This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: NqQ2txS7kqmhY1f+mj6ZGEi+TmycpE0CGSfoE0URfJM= Subject key identifier: E8:B8:DC:55:5C:43:CB:2B:97:38:B5:52:85:49:FE:B5:5E:10:6B:0F Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 9A Signing time: Fri 05 Dec 2025 04:24:32 +0000 Manifest this update: Fri 05 Dec 2025 04:24:31 +0000 Manifest next update: Fri 12 Dec 2025 04:24:31 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: Y0MM5YMrsHPH+SbD5qEImddIjZecDuygG8bdo94j2dk=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:24:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Dec 5 04:24:31 2025 GMT Not After : Dec 12 04:24:31 2025 GMT Subject: CN=69325e7f-6602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7b:7c:b3:0a:a2:44:1c:aa:53:46:f9:1d:67: ec:eb:39:47:ad:33:e1:30:b4:52:2f:e4:9e:90:39: 90:82:88:6c:30:47:69:ea:79:bd:0e:32:0e:9e:83: 9c:ca:95:64:44:52:e2:f7:88:21:ab:b2:67:52:3a: 09:73:f0:39:33:41:52:18:98:ca:9c:13:2c:98:c6: 80:a9:23:fb:c2:bb:f9:bf:94:7c:00:a1:11:8b:84: 63:54:d1:09:73:63:61:23:46:26:09:cb:20:fd:cc: f4:2a:72:02:b6:ff:d8:20:40:e9:4e:41:77:fd:60: 71:39:a0:c3:a3:38:78:a2:48:50:de:fb:85:e7:82: dc:18:e1:3a:98:06:bf:12:32:cb:f0:49:7a:92:78: 00:02:c6:5e:de:91:7f:2a:da:68:03:48:8e:5e:08: a2:67:a0:58:e7:56:27:a6:f2:c6:95:a3:79:03:c3: cf:ce:37:05:8b:7f:51:b4:d9:8d:70:80:41:eb:a7: 12:80:92:74:3b:4c:54:fe:b8:f2:b5:c2:14:1e:01: bc:7f:f3:a1:ac:fc:68:85:66:39:59:f7:cc:86:93: 34:33:98:dc:bc:fa:9f:56:4f:71:5f:1b:ef:3d:0a: a8:75:97:f3:bd:f4:26:14:e0:87:f1:c7:e7:60:73: ad:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B8:DC:55:5C:43:CB:2B:97:38:B5:52:85:49:FE:B5:5E:10:6B:0F X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:fe:92:df:00:27:d3:ec:11:f5:4c:20:67:ee:aa:8e:cb:df: 58:51:f2:92:3f:c0:c6:a9:55:02:2f:e8:34:60:db:da:7d:a0: 7a:48:37:62:fc:a7:b6:8a:22:f0:17:05:a7:e3:57:4d:83:8e: d2:2e:ca:a3:82:51:c6:ef:25:cd:f4:30:90:48:d3:47:0b:9f: e7:78:c7:7e:98:a6:1d:68:d2:81:4c:01:fd:62:4c:e3:dd:4f: 79:36:74:a4:ed:41:d2:2c:6e:72:c9:7f:47:41:08:06:ae:55: be:9a:17:08:c5:dc:a0:fa:93:f6:80:67:c9:c8:34:ab:da:d7: 6b:e1:b3:38:ed:b7:f1:c4:d3:4a:0b:a9:c6:5a:c2:c0:d9:15: 85:ab:bc:4c:7f:90:22:3e:b7:d2:a0:80:65:d0:57:08:d3:93: 32:93:8e:20:d1:ce:76:3c:db:54:77:02:b2:91:72:50:c0:06: 41:1a:c8:19:a6:6e:38:96:90:b1:b9:73:3f:62:3a:d8:5b:af: 81:2f:e5:5b:6a:86:13:41:75:e5:5c:98:a2:de:b8:a6:97:c6: e7:72:b2:a9:e7:f0:4a:34:eb:65:c6:eb:75:12:f7:87:64:78: 5c:c0:22:70:b2:e9:44:04:e1:21:b3:4a:bc:b1:23:7c:e7:6c: 55:0d:61:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjUxMjA1MDQyNDMxWhcNMjUxMjEyMDQyNDMxWjAYMRYwFAYD VQQDEw02OTMyNWU3Zi02NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXt8swqiRByqU0b5HWfs6zlHrTPhMLRSL+SekDmQgohsMEdp6nm9DjIOnoOc ypVkRFLi94ghq7JnUjoJc/A5M0FSGJjKnBMsmMaAqSP7wrv5v5R8AKERi4RjVNEJ c2NhI0YmCcsg/cz0KnICtv/YIEDpTkF3/WBxOaDDozh4okhQ3vuF54LcGOE6mAa/ EjLL8El6kngAAsZe3pF/KtpoA0iOXgiiZ6BY51YnpvLGlaN5A8PPzjcFi39RtNmN cIBB66cSgJJ0O0xU/rjytcIUHgG8f/OhrPxohWY5WffMhpM0M5jcvPqfVk9xXxvv PQqodZfzvfQmFOCH8cfnYHOt2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOi43FVc Q8srlzi1UoVJ/rVeEGsPMB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK/pLfACfT7BH1TCBn7qqOy99YUfKSP8DGqVUCL+g0YNvafaB6SDdi /Ke2iiLwFwWn41dNg47SLsqjglHG7yXN9DCQSNNHC5/neMd+mKYdaNKBTAH9Ykzj 3U95NnSk7UHSLG5yyX9HQQgGrlW+mhcIxdyg+pP2gGfJyDSr2tdr4bM47bfxxNNK C6nGWsLA2RWFq7xMf5AiPrfSoIBl0FcI05Myk44g0c52PNtUdwKykXJQwAZBGsgZ pm44lpCxuXM/YjrYW6+BL+VbaoYTQXXlXJii3riml8bncrKp5/BKNOtlxut1EveH ZHhcwCJwsulEBOEhs0q8sSN852xVDWFz -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:38 2025 by rpki-client