This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: NPULUqrPeFhyqzCef1WcBWGeHAIh2eLKrytCk490UEA= Subject key identifier: F4:1D:44:7B:9D:34:9C:A8:8D:36:D8:52:7B:FA:AF:3C:87:BA:EC:A8 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2BD3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2BBD Signing time: Sat 06 Dec 2025 14:24:20 +0000 Manifest this update: Sat 06 Dec 2025 14:24:19 +0000 Manifest next update: Sat 13 Dec 2025 14:24:19 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: 59oU/vi1BRBKc61Ot7q++9Suj/rgOulbrV6QV9QSAzA=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: NK9ND6m4XQQdYJfdTkVni6Vzs2GTwmWQ7OeeG3lJVUs=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: Dh1mpv4UoWbEEeCnj4hWDVua0Kb3Ya4BmP9+TVk00i8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11219 (0x2bd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Dec 6 14:24:19 2025 GMT Not After : Dec 13 14:24:19 2025 GMT Subject: CN=69343c93-fb21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:da:2c:49:5b:53:43:cf:10:97:f3:da:b9:97: ab:52:b8:8b:17:b1:17:32:03:36:db:48:b9:ea:82: 3f:9f:cc:6b:b0:34:ed:8f:d7:55:4e:c3:dc:5d:0e: 1d:a6:3d:d3:12:90:11:86:d0:13:8b:bb:54:5e:18: d1:04:9a:6c:25:5b:22:3b:4f:c6:d8:8b:76:51:6f: 51:c2:6d:e4:88:e1:39:1d:d1:d3:99:c3:2a:b8:7b: fc:86:93:e4:4d:ba:3f:5a:d2:78:48:0d:32:3d:30: fa:8b:ab:27:d3:43:89:96:a0:3a:a8:1a:da:0e:85: e1:44:17:3e:fe:4c:f6:f5:2d:a9:1c:03:90:4b:bd: 6a:58:0b:2a:ab:c9:0f:a6:54:e0:45:5c:a7:a5:83: b5:71:2e:a6:c0:ff:a1:a8:5d:40:1f:5c:e7:c0:0d: 57:ea:2a:f2:d1:54:d0:9a:7c:e3:82:64:ae:7e:11: 91:09:21:0c:96:8b:52:74:32:72:fa:6a:c9:73:3f: 0b:eb:de:f0:bd:4a:be:7c:f3:69:b3:17:24:c4:ea: 13:be:8e:0a:b7:95:72:1c:53:bb:7a:f9:b5:94:ca: 61:11:37:3c:1d:e9:70:46:09:af:3e:90:ad:65:60: 69:f9:ca:bb:57:1c:4b:7b:d3:42:15:14:e2:25:54: fd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1D:44:7B:9D:34:9C:A8:8D:36:D8:52:7B:FA:AF:3C:87:BA:EC:A8 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f9:74:c2:bb:5c:74:52:66:16:d1:5f:bb:7d:11:09:94:a0: 58:2e:1b:66:0e:26:54:01:71:cc:12:68:33:b6:6e:85:81:42: 00:7c:1b:f6:98:3c:82:cd:57:86:f3:6f:b9:21:0b:78:1e:2d: 8e:69:a4:9a:cc:7d:d9:df:0e:22:ce:02:4d:83:8a:2b:21:89: 02:f3:8b:e8:d1:18:d3:f6:eb:95:3f:81:db:a0:81:e8:5f:4b: 64:4f:e6:cb:18:e0:36:a4:16:4e:12:f1:8f:ba:75:a3:f0:e0: 75:a4:b8:c0:bb:db:78:40:db:e3:a1:53:00:c3:52:b6:78:d2: 95:4b:d5:31:3a:d7:bb:1a:37:8f:d0:07:eb:a9:83:66:72:f5: 7f:6f:48:b6:9d:3d:09:63:7c:cd:4b:cc:d8:ec:e2:cd:18:09: 44:bb:da:6e:56:6e:b2:16:c4:79:58:2e:0c:26:12:8f:ea:c7: 4c:49:c4:89:d1:69:b1:1e:2c:a4:a2:43:6a:ed:71:0f:4e:3a: 5f:b8:19:c9:a1:3a:d5:10:94:3a:e6:40:66:ce:f3:f3:00:b4: 5e:8e:7d:fa:ae:c9:25:cb:6e:f3:5b:2a:13:68:d6:48:22:49: 59:89:dd:2b:d3:a8:4a:e1:c0:97:8d:1a:66:87:68:cc:a4:57: 02:13:39:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUxMjA2MTQyNDE5WhcNMjUxMjEzMTQyNDE5WjAYMRYwFAYD VQQDEw02OTM0M2M5My1mYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtosSVtTQ88Ql/PauZerUriLF7EXMgM220i56oI/n8xrsDTtj9dVTsPcXQ4d pj3TEpARhtATi7tUXhjRBJpsJVsiO0/G2It2UW9Rwm3kiOE5HdHTmcMquHv8hpPk Tbo/WtJ4SA0yPTD6i6sn00OJlqA6qBraDoXhRBc+/kz29S2pHAOQS71qWAsqq8kP plTgRVynpYO1cS6mwP+hqF1AH1znwA1X6iry0VTQmnzjgmSufhGRCSEMlotSdDJy +mrJcz8L697wvUq+fPNpsxckxOoTvo4Kt5VyHFO7evm1lMphETc8HelwRgmvPpCt ZWBp+cq7VxxLe9NCFRTiJVT93QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQdRHud NJyojTbYUnv6rzyHuuyoMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd+XTCu1x0UmYW0V+7fREJlKBYLhtmDiZUAXHMEmgztm6FgUIAfBv2 mDyCzVeG82+5IQt4Hi2OaaSazH3Z3w4izgJNg4orIYkC84vo0RjT9uuVP4HboIHo X0tkT+bLGOA2pBZOEvGPunWj8OB1pLjAu9t4QNvjoVMAw1K2eNKVS9UxOte7GjeP 0AfrqYNmcvV/b0i2nT0JY3zNS8zY7OLNGAlEu9puVm6yFsR5WC4MJhKP6sdMScSJ 0WmxHiykokNq7XEPTjpfuBnJoTrVEJQ65kBmzvPzALRejn36rskly27zWyoTaNZI IklZid0r06hK4cCXjRpmh2jMpFcCEzn4 -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:32 2025 by rpki-client