This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: CmJAbzf9dI3xV1SkZDumSa5mLut0KRGN5B9nc1OjrKc= Subject key identifier: E3:1B:A5:27:3C:9A:38:29:9E:61:FE:32:C6:A7:6E:5A:A8:F2:09:37 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: D8 Signing time: Fri 23 Jan 2026 04:50:53 +0000 Manifest this update: Fri 23 Jan 2026 04:50:53 +0000 Manifest next update: Fri 30 Jan 2026 04:50:53 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: c/fCXxCrJ4m9FUaaX3kzg3C0w8WEnIMYTA084nxabmQ=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: oF9pzHgXgFgT7pclB8+4buU+FpQCxpT9fP80ypai+xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Jan 23 04:50:53 2026 GMT Not After : Jan 30 04:50:53 2026 GMT Subject: CN=6972fe2d-ed16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7b:11:89:1f:82:19:99:71:92:56:0b:ee:c3: 0f:d1:96:db:5f:61:d5:76:19:4c:6e:30:83:70:ff: 6a:b0:c3:2c:87:90:06:18:36:f7:ec:4c:fb:9e:73: d5:07:b8:a5:f7:42:22:09:04:00:f1:22:cf:9b:6a: 31:25:d3:88:fe:1f:c4:7d:63:40:23:a4:2b:ea:47: db:9c:f2:ea:ed:6d:0f:0a:77:f3:5a:e4:eb:a9:84: 6a:e8:0a:c6:33:60:30:00:5e:83:4b:71:d8:0c:98: 92:a2:06:be:ca:e7:eb:12:f3:a1:d4:37:68:17:6b: da:14:50:70:31:d8:1c:2a:6c:f9:5f:1f:4f:80:7e: 5f:23:b5:6e:b4:89:60:30:59:ec:e8:b8:fb:6f:37: 59:6b:20:ec:03:70:3a:c8:c9:77:d0:80:62:d6:d0: ef:6a:f9:de:c5:70:64:53:18:56:bf:47:ee:77:da: 7a:c5:79:33:55:55:d8:fe:e0:f2:a9:77:99:fd:6c: 9c:6d:10:81:a6:31:7c:d2:30:37:db:fc:81:ff:35: af:f1:a9:e2:fc:85:67:81:19:e4:27:04:59:c6:3f: cc:ba:05:16:f8:8d:78:65:d9:f5:02:ac:4e:2b:f5: c1:07:2c:0e:c9:35:2f:00:3e:d0:2f:e0:ad:e7:82: 3b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:1B:A5:27:3C:9A:38:29:9E:61:FE:32:C6:A7:6E:5A:A8:F2:09:37 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:03:b6:f6:34:f4:e7:8a:c7:bf:f9:0e:da:48:06:05:dd:1c: bd:de:fe:27:36:fc:f4:f4:18:34:7b:54:66:08:74:13:0c:a2: 7a:4b:42:0f:83:ea:15:ae:73:fa:fe:a3:70:c5:14:26:b6:53: 33:15:dd:15:d9:e7:7f:cc:92:d5:59:61:36:50:0d:42:55:8e: fb:44:25:bb:3d:9f:1a:44:aa:88:cc:6d:00:76:6e:22:e2:de: 06:9d:5c:df:59:c8:23:19:74:1b:b2:93:ee:8e:72:46:5a:8f: c5:15:fd:02:31:7e:33:77:99:70:4e:6b:e8:e0:3c:75:94:a2: a3:01:a5:64:5c:85:1b:f2:b9:fa:8c:d7:3d:ee:83:b5:b5:e0: 21:d9:ba:a2:b3:ea:f2:94:6d:8d:13:61:b5:f2:cd:77:d0:1b: 32:93:8c:7f:79:df:59:f2:96:5d:86:aa:aa:ea:10:4c:1a:04: 46:54:35:fa:b2:fb:25:61:2b:7d:04:ba:20:6d:bd:46:74:5b: cd:cf:99:18:75:c6:ef:15:d7:2b:e1:f4:de:ea:fa:09:2a:5d: fd:37:e2:92:f4:83:7e:68:cb:27:b9:50:26:c3:79:10:c7:af: c4:17:a9:20:4a:ee:d8:01:1a:e3:dd:f2:ae:f0:22:c2:43:66: 02:11:25:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjYwMTIzMDQ1MDUzWhcNMjYwMTMwMDQ1MDUzWjAYMRYwFAYD VQQDDA02OTcyZmUyZC1lZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHsRiR+CGZlxklYL7sMP0ZbbX2HVdhlMbjCDcP9qsMMsh5AGGDb37Ez7nnPV B7il90IiCQQA8SLPm2oxJdOI/h/EfWNAI6Qr6kfbnPLq7W0PCnfzWuTrqYRq6ArG M2AwAF6DS3HYDJiSoga+yufrEvOh1DdoF2vaFFBwMdgcKmz5Xx9PgH5fI7VutIlg MFns6Lj7bzdZayDsA3A6yMl30IBi1tDvavnexXBkUxhWv0fud9p6xXkzVVXY/uDy qXeZ/WycbRCBpjF80jA32/yB/zWv8ani/IVngRnkJwRZxj/MugUW+I14Zdn1AqxO K/XBBywOyTUvAD7QL+Ct54I7uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMbpSc8 mjgpnmH+Msanblqo8gk3MB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHA7b2NPTnise/+Q7aSAYF3Ry93v4nNvz09Bg0e1RmCHQTDKJ6S0IP g+oVrnP6/qNwxRQmtlMzFd0V2ed/zJLVWWE2UA1CVY77RCW7PZ8aRKqIzG0Adm4i 4t4GnVzfWcgjGXQbspPujnJGWo/FFf0CMX4zd5lwTmvo4Dx1lKKjAaVkXIUb8rn6 jNc97oO1teAh2bqis+rylG2NE2G18s130Bsyk4x/ed9Z8pZdhqqq6hBMGgRGVDX6 svslYSt9BLogbb1GdFvNz5kYdcbvFdcr4fTe6voJKl39N+KS9IN+aMsnuVAmw3kQ x6/EF6kgSu7YARrj3fKu8CLCQ2YCESXI -----END CERTIFICATE-----Generated at Sun Jan 25 02:52:23 2026 by rpki-client