This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft File: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft (raw, json) Hash identifier: c8ZsLaMYRPtv1s2+za89zyW+aaN8hQS9/Z+iNxFpSJs= Subject key identifier: DD:95:4C:E9:2E:08:F9:D8:8B:02:A1:FC:27:ED:9C:5A:F9:5E:D9:52 Authority key identifier: 34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE Certificate issuer: /CN=A9150EAB/serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Certificate serial: 0B64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft Manifest number: 129F Signing time: Thu 18 Dec 2025 18:49:07 +0000 Manifest this update: Thu 18 Dec 2025 18:49:06 +0000 Manifest next update: Thu 25 Dec 2025 18:49:06 +0000 Files and hashes: 1: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl (hash: I63cbeeI4mxh6HVEJlWoZdfny+h8lk7Oxuf6wkTV1q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150EAB, serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Validity Not Before: Dec 18 18:49:06 2025 GMT Not After : Dec 25 18:49:06 2025 GMT Subject: CN=69444ca3-d85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:b2:9c:ff:3d:74:6b:e9:ec:4f:57:b6:c2: 01:41:50:74:5b:5d:ed:50:88:d5:d1:cc:ed:18:22: 5d:35:c3:c0:1e:35:6e:e1:f0:27:90:45:6a:c8:06: 08:2e:2e:cf:3b:32:ae:21:c6:bc:02:da:0b:b4:2c: 3b:6a:82:0c:93:d5:cb:08:96:86:9a:92:ea:f1:6d: 57:48:70:4b:56:d2:f2:dd:51:78:48:ac:01:9b:08: e6:56:7c:ee:58:fe:5d:1a:5b:2f:ba:0f:41:bc:fb: 41:64:f4:a1:ff:b8:f8:26:bc:23:ed:f4:dc:32:38: 88:c5:96:52:9b:30:e9:42:4b:4c:19:2c:92:33:86: b9:0c:6d:a4:7a:c8:77:93:1d:dc:1a:c6:b8:0a:02: 46:7c:6b:0a:bb:72:c5:92:50:52:f9:46:01:b1:71: 42:ae:84:a1:9a:f4:36:6f:cb:e1:cc:f5:f7:7b:2d: fa:cb:71:f5:75:1c:a1:ca:81:6b:d8:19:e4:9a:7d: ce:65:93:7b:ae:3d:ee:1f:40:19:e3:c5:77:d2:92: 4e:13:cf:19:b8:24:e6:20:e6:88:e2:58:7e:22:87: 6d:1c:c0:59:4e:06:30:46:76:d2:ee:52:11:3a:52: 12:fa:32:8d:d5:a6:f8:31:43:fe:80:ff:aa:a2:fd: e4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:95:4C:E9:2E:08:F9:D8:8B:02:A1:FC:27:ED:9C:5A:F9:5E:D9:52 X509v3 Authority Key Identifier: keyid:34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:2a:59:a7:9a:56:0e:60:83:94:31:44:21:9a:92:ce:5a:c4: d6:80:40:bf:b0:5a:53:4c:71:bb:29:16:9c:ee:15:a0:3c:bf: 19:a8:99:96:e7:18:ab:20:9d:ac:ce:38:75:3e:e0:64:81:51: 20:84:32:f8:44:91:dd:74:36:2a:fa:19:e6:28:ee:51:75:84: ac:31:76:8e:49:69:1d:2f:58:0e:e9:72:2e:e1:8e:b1:ff:60: e2:85:89:a4:f4:1f:6e:a2:d3:e4:da:cc:e1:27:d5:8e:23:6a: 59:13:2c:a3:dd:65:31:ff:a1:8f:11:cd:c7:44:b0:32:e2:d1: 6f:c2:a3:e6:c0:5c:33:9e:d7:14:3f:ff:69:08:e2:6d:ee:c2: 49:4a:77:fc:7c:2f:96:fe:c1:4e:ee:6c:b7:aa:b2:49:90:19: eb:a9:ab:b1:30:68:64:74:ab:81:09:62:35:ce:02:8d:82:cb: ba:75:fd:aa:6f:a1:dc:f7:a4:2a:88:66:93:8c:1a:29:be:12: 98:62:ff:24:22:f5:23:76:9a:0e:08:84:2b:a2:d9:e2:9c:82: 39:83:8d:c4:5b:68:89:5b:32:33:de:c4:89:d6:f4:db:43:4f: 78:d0:6c:31:f0:c8:98:23:7e:8b:2b:6c:23:ec:5a:e5:59:cf: ee:5f:d5:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFQUIxMTAvBgNVBAUTKDM0MUQwOTAyMUNCRjlGRDNCQjRDQjg4RTNEMEVEMUM3 NjRERUQwRkUwHhcNMjUxMjE4MTg0OTA2WhcNMjUxMjI1MTg0OTA2WjAYMRYwFAYD VQQDDA02OTQ0NGNhMy1kODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy++ynP89dGvp7E9XtsIBQVB0W13tUIjV0cztGCJdNcPAHjVu4fAnkEVqyAYI Li7POzKuIca8AtoLtCw7aoIMk9XLCJaGmpLq8W1XSHBLVtLy3VF4SKwBmwjmVnzu WP5dGlsvug9BvPtBZPSh/7j4Jrwj7fTcMjiIxZZSmzDpQktMGSySM4a5DG2kesh3 kx3cGsa4CgJGfGsKu3LFklBS+UYBsXFCroShmvQ2b8vhzPX3ey36y3H1dRyhyoFr 2Bnkmn3OZZN7rj3uH0AZ48V30pJOE88ZuCTmIOaI4lh+IodtHMBZTgYwRnbS7lIR OlIS+jKN1ab4MUP+gP+qov3kGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2VTOku CPnYiwKh/CftnFr5XtlSMB8GA1UdIwQYMBaAFDQdCQIcv5/Tu0y4jj0O0cdk3tD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEVBQi8xQjJFNzA1MDQ0 NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245TzdUTGlPUFE3UngyVGUw UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CMEpBaHlfbjlPN1RMaU9QUTdSeDJUZTBQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEVBQi8xQjJFNzA1MDQ0NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245 TzdUTGlPUFE3UngyVGUwUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9KlmnmlYOYIOUMUQhmpLOWsTWgEC/sFpTTHG7KRac7hWgPL8ZqJmW 5xirIJ2szjh1PuBkgVEghDL4RJHddDYq+hnmKO5RdYSsMXaOSWkdL1gO6XIu4Y6x /2DihYmk9B9uotPk2szhJ9WOI2pZEyyj3WUx/6GPEc3HRLAy4tFvwqPmwFwzntcU P/9pCOJt7sJJSnf8fC+W/sFO7my3qrJJkBnrqauxMGhkdKuBCWI1zgKNgsu6df2q b6Hc96QqiGaTjBopvhKYYv8kIvUjdpoOCIQrotninII5g43EW2iJWzIz3sSJ1vTb Q0940Gwx8MiYI36LK2wj7FrlWc/uX9WT -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:59 2025 by rpki-client