This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft File: NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft (raw, json) Hash identifier: ovwW1yxi3sotsK5A5YgP2UvjVNXVj2v8y+ZqIVfSfjo= Subject key identifier: F8:98:72:BC:2A:03:3F:42:FA:AA:15:03:CC:12:4E:E1:75:98:36:07 Authority key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Certificate issuer: /CN=35892143C493B9B2CC1E79133F5231C72E152685 Certificate serial: 4D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft Manifest number: 0A68 Signing time: Mon 22 Dec 2025 11:33:03 +0000 Manifest this update: Mon 22 Dec 2025 11:33:03 +0000 Manifest next update: Tue 06 Jan 2026 11:33:03 +0000 Files and hashes: 1: NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl (hash: 34Pm8J2ofvTPJwduQr0HuRAhT0Q3jubCmUB6iTw2ksU=) 2: tAUGK1TAon_asx91aF8JeLNO0pE.roa (hash: clQfjrd9M8AAQfKiNxraWpTFPLXqPpI1Bpa2Q33LUAk=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 11:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35892143C493B9B2CC1E79133F5231C72E152685 Validity Not Before: Dec 15 01:40:53 2025 GMT Not After : Dec 15 01:30:02 2026 GMT Subject: CN=F89872BC2A033F42FAAA1503CC124EE175983607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:34:48:14:72:62:e3:3a:47:17:7a:3b:8f:36: 26:ce:84:13:dd:9f:49:8f:17:8a:0d:24:34:c5:ef: 45:cb:2f:33:71:e9:72:72:da:9c:6e:c3:c3:a2:40: 06:5f:91:84:0b:3a:60:e1:ba:bd:72:a1:e4:82:a1: f7:d4:18:82:65:a7:c6:60:60:81:2a:1d:d0:3a:a6: 73:26:40:64:31:bf:61:b2:e1:b8:cf:99:43:3d:5a: cb:f3:d2:82:72:1b:6b:8b:33:ae:c0:ff:f1:73:15: 1f:ea:02:81:c0:bd:3b:43:e6:35:1f:0a:a4:1d:77: f3:3a:1b:4a:64:d7:88:7c:a2:25:52:ad:6f:66:62: e5:56:00:39:67:31:bf:67:ec:64:9e:e0:e8:bc:bf: f4:fe:a6:f5:d4:d9:ca:e1:14:4b:57:d4:a6:7f:3e: b9:1c:5c:2c:6e:be:13:36:fa:81:d7:27:32:17:7a: 82:b5:ce:f8:4b:9f:c1:5d:7b:6b:c5:ae:b3:4a:11: 45:a5:fd:08:2b:75:5b:bc:20:f2:8c:f2:42:b4:af: f0:e0:99:d5:75:91:0d:7b:cc:76:03:7b:e7:5f:ac: 2a:30:52:9e:08:fe:64:73:c7:cc:e0:50:4b:f5:c0: f0:e7:a2:71:77:c7:7b:37:f9:61:d1:70:42:51:ee: 73:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:72:BC:2A:03:3F:42:FA:AA:15:03:CC:12:4E:E1:75:98:36:07 X509v3 Authority Key Identifier: keyid:35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:25:0f:9a:e3:a7:fa:a1:2b:aa:cb:4f:52:4b:bc:95:4e:1a: d1:79:d5:8c:f1:b4:ca:a6:a3:7e:14:02:bb:77:bf:18:7a:bd: 96:6a:1e:cd:2a:cc:dd:77:e7:6c:c4:09:5f:ab:17:d1:72:e1: b1:5a:76:0a:46:42:ef:32:05:c9:03:e4:70:fe:af:b8:61:e8: 38:27:27:cf:2a:db:c9:e0:0b:db:ed:d8:9d:50:e9:58:99:fe: 3c:8d:76:d7:b8:25:e4:b6:b5:ec:c2:9e:42:70:f9:3d:35:f8: 7d:d6:02:61:82:95:83:2b:22:cd:75:2e:04:89:6a:8e:4e:30: fb:a0:ab:d6:8e:e8:73:6d:38:37:c3:44:57:b3:fa:0d:99:b2: ae:68:b5:ec:30:32:c0:bc:f0:d7:d8:69:2e:3d:0f:26:91:44: 0a:9f:08:6e:fd:ec:34:ec:b5:6a:e4:b4:22:b6:83:a0:fa:a6: e7:d1:1e:ea:65:6a:c8:40:1f:9c:c1:70:60:76:6c:77:03:23: 74:be:cd:e1:3f:0e:44:be:ab:df:81:32:2b:93:6b:71:78:48: 55:d4:06:68:ab:9a:a0:7d:a4:a9:c1:3a:d4:4d:c4:4e:dc:73: 8b:8d:51:6b:ce:32:73:c2:04:b1:61:2b:a5:19:b5:76:9c:6b: 10:26:e6:ad -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNTg5 MjE0M0M0OTNCOUIyQ0MxRTc5MTMzRjUyMzFDNzJFMTUyNjg1MB4XDTI1MTIxNTAx NDA1M1oXDTI2MTIxNTAxMzAwMlowMzExMC8GA1UEAxMoRjg5ODcyQkMyQTAzM0Y0 MkZBQUExNTAzQ0MxMjRFRTE3NTk4MzYwNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANQ0SBRyYuM6Rxd6O482Js6EE92fSY8Xig0kNMXvRcsvM3HpcnLa nG7Dw6JABl+RhAs6YOG6vXKh5IKh99QYgmWnxmBggSod0DqmcyZAZDG/YbLhuM+Z Qz1ay/PSgnIba4szrsD/8XMVH+oCgcC9O0PmNR8KpB138zobSmTXiHyiJVKtb2Zi 5VYAOWcxv2fsZJ7g6Ly/9P6m9dTZyuEUS1fUpn8+uRxcLG6+Ezb6gdcnMhd6grXO +EufwV17a8Wus0oRRaX9CCt1W7wg8ozyQrSv8OCZ1XWRDXvMdgN751+sKjBSngj+ ZHPHzOBQS/XA8OeicXfHezf5YdFwQlHuc4sCAwEAAaOCAj8wggI7MB0GA1UdDgQW BBT4mHK8KgM/QvqqFQPMEk7hdZg2BzAfBgNVHSMEGDAWgBQ1iSFDxJO5ssweeRM/ UjHHLhUmhTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE1NC9OWWtoUThTVHViTE1IbmtUUDFJeHh5NFZKb1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OWWtoUThTVHViTE1IbmtUUDFJeHh5 NFZKb1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE1NC9OWWtoUThTVHViTE1IbmtUUDFJeHh5NFZKb1UubWZ0 MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAw IQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsF AAOCAQEATiUPmuOn+qErqstPUku8lU4a0XnVjPG0yqajfhQCu3e/GHq9lmoezSrM 3XfnbMQJX6sX0XLhsVp2CkZC7zIFyQPkcP6vuGHoOCcnzyrbyeAL2+3YnVDpWJn+ PI1217gl5La17MKeQnD5PTX4fdYCYYKVgysizXUuBIlqjk4w+6Cr1o7oc204N8NE V7P6DZmyrmi17DAywLzw19hpLj0PJpFECp8Ibv3sNOy1auS0IraDoPqm59Ee6mVq yEAfnMFwYHZsdwMjdL7N4T8ORL6r34EyK5NrcXhIVdQGaKuaoH2kqcE61E3ETtxz i41Ra84yc8IEsWErpRm1dpxrECbmrQ== -----END CERTIFICATE-----Generated at Mon Dec 22 12:56:46 2025 by rpki-client