This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: 5iiTQBdevRxvq5q6xUAiRkGp/ccaRjFtuW2n0xFz7eo= Subject key identifier: F0:A6:69:07:47:9A:02:3A:70:07:C8:83:CD:F4:C2:4B:94:C7:97:04 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: BF Signing time: Fri 05 Dec 2025 04:00:42 +0000 Manifest this update: Fri 05 Dec 2025 04:00:42 +0000 Manifest next update: Fri 12 Dec 2025 04:00:42 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: O7WjYEQU46rnQ3n/r9zW45u1u9K/+15HLBFDXMAWgWk=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: oF9pzHgXgFgT7pclB8+4buU+FpQCxpT9fP80ypai+xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Dec 5 04:00:42 2025 GMT Not After : Dec 12 04:00:42 2025 GMT Subject: CN=693258ea-7951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f7:32:d3:e3:28:83:11:c4:50:01:53:ee:f0: 48:5d:77:91:e7:61:52:36:f3:a2:c9:37:cf:ac:88: 17:08:6f:1c:e7:b8:0a:64:86:42:e2:a0:03:f9:77: dd:0b:10:7d:15:df:13:c6:88:d7:3f:26:0e:c6:cf: f0:86:32:ef:7b:db:d7:b3:a6:4a:41:28:81:2e:91: 3a:ea:f7:f0:94:45:8e:15:42:45:9e:33:6b:13:03: d7:43:63:b1:9e:1c:08:c8:1e:a1:53:89:8d:f3:e9: 70:db:61:4f:3f:60:a2:e2:88:cf:5a:6e:fe:4c:d0: ac:45:0d:e3:9e:61:48:60:23:61:30:48:67:6f:3a: b4:c8:b5:f0:08:24:46:33:31:f7:77:ad:90:1b:b6: b6:d6:a0:e2:57:ec:54:26:c3:13:82:3d:64:73:c7: 91:7e:bc:60:e9:0a:ed:48:27:2d:eb:ba:67:62:5a: a3:4d:39:5b:52:64:59:e8:3a:04:c5:41:f9:31:9f: 4d:94:dc:3d:f7:ac:cc:50:d5:70:99:6b:62:75:e4: da:fb:95:06:05:09:67:45:14:96:c5:02:ed:0b:3d: 7e:79:f1:d5:42:29:b2:4b:7c:8e:27:36:09:d3:06: 08:48:9f:6b:15:42:ac:6d:54:19:a2:96:d2:28:a9: 52:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A6:69:07:47:9A:02:3A:70:07:C8:83:CD:F4:C2:4B:94:C7:97:04 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:9f:46:1a:27:90:fd:48:e3:ce:5d:ce:6e:2b:a1:22:7c:aa: a0:13:72:8d:52:1a:9d:0c:95:cf:2e:e7:66:a9:1d:1d:cd:c7: fa:c0:79:35:b3:f5:47:e2:fb:23:fa:3b:99:14:92:73:f7:5f: 70:5f:09:d6:61:94:00:a7:1d:20:bb:cf:1b:00:4b:ca:e2:c9: 64:c5:7c:27:63:21:a1:26:08:1f:59:54:d1:ac:30:f8:b7:21: 6a:f5:b4:b1:5e:53:4b:a4:ce:81:9a:8a:8b:0c:95:37:77:47: a8:04:c3:37:9d:97:32:5f:43:70:84:c9:ff:27:cd:c7:23:12: 44:aa:ec:44:2b:ff:d6:56:85:09:69:07:84:0e:1f:c3:6d:ac: 55:1c:95:ec:37:43:b5:b3:17:31:82:6a:fa:70:37:55:49:9b: 8c:40:89:66:86:6f:2f:1a:c6:79:83:ea:50:ad:19:8e:cb:ee: 6a:54:83:f8:0c:e2:2c:2d:ce:12:e5:19:a8:ef:ef:ed:c3:52: 26:11:6a:86:77:62:3c:ea:63:0e:95:32:dc:5f:62:e3:54:3e: e8:46:b8:69:52:1d:c8:b3:51:7f:63:3e:f5:ed:37:15:51:86: 66:65:45:5c:03:7a:12:2d:88:1f:d6:36:e7:7c:a6:50:0a:f3: e7:ca:bd:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUxMjA1MDQwMDQyWhcNMjUxMjEyMDQwMDQyWjAYMRYwFAYD VQQDEw02OTMyNThlYS03OTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPcy0+MogxHEUAFT7vBIXXeR52FSNvOiyTfPrIgXCG8c57gKZIZC4qAD+Xfd CxB9Fd8TxojXPyYOxs/whjLve9vXs6ZKQSiBLpE66vfwlEWOFUJFnjNrEwPXQ2Ox nhwIyB6hU4mN8+lw22FPP2Ci4ojPWm7+TNCsRQ3jnmFIYCNhMEhnbzq0yLXwCCRG MzH3d62QG7a21qDiV+xUJsMTgj1kc8eRfrxg6QrtSCct67pnYlqjTTlbUmRZ6DoE xUH5MZ9NlNw996zMUNVwmWtideTa+5UGBQlnRRSWxQLtCz1+efHVQimyS3yOJzYJ 0wYISJ9rFUKsbVQZopbSKKlSAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCmaQdH mgI6cAfIg830wkuUx5cEMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMn0YaJ5D9SOPOXc5uK6EifKqgE3KNUhqdDJXPLudmqR0dzcf6wHk1 s/VH4vsj+juZFJJz919wXwnWYZQApx0gu88bAEvK4slkxXwnYyGhJggfWVTRrDD4 tyFq9bSxXlNLpM6BmoqLDJU3d0eoBMM3nZcyX0NwhMn/J83HIxJEquxEK//WVoUJ aQeEDh/DbaxVHJXsN0O1sxcxgmr6cDdVSZuMQIlmhm8vGsZ5g+pQrRmOy+5qVIP4 DOIsLc4S5Rmo7+/tw1ImEWqGd2I86mMOlTLcX2LjVD7oRrhpUh3Is1F/Yz717TcV UYZmZUVcA3oSLYgf1jbnfKZQCvPnyr2j -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:59 2025 by rpki-client