This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft File: NsqppHOp6nOCn3NWgJvBYQOtA64.mft (raw, json) Hash identifier: VD9jBYNFA4RjxxBDzmxiOsuKSohYnQZtYaKJFt0RqjI= Subject key identifier: 7C:E0:7E:28:B3:E8:21:D4:45:EA:0E:DC:21:1B:A7:47:0B:50:DA:4B Authority key identifier: 36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE Certificate issuer: /CN=A9152329/serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft Manifest number: CE Signing time: Fri 19 Dec 2025 04:52:23 +0000 Manifest this update: Fri 19 Dec 2025 04:52:22 +0000 Manifest next update: Fri 26 Dec 2025 04:52:22 +0000 Files and hashes: 1: NsqppHOp6nOCn3NWgJvBYQOtA64.crl (hash: u/XN6APqI+nBgrsl6a2TGOa3Aq175eFRxq1qXmTTfZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Validity Not Before: Dec 19 04:52:22 2025 GMT Not After : Dec 26 04:52:22 2025 GMT Subject: CN=6944da07-7e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:30:ef:07:36:76:9f:21:75:5a:fa:86:9b:af: 62:8c:4d:b0:f0:c2:ee:26:e9:dc:5b:de:31:1c:8c: 5c:f4:a0:99:56:2f:cd:fd:a2:89:4f:e9:5e:5f:bd: 7f:f0:37:c9:3b:18:78:87:4c:27:22:32:15:14:6f: 1a:3f:44:e8:36:a3:1e:7e:87:c8:dc:2a:f1:bf:54: af:d9:07:e0:eb:fa:55:75:b7:6c:a2:32:6c:fa:cf: 5d:f9:18:86:51:aa:f4:54:fc:4f:6c:f0:c1:cb:2a: 8d:f0:c9:3a:61:db:a6:f4:96:83:92:ba:ed:ea:bb: 25:84:ad:23:9d:51:d7:8d:92:ca:5e:86:a2:e6:4e: 26:79:28:76:e9:8c:aa:f8:a7:bb:38:d8:40:f8:27: 8f:7d:6c:be:7f:7e:e8:5a:7b:d8:44:ad:9d:c4:9e: bc:62:8d:e6:0f:ed:0d:3e:c2:d3:f0:a1:57:c5:0a: 72:5f:52:8b:26:d2:c5:73:7f:b0:8a:b3:96:2c:5a: db:f3:8f:7c:19:a4:31:0d:9e:2d:ca:14:b2:78:b4: 59:b5:5a:fa:d5:e3:a4:3e:a6:85:45:44:87:15:cb: 76:e0:8e:f7:5e:ac:92:5e:98:1d:21:22:99:75:0b: 1e:b0:3f:6f:91:2c:b0:77:c9:b4:51:aa:97:8e:40: 2a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E0:7E:28:B3:E8:21:D4:45:EA:0E:DC:21:1B:A7:47:0B:50:DA:4B X509v3 Authority Key Identifier: keyid:36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b2:92:06:3b:7a:55:8b:f8:d7:37:d5:84:30:dc:6a:3f:3a: 13:ea:ff:f1:eb:26:77:32:82:b1:37:7c:cf:af:dd:38:c9:e5: 04:69:63:1d:e1:9d:77:cb:fe:6b:bb:15:91:e3:47:77:92:f6: af:1d:2f:25:93:78:a0:6f:d1:73:86:40:70:16:83:60:35:af: 28:6e:ef:33:cd:2b:24:53:7e:49:5f:24:8c:4d:bf:0e:08:fb: ff:c5:cf:a0:2e:98:f4:bd:c6:15:a3:4f:44:7a:a6:7c:f6:39: d0:ac:fc:cd:5e:32:49:4d:6c:02:40:9a:16:66:03:ad:58:80: 44:e7:81:ed:b0:57:13:c6:67:d6:98:0d:f7:b4:3a:5e:20:aa: e0:46:48:74:05:fa:3c:d8:ba:34:2a:28:79:74:46:b0:2d:89: 58:13:69:dd:61:01:5e:30:8b:36:5d:46:ee:a3:ea:f5:62:4d: 8f:48:20:80:df:82:03:f4:4a:cb:81:36:54:86:9c:27:2b:16: 3a:69:90:b4:4f:50:c6:dd:26:5b:56:7d:58:4a:f0:4b:05:63: 91:47:0e:2b:77:61:18:3b:29:9f:bd:ff:19:29:ac:de:90:e2: a8:59:30:e5:0e:0e:60:20:38:eb:e1:30:d9:af:fa:45:38:73: 83:5a:86:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDM2Q0FBOUE0NzNBOUVBNzM4MjlGNzM1NjgwOUJDMTYx MDNBRDAzQUUwHhcNMjUxMjE5MDQ1MjIyWhcNMjUxMjI2MDQ1MjIyWjAYMRYwFAYD VQQDDA02OTQ0ZGEwNy03ZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TDvBzZ2nyF1WvqGm69ijE2w8MLuJuncW94xHIxc9KCZVi/N/aKJT+leX71/ 8DfJOxh4h0wnIjIVFG8aP0ToNqMefofI3Crxv1Sv2Qfg6/pVdbdsojJs+s9d+RiG Uar0VPxPbPDByyqN8Mk6Ydum9JaDkrrt6rslhK0jnVHXjZLKXoai5k4meSh26Yyq +Ke7ONhA+CePfWy+f37oWnvYRK2dxJ68Yo3mD+0NPsLT8KFXxQpyX1KLJtLFc3+w irOWLFrb8498GaQxDZ4tyhSyeLRZtVr61eOkPqaFRUSHFct24I73XqySXpgdISKZ dQsesD9vkSywd8m0UaqXjkAqmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzgfiiz 6CHUReoO3CEbp0cLUNpLMB8GA1UdIwQYMBaAFDbKqaRzqepzgp9zVoCbwWEDrQOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9EMDg2RDU1RUEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZuT0NuM05XZ0p2QllRT3RB NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zcXBwSE9wNm5PQ24zTldnSnZCWVFPdEE2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9EMDg2RDU1RUEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZu T0NuM05XZ0p2QllRT3RBNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAspIGO3pVi/jXN9WEMNxqPzoT6v/x6yZ3MoKxN3zPr904yeUEaWMd 4Z13y/5ruxWR40d3kvavHS8lk3igb9FzhkBwFoNgNa8obu8zzSskU35JXySMTb8O CPv/xc+gLpj0vcYVo09EeqZ89jnQrPzNXjJJTWwCQJoWZgOtWIBE54HtsFcTxmfW mA33tDpeIKrgRkh0Bfo82Lo0Kih5dEawLYlYE2ndYQFeMIs2XUbuo+r1Yk2PSCCA 34ID9ErLgTZUhpwnKxY6aZC0T1DG3SZbVn1YSvBLBWORRw4rd2EYOymfvf8ZKaze kOKoWTDlDg5gIDjr4TDZr/pFOHODWobh -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:20 2025 by rpki-client