This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: TX9MIYSYKTdU9AjWqgWow6aX2wSLji0fWaskB/n9KFs= Subject key identifier: 59:0C:06:B9:86:B6:25:7C:11:E2:3C:CD:1F:E4:F0:20:67:D1:FD:F6 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 013C Signing time: Fri 05 Dec 2025 02:48:19 +0000 Manifest this update: Fri 05 Dec 2025 02:48:18 +0000 Manifest next update: Fri 12 Dec 2025 02:48:18 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: SDrAoY+DwGAnj9WEkH1Np9RH8iOHUY8Ln5QhwN13+K0=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Dec 5 02:48:18 2025 GMT Not After : Dec 12 02:48:18 2025 GMT Subject: CN=693247f3-01b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b6:e8:e3:7b:db:3e:17:7d:a9:79:3b:29:54: 9b:d0:16:44:bc:f3:e4:98:69:11:45:e2:0d:50:da: 93:9a:10:07:6b:20:45:b4:d0:90:93:5f:c0:aa:3e: 6f:60:93:1f:f8:8e:40:01:3b:28:27:71:b4:2f:05: 4b:78:25:07:90:88:76:ac:82:a7:78:a6:63:67:46: 15:48:73:40:96:52:0c:72:01:28:86:d8:b0:dd:5b: 46:fc:f4:85:ef:7e:8c:2a:a2:7c:0b:69:4d:51:ba: 70:76:e8:56:fd:38:f3:77:1f:7c:dd:7d:c5:9b:09: 33:ec:bb:bb:f6:07:8c:92:99:6a:b6:6f:5c:7c:91: a4:15:ef:0c:d8:d2:7b:1f:d8:1c:0e:f0:81:76:9e: b4:4f:52:cb:9e:8c:53:10:33:9d:87:29:aa:cd:a7: 2f:43:08:8f:12:c5:08:4f:75:7c:6a:4b:dc:29:29: e9:90:a6:dd:d6:90:50:79:be:98:45:13:dc:77:91: c1:c6:5d:d2:8e:a2:11:46:94:7c:0e:37:39:ac:cf: 83:da:ef:ae:16:c2:15:87:76:10:b3:ce:23:56:63: 29:1c:b6:4e:6d:2a:db:10:4a:a4:f4:8a:42:19:1f: 37:4f:d7:fe:7d:88:a8:66:9b:8a:0d:11:46:3e:fd: b4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:0C:06:B9:86:B6:25:7C:11:E2:3C:CD:1F:E4:F0:20:67:D1:FD:F6 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:16:71:7a:3c:6f:a7:d2:75:bd:21:b2:32:86:ae:f7:8b:58: 74:c7:4c:86:0b:25:f1:be:da:be:64:ce:54:bb:8a:7e:2d:3a: c6:d3:f4:f5:5f:ac:2c:a0:a5:15:e9:f1:7f:7c:76:c7:84:5c: 47:25:f0:ab:b8:51:66:69:79:fc:bf:1b:d9:3b:e4:14:be:c7: 16:d0:8a:d3:c4:67:c5:40:b6:ee:42:19:1b:80:c6:6f:0f:01: 3f:89:c1:86:ac:c2:a2:d2:05:e2:a2:3f:bc:74:f5:16:93:66: 34:fb:2b:27:ef:be:8f:f8:85:bc:00:41:80:4b:30:71:7e:fe: d7:55:77:75:74:ed:9b:01:25:a9:41:31:d8:81:9a:8e:a3:c6: 24:e2:57:21:f6:19:af:cb:31:c9:b4:c7:34:1d:7e:65:68:f0: fe:91:64:53:12:ec:4b:b9:aa:59:78:12:84:70:77:71:8e:20: ea:d6:54:59:f9:05:fa:4c:f6:65:a6:24:16:1c:10:13:61:6a: a9:a3:ff:0c:52:d2:7b:b5:26:2f:a8:50:72:13:1c:a0:f9:69: b3:cb:bf:e8:50:38:89:30:c5:e8:8a:17:d1:20:93:30:93:c9: 36:e1:88:22:5b:4a:4c:9d:d0:67:91:10:02:d5:cd:54:b3:a2: de:66:b5:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUxMjA1MDI0ODE4WhcNMjUxMjEyMDI0ODE4WjAYMRYwFAYD VQQDEw02OTMyNDdmMy0wMWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Lbo43vbPhd9qXk7KVSb0BZEvPPkmGkRReINUNqTmhAHayBFtNCQk1/Aqj5v YJMf+I5AATsoJ3G0LwVLeCUHkIh2rIKneKZjZ0YVSHNAllIMcgEohtiw3VtG/PSF 736MKqJ8C2lNUbpwduhW/Tjzdx983X3Fmwkz7Lu79geMkplqtm9cfJGkFe8M2NJ7 H9gcDvCBdp60T1LLnoxTEDOdhymqzacvQwiPEsUIT3V8akvcKSnpkKbd1pBQeb6Y RRPcd5HBxl3SjqIRRpR8Djc5rM+D2u+uFsIVh3YQs84jVmMpHLZObSrbEEqk9IpC GR83T9f+fYioZpuKDRFGPv20pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkMBrmG tiV8EeI8zR/k8CBn0f32MB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBFnF6PG+n0nW9IbIyhq73i1h0x0yGCyXxvtq+ZM5Uu4p+LTrG0/T1 X6wsoKUV6fF/fHbHhFxHJfCruFFmaXn8vxvZO+QUvscW0IrTxGfFQLbuQhkbgMZv DwE/icGGrMKi0gXioj+8dPUWk2Y0+ysn776P+IW8AEGASzBxfv7XVXd1dO2bASWp QTHYgZqOo8Yk4lch9hmvyzHJtMc0HX5laPD+kWRTEuxLuapZeBKEcHdxjiDq1lRZ +QX6TPZlpiQWHBATYWqpo/8MUtJ7tSYvqFByExyg+Wmzy7/oUDiJMMXoihfRIJMw k8k24YgiW0pMndBnkRAC1c1Us6LeZrX+ -----END CERTIFICATE-----Generated at Sat Dec 6 21:42:24 2025 by rpki-client