This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: FhNrAobEHzAQ65/sBaLBFd9kZ4SE4OdEIJXHQ0eCNKE= Subject key identifier: 1A:97:EE:8B:15:EE:06:76:29:46:50:AC:50:03:8A:1C:C6:6E:5A:7F Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 0194 Signing time: Sun 25 Jan 2026 02:46:40 +0000 Manifest this update: Sun 25 Jan 2026 02:46:39 +0000 Manifest next update: Sun 01 Feb 2026 02:46:39 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: kkNJc4oCaNBqgyPDYVuIMGRd7HarBRTeg4Knfx6hmrE=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Jan 25 02:46:39 2026 GMT Not After : Feb 1 02:46:39 2026 GMT Subject: CN=6975840f-3d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f3:86:4e:7b:03:40:fd:61:ae:28:92:f4:06: 0a:8e:8a:85:c8:d3:07:b2:f9:69:52:97:c1:66:54: 61:10:c4:3b:df:c5:16:e8:8d:6c:f9:7e:ae:11:65: ff:f9:a1:ce:7e:32:33:ed:48:6b:3b:f4:69:95:bb: 49:c9:88:8d:c6:89:16:9d:45:2d:64:2e:cf:5c:05: 44:60:c8:58:61:7c:e5:3c:dd:47:9b:a8:2b:7c:72: f4:f9:28:37:3c:81:3e:fe:7b:f3:2f:09:da:92:ca: 60:c9:68:db:dd:da:bf:1d:3b:94:df:0a:6f:0d:7e: f3:64:d7:99:c6:d0:bc:54:7f:a6:16:6c:e8:99:9f: b9:ec:9e:04:d7:ac:ef:57:14:ca:d1:20:46:17:b5: a0:b6:42:b2:d0:9d:4f:8f:f5:7b:b2:32:f7:0f:68: ce:53:ad:85:85:9c:f7:12:05:3a:25:ec:74:cf:a3: af:60:d6:6c:74:c7:cc:97:aa:2c:fb:2b:56:7d:9f: c1:53:72:3d:97:c7:1a:2a:f2:45:12:2b:7d:66:b8: 1e:a4:5a:1c:a9:77:e5:55:fc:6a:a2:de:7e:11:cb: 70:58:1f:59:11:95:a8:2e:37:77:99:af:90:7a:af: 61:c2:57:e8:fa:d5:13:00:91:30:3c:20:3b:1e:d0: 1d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:97:EE:8B:15:EE:06:76:29:46:50:AC:50:03:8A:1C:C6:6E:5A:7F X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:32:cd:70:10:c1:9a:b4:cf:6f:44:d2:c1:1f:b2:0d:94:88: 1f:f7:66:b1:9b:be:83:bf:89:2c:19:a8:a0:81:9c:ee:55:0f: 0b:2b:dd:9f:c6:98:a7:84:6a:f8:a7:58:89:0a:79:af:29:fb: f6:bc:ef:23:f7:ad:af:f2:7c:c2:66:fd:93:c9:89:e7:9e:f9: 33:83:02:84:77:a4:99:c5:10:6e:ad:7a:67:1d:01:a0:4a:c9: 86:1a:02:45:37:a9:38:db:cb:03:41:90:03:94:d5:0e:de:c8: d3:31:b1:4e:34:d2:4f:47:93:d0:be:f5:57:a6:f4:63:dc:02: 6f:d2:ed:de:98:d8:2c:39:45:f8:29:e7:a6:c5:41:49:51:db: 0e:42:a3:13:15:f9:d1:14:f1:0f:8e:d7:da:ed:cf:af:da:c9: de:b4:79:7e:4e:b8:28:aa:7f:29:e0:af:96:66:33:b0:de:9b: 1b:c6:c9:d1:31:e7:d2:79:33:a9:75:87:3f:d4:93:13:0f:5c: 5e:91:f0:97:05:61:69:3f:1b:20:f1:3e:95:20:2c:1b:f4:84: 36:e0:56:67:25:a2:4c:f9:5c:be:9c:4f:3d:37:22:3e:66:b3: 86:3b:54:14:e2:e7:82:0a:2e:55:3f:11:25:58:fa:76:94:ef: 18:83:88:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjYwMTI1MDI0NjM5WhcNMjYwMjAxMDI0NjM5WjAYMRYwFAYD VQQDDA02OTc1ODQwZi0zZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvOGTnsDQP1hriiS9AYKjoqFyNMHsvlpUpfBZlRhEMQ738UW6I1s+X6uEWX/ +aHOfjIz7UhrO/RplbtJyYiNxokWnUUtZC7PXAVEYMhYYXzlPN1Hm6grfHL0+Sg3 PIE+/nvzLwnakspgyWjb3dq/HTuU3wpvDX7zZNeZxtC8VH+mFmzomZ+57J4E16zv VxTK0SBGF7WgtkKy0J1Pj/V7sjL3D2jOU62FhZz3EgU6Jex0z6OvYNZsdMfMl6os +ytWfZ/BU3I9l8caKvJFEit9ZrgepFocqXflVfxqot5+EctwWB9ZEZWoLjd3ma+Q eq9hwlfo+tUTAJEwPCA7HtAdPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqX7osV 7gZ2KUZQrFADihzGblp/MB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMMs1wEMGatM9vRNLBH7INlIgf92axm76Dv4ksGaiggZzuVQ8LK92f xpinhGr4p1iJCnmvKfv2vO8j962v8nzCZv2TyYnnnvkzgwKEd6SZxRBurXpnHQGg SsmGGgJFN6k428sDQZADlNUO3sjTMbFONNJPR5PQvvVXpvRj3AJv0u3emNgsOUX4 KeemxUFJUdsOQqMTFfnRFPEPjtfa7c+v2snetHl+Trgoqn8p4K+WZjOw3psbxsnR MefSeTOpdYc/1JMTD1xekfCXBWFpPxsg8T6VICwb9IQ24FZnJaJM+Vy+nE89NyI+ ZrOGO1QU4ueCCi5VPxElWPp2lO8Yg4gk -----END CERTIFICATE-----Generated at Sun Jan 25 10:59:52 2026 by rpki-client