This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: R4epMnHYeyouIzR6sN6loOAjm7EYwhgKWsKIgHqBq00= Subject key identifier: CC:F2:78:31:68:23:A2:11:2E:FB:19:A2:61:56:D1:68:BE:A1:A2:6B Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 017A Signing time: Fri 05 Dec 2025 01:56:43 +0000 Manifest this update: Fri 05 Dec 2025 01:56:42 +0000 Manifest next update: Fri 12 Dec 2025 01:56:42 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: hvaNWM++dAvUfdG18lnsIT8ed46PzHKynRwp0cRR1bY=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Dec 5 01:56:42 2025 GMT Not After : Dec 12 01:56:42 2025 GMT Subject: CN=69323bdb-d2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9c:7b:57:1d:1d:76:ca:19:eb:94:53:1b:ab: fb:ae:57:61:e3:87:82:02:54:26:93:c8:db:08:2c: 82:c2:ef:00:a7:83:a7:bf:fe:bf:74:4b:09:ee:6d: 19:db:78:9e:e5:81:3c:d2:ba:97:26:82:c6:18:10: 05:29:ed:b2:4c:74:3b:ab:bc:1b:f1:b2:eb:87:ed: 65:fb:de:91:ad:62:68:18:54:60:f2:d8:b8:84:67: 22:5f:d8:d0:7d:60:50:ed:a8:60:ca:23:89:e7:22: fa:f8:a5:b3:66:0f:e1:bb:a3:46:b7:1f:c9:bd:bb: cc:56:05:2c:cc:ad:be:d7:db:64:9e:70:2a:81:18: 86:d8:ff:40:27:6f:33:84:2f:75:b5:4d:4e:38:8a: 50:33:26:56:81:c8:35:a4:a7:8a:71:b5:53:7c:e6: 69:c6:f9:e6:7d:e4:a3:c1:c7:d0:b8:a3:ad:75:ed: c8:77:7a:34:c0:12:d9:42:dc:05:91:c3:b0:dc:3b: 09:98:c5:56:29:26:b1:6f:30:e1:97:47:ca:7a:bf: 88:ee:ec:ac:ab:59:99:65:c5:5b:5e:19:a1:77:bd: a9:ca:ac:e6:5a:3d:b1:8b:48:72:c9:5f:25:f4:41: 8f:90:ba:c2:51:4b:d6:99:b0:b6:50:cd:84:24:85: 71:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F2:78:31:68:23:A2:11:2E:FB:19:A2:61:56:D1:68:BE:A1:A2:6B X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:89:32:5f:6d:9c:5c:af:3a:d5:a6:a2:a8:ab:1f:3e:78:77: ea:59:d6:93:61:13:b6:a3:97:8a:9e:c6:86:d1:36:fd:34:91: 2d:11:12:96:37:83:66:1b:90:9b:d7:a6:d7:34:ca:b7:bc:4e: eb:0e:14:bc:e4:3e:75:dc:38:f7:ef:05:cd:18:c2:c4:b8:3f: 4b:87:3d:4b:cb:f2:f5:25:47:0b:bd:b2:75:bf:82:2a:b3:94: 72:72:c4:24:13:ed:af:97:cd:74:13:8c:10:10:e5:49:50:af: 47:87:61:0c:d0:46:27:e8:c4:53:7b:2f:1e:06:b4:70:3b:10: 13:67:f4:00:97:c8:73:c8:96:d8:bb:d4:55:da:cb:30:bc:5f: ca:ab:3f:82:cc:cf:12:56:b6:a8:8a:e6:f8:2a:fd:2b:7c:76: 02:48:69:8e:e5:f8:d8:e0:d3:37:8f:7c:62:4d:5b:1d:35:62: 43:39:75:bd:2d:21:7b:4f:6a:de:55:31:06:ff:b7:67:26:01: c5:27:83:63:d2:df:59:30:55:b9:81:bd:0d:8d:af:0c:10:e3: 3a:52:f2:a8:9b:b1:0f:71:e0:8e:12:10:5d:d8:f8:b1:3e:e3: 0f:62:cc:3a:a9:bd:23:10:67:44:68:05:ed:2e:4a:82:51:56: 4a:df:1c:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUxMjA1MDE1NjQyWhcNMjUxMjEyMDE1NjQyWjAYMRYwFAYD VQQDEw02OTMyM2JkYi1kMmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpx7Vx0ddsoZ65RTG6v7rldh44eCAlQmk8jbCCyCwu8Ap4Onv/6/dEsJ7m0Z 23ie5YE80rqXJoLGGBAFKe2yTHQ7q7wb8bLrh+1l+96RrWJoGFRg8ti4hGciX9jQ fWBQ7ahgyiOJ5yL6+KWzZg/hu6NGtx/JvbvMVgUszK2+19tknnAqgRiG2P9AJ28z hC91tU1OOIpQMyZWgcg1pKeKcbVTfOZpxvnmfeSjwcfQuKOtde3Id3o0wBLZQtwF kcOw3DsJmMVWKSaxbzDhl0fKer+I7uysq1mZZcVbXhmhd72pyqzmWj2xi0hyyV8l 9EGPkLrCUUvWmbC2UM2EJIVxvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzyeDFo I6IRLvsZomFW0Wi+oaJrMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABiTJfbZxcrzrVpqKoqx8+eHfqWdaTYRO2o5eKnsaG0Tb9NJEtERKW N4NmG5Cb16bXNMq3vE7rDhS85D513Dj37wXNGMLEuD9Lhz1Ly/L1JUcLvbJ1v4Iq s5RycsQkE+2vl810E4wQEOVJUK9Hh2EM0EYn6MRTey8eBrRwOxATZ/QAl8hzyJbY u9RV2sswvF/Kqz+CzM8SVraoiub4Kv0rfHYCSGmO5fjY4NM3j3xiTVsdNWJDOXW9 LSF7T2reVTEG/7dnJgHFJ4Nj0t9ZMFW5gb0Nja8MEOM6UvKom7EPceCOEhBd2Pix PuMPYsw6qb0jEGdEaAXtLkqCUVZK3xww -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:28 2025 by rpki-client