This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: 0rM781bVHaJZsw4QDvblgt/q/Ak25cUkV74Lux4ge60= Subject key identifier: 3B:86:D1:E7:DC:26:C1:0E:95:54:E6:ED:C2:A2:91:4D:CA:3C:FD:7B Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0156 Signing time: Sun 25 Jan 2026 03:40:52 +0000 Manifest this update: Sun 25 Jan 2026 03:40:52 +0000 Manifest next update: Sun 01 Feb 2026 03:40:52 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: gDnDrRmViMdZmqlZIAhkAhXAVIsaVuIf0GU5SGvW//g=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Jan 25 03:40:52 2026 GMT Not After : Feb 1 03:40:52 2026 GMT Subject: CN=697590c4-11e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d1:98:58:48:f4:c1:0a:db:6c:1d:28:bf:64: cd:c6:e0:74:fa:d9:42:5a:99:fe:8e:4c:d4:af:31: 94:25:fa:b9:c0:0e:3b:fe:c5:aa:a9:dc:72:aa:ea: d0:73:e7:68:6d:84:0b:78:b3:93:3e:17:1e:c6:52: 04:12:64:67:99:e6:5a:fa:09:c4:f2:27:76:db:b9: 28:57:b1:31:c8:c1:2a:45:f1:ff:e7:5f:37:c3:5c: 4a:88:62:45:42:49:e3:4a:bd:3a:8c:ea:e7:c1:6d: 08:b0:72:d5:1d:b1:eb:a5:a0:35:95:ff:15:c1:e3: f2:5b:f0:e0:32:c5:2f:55:30:1e:05:5b:77:c6:dc: c4:8c:26:12:73:b9:d0:6f:07:7d:69:a3:b0:ca:17: 87:2d:13:1d:88:d0:11:87:95:57:cd:a6:eb:cc:6c: ac:fb:6e:ec:fe:6a:57:a3:e6:d0:fc:9e:7e:5b:aa: 9b:0a:6f:10:f9:87:eb:1a:e0:8a:c8:2b:9b:a2:11: 5d:f0:69:af:79:37:db:ee:f6:bd:d0:07:6e:b1:34: 95:cb:bb:7f:4a:53:39:6a:d4:99:cd:22:ba:2a:32: f4:e9:c6:47:f7:fd:7c:62:c8:60:32:b5:17:ea:a7: e5:fa:5d:13:c9:47:8c:d8:fc:fa:75:1f:08:e6:e5: 43:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:86:D1:E7:DC:26:C1:0E:95:54:E6:ED:C2:A2:91:4D:CA:3C:FD:7B X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:28:aa:bd:a0:2d:ed:7f:01:8b:2a:9b:3f:10:9e:9c:e5:3f: fb:dc:97:dc:2b:de:5a:9b:9a:eb:f8:3f:e6:4a:65:d4:a5:23: 55:af:08:b6:6a:9a:23:88:7e:34:f1:29:61:be:14:fc:b3:72: 49:02:b8:f1:af:21:79:37:3a:f1:9c:20:3d:ce:9a:1a:3e:18: 73:92:d6:24:c8:c0:2d:ef:be:22:b4:7a:2e:98:e2:96:31:ef: fc:8f:bd:9a:58:a9:d1:95:87:0d:e7:d3:ba:c5:9d:98:95:77: 58:23:5f:d7:41:8b:96:fc:f2:f4:5d:23:9a:1c:e8:f1:d2:a7: 7f:40:a7:ef:0a:9c:c8:f9:5f:f5:e5:94:d7:ee:6d:3c:25:36: bc:cf:28:62:6a:a7:65:11:28:bd:66:cf:86:d0:28:88:2d:9a: 6c:b8:32:d2:3a:d4:cb:eb:b7:cf:ab:fb:05:b0:0c:94:a0:f5: 72:84:48:06:1e:19:48:0e:48:fb:04:63:ca:ac:60:d9:28:7f: 43:25:4c:2f:97:a0:76:70:1a:da:88:af:c6:7f:2d:a3:57:2f: 64:52:e3:f7:1b:84:6e:2e:ec:01:c3:4b:1b:da:60:3a:36:b2: 15:31:2e:a6:8c:26:3c:fb:23:17:a2:b2:95:18:af:47:c7:52: 0c:b5:bb:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjYwMTI1MDM0MDUyWhcNMjYwMjAxMDM0MDUyWjAYMRYwFAYD VQQDDA02OTc1OTBjNC0xMWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAktGYWEj0wQrbbB0ov2TNxuB0+tlCWpn+jkzUrzGUJfq5wA47/sWqqdxyqurQ c+dobYQLeLOTPhcexlIEEmRnmeZa+gnE8id227koV7ExyMEqRfH/5183w1xKiGJF QknjSr06jOrnwW0IsHLVHbHrpaA1lf8VwePyW/DgMsUvVTAeBVt3xtzEjCYSc7nQ bwd9aaOwyheHLRMdiNARh5VXzabrzGys+27s/mpXo+bQ/J5+W6qbCm8Q+YfrGuCK yCubohFd8GmveTfb7va90AdusTSVy7t/SlM5atSZzSK6KjL06cZH9/18YshgMrUX 6qfl+l0TyUeM2Pz6dR8I5uVDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuG0efc JsEOlVTm7cKikU3KPP17MB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHKKq9oC3tfwGLKps/EJ6c5T/73JfcK95am5rr+D/mSmXUpSNVrwi2 apojiH408SlhvhT8s3JJArjxryF5NzrxnCA9zpoaPhhzktYkyMAt774itHoumOKW Me/8j72aWKnRlYcN59O6xZ2YlXdYI1/XQYuW/PL0XSOaHOjx0qd/QKfvCpzI+V/1 5ZTX7m08JTa8zyhiaqdlESi9Zs+G0CiILZpsuDLSOtTL67fPq/sFsAyUoPVyhEgG HhlIDkj7BGPKrGDZKH9DJUwvl6B2cBraiK/Gfy2jVy9kUuP3G4RuLuwBw0sb2mA6 NrIVMS6mjCY8+yMXorKVGK9Hx1IMtbsK -----END CERTIFICATE-----Generated at Sun Jan 25 23:10:09 2026 by rpki-client