This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: 0VG3MX7NiSqqy6tU4SRoHd4q8oWJRw8AiIvuR/Oddyw= Subject key identifier: 9B:1A:E7:4D:AB:8B:DA:59:31:BC:16:70:7C:BE:53:50:EC:AE:F6:A6 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0FA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F9E Signing time: Thu 18 Dec 2025 17:20:59 +0000 Manifest this update: Thu 18 Dec 2025 17:20:58 +0000 Manifest next update: Thu 25 Dec 2025 17:20:58 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: VomcizFR0s9t/2l66pA1wj36qIYGvKERKp0lI88ELTk=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4005 (0xfa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Dec 18 17:20:58 2025 GMT Not After : Dec 25 17:20:58 2025 GMT Subject: CN=694437fb-e4f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:11:1c:0f:b4:41:5c:94:a1:d6:37:ba:b7:de: 9b:c8:df:fe:88:f8:83:bd:1c:88:2c:06:e4:59:82: 38:63:0e:c0:76:e5:eb:e3:7f:2a:1e:bc:e4:81:de: 39:d0:35:cb:01:45:33:50:8f:b0:4d:56:00:ae:79: 21:7a:f0:89:dc:0e:02:23:40:7a:67:66:5b:c5:42: df:40:39:0b:a8:51:39:7e:a5:fd:8f:ac:e9:dc:b3: 1b:70:f3:17:f6:95:51:4c:05:bc:89:cc:2a:80:3c: e5:79:4a:50:d1:67:90:c0:d6:18:91:97:4f:ac:e2: e8:15:77:4c:3d:97:e9:61:85:58:05:86:d6:34:e4: 42:69:8a:fb:7e:75:1a:c2:58:c1:bc:c4:fd:6e:0a: c4:c4:07:b8:47:a9:a0:5b:f9:62:b5:45:58:ec:8a: d1:e4:96:5a:95:ef:66:9f:a8:55:49:9e:50:95:06: 74:24:18:1b:77:95:c2:ca:2a:f0:70:f2:88:36:f1: 56:d3:a4:c4:bf:31:6d:ef:6b:77:c4:73:e7:4e:35: bc:40:68:f6:74:9d:93:8d:d7:5c:a2:74:a6:47:a9: c5:5a:af:cd:08:73:28:ab:5f:34:34:25:c5:71:a5: 65:7b:74:d1:19:02:ed:cf:5f:a6:7b:28:47:ec:eb: 7d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:1A:E7:4D:AB:8B:DA:59:31:BC:16:70:7C:BE:53:50:EC:AE:F6:A6 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:41:b6:ce:b8:8f:d0:de:04:55:9e:7b:f0:d2:25:82:7b:32: c2:d4:c2:3d:48:6c:35:8d:84:77:56:32:36:bd:38:00:ec:1b: c4:18:1a:aa:ce:36:ef:f1:82:fe:5a:31:28:09:d7:af:c8:64: 49:e7:83:6d:ab:11:ee:36:73:b8:36:e8:cc:6a:6e:39:46:37: c8:95:5f:2a:38:c1:60:0d:9e:63:56:77:f2:3c:56:2e:de:3a: 0d:ad:83:f4:42:8a:91:4d:bb:de:73:58:f2:46:31:3d:5e:f0: fa:34:e1:0b:ad:db:74:34:68:a6:be:65:78:45:74:81:df:5d: 0a:c1:c1:6a:3e:50:54:3c:60:c9:33:d9:28:27:bb:fc:8b:f0: 28:e8:ca:c5:ab:13:18:d9:0f:5b:0d:05:a8:fb:ee:6a:b5:ee: 70:90:64:a8:ea:0a:77:c5:e6:50:0a:c0:3b:7a:c4:e3:99:b7: bf:f0:35:0c:c7:f9:76:94:0e:90:b9:05:18:e3:d7:82:1b:19: ce:2f:f7:6f:28:58:e1:8d:ce:73:0e:80:4a:a8:e6:07:c7:4d: c5:6d:69:93:97:3a:19:d7:7f:01:4e:bc:27:e4:2c:66:40:cc: ce:04:a2:a9:ec:a3:79:ee:dd:41:cf:79:aa:2d:a6:5f:bd:2d: 6d:9b:b6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUxMjE4MTcyMDU4WhcNMjUxMjI1MTcyMDU4WjAYMRYwFAYD VQQDDA02OTQ0MzdmYi1lNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhEcD7RBXJSh1je6t96byN/+iPiDvRyILAbkWYI4Yw7AduXr438qHrzkgd45 0DXLAUUzUI+wTVYArnkhevCJ3A4CI0B6Z2ZbxULfQDkLqFE5fqX9j6zp3LMbcPMX 9pVRTAW8icwqgDzleUpQ0WeQwNYYkZdPrOLoFXdMPZfpYYVYBYbWNORCaYr7fnUa wljBvMT9bgrExAe4R6mgW/litUVY7IrR5JZale9mn6hVSZ5QlQZ0JBgbd5XCyirw cPKINvFW06TEvzFt72t3xHPnTjW8QGj2dJ2TjddconSmR6nFWq/NCHMoq180NCXF caVle3TRGQLtz1+meyhH7Ot95QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsa502r i9pZMbwWcHy+U1DsrvamMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADQbbOuI/Q3gRVnnvw0iWCezLC1MI9SGw1jYR3VjI2vTgA7BvEGBqq zjbv8YL+WjEoCdevyGRJ54NtqxHuNnO4NujMam45RjfIlV8qOMFgDZ5jVnfyPFYu 3joNrYP0QoqRTbvec1jyRjE9XvD6NOELrdt0NGimvmV4RXSB310KwcFqPlBUPGDJ M9koJ7v8i/Ao6MrFqxMY2Q9bDQWo++5qte5wkGSo6gp3xeZQCsA7esTjmbe/8DUM x/l2lA6QuQUY49eCGxnOL/dvKFjhjc5zDoBKqOYHx03FbWmTlzoZ138BTrwn5Cxm QMzOBKKp7KN57t1Bz3mqLaZfvS1tm7Zd -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:02 2025 by rpki-client