8:69:5b:96:50:12:5f:4b: 25:bc:4a:47:1a:5f:db:79:38:be:2c:c4:13:5e:8f:35:e6:18: 60:81:1d:c0:cb:1c:be:53:b6:4b:f8:69:42:46:b0:0c:f8:6b: 90:4f:3d:0b:4a:16:fd:37:1a:3c:0f:d6:8c:7f:d4:19:ac:1d: bd:b9:3c:47:71:98:4e:8e:a7:4c:d3:55:ba:d3:5e:f6:74:fc: 5f:03:aa:c6:77:53:65:74:7d:f7:21:8e:f0:6b:11:6c:16:a8: 5b:f4:c9:d7:9b:f9:ef:09:41:62:e0:fa:1f:8f:b4:9a:83:91: 79:e7:ce:3f:a9:79:37:ae:f7:b8:a2:9a:0b:57:89:fd:28:35: b6:f2:5f:a4:05:88:e2:89:16:9a:ae:fe:bf:ee:8c:3d:6f:58: 52:83:c1:b5:42:cb:9b:2a:06:c2:91:9e:cb:da:83:9e:9e:40: 69:d3:57:91:a5:68:01:e8:a8:d2:d4:9a:e9:e6:23:68:37:0c: 98:24:66:73:a6:15:51:40:82:38:0d:92:8c:5f:7c:f2:f4:a4: 7b:78:ad:cf:de:c1:d3:44:fd:a7:3c:c8:6c:13:15:19:01:5f: 50:63:b5:68:32:22:d3:45:6a:3f:b8:5f:e3:94:a8:fe:f6:d3: 5c:17:72:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVEMzQxMTAvBgNVBAUTKDlFQzEyMTZEMjU2NDE2NDAzQ0I1QzUzRTczNDU1MzBG ODMyNzJDREQwHhcNMjUxMjA2MTk0OTM4WhcNMjUxMjEzMTk0OTM4WjAYMRYwFAYD VQQDEw02OTM0ODhkMi01MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rzHbdK+TsJSrOv9OMCLItZRavpwrszK0xtDCNk35kDdSaycRgibybbNucaJ sJ6RxjSnmxJsn1x0zZyAvWmrklZEb2Rwtmqxhga1ETUNzlhdVqutS+dNsAH8l/SJ ug4X2P9D9jQpnvGtWX6/LA5szsepgqg9UEtRTK/RpDEjHmF2kGPy/wUhjfMk1FeZ A1IdDmDPdVG3TLU0yWk2siU+afrxSPjtyO3YVbTSm6rEqgwcsQHMudxNmtvuwPO3 KMT5wAOT/Mgw9mu/4i6a1vv8bH81lQu/3KirQu8EetkqQq/41EuZtJI1c9W81vsp QrmhJJ5rnoFZJrqY+9kW+Y3DxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFzrj74 KOnds+m2s3DeXD9SNNo6MB8GA1UdIwQYMBaAFJ7BIW0lZBZAPLXFPnNFUw+DJyzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQzNC9EQkE4Nzg1OEU2 QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0ZrQTh0Y1UtYzBWVEQ0TW5M TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zRWhiU1ZrRmtBOHRjVS1jMFZURDRNbkxOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQzNC9EQkE4Nzg1OEU2QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0Zr QTh0Y1UtYzBWVEQ0TW5MTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWcP2O4Xzzrti0qGlbllASX0slvEpHGl/beTi+LMQTXo815hhggR3A yxy+U7ZL+GlCRrAM+GuQTz0LShb9Nxo8D9aMf9QZrB29uTxHcZhOjqdM01W60172 dPxfA6rGd1NldH33IY7waxFsFqhb9MnXm/nvCUFi4Pofj7Sag5F5584/qXk3rve4 opoLV4n9KDW28l+kBYjiiRaarv6/7ow9b1hSg8G1QsubKgbCkZ7L2oOenkBp01eR pWgB6KjS1Jrp5iNoNwyYJGZzphVRQII4DZKMX3zy9KR7eK3P3sHTRP2nPMhsExUZ AV9QY7VoMiLTRWo/uF/jlKj+9tNcF3KM -----END CERTIFICATE-----Generated at Sat Dec 6 21:01:28 2025 by rpki-client