This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: xyuhH3NYZ0kSBy302XqnkIw9eA2Ve5hDko7X0Lb4/ls= Subject key identifier: 79:2E:18:54:D5:44:DE:6B:A0:69:22:18:29:61:B3:35:66:A9:71:47 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: CC Signing time: Wed 31 Dec 2025 04:53:53 +0000 Manifest this update: Wed 31 Dec 2025 04:53:53 +0000 Manifest next update: Wed 07 Jan 2026 04:53:53 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: Hq44SXjGVgwB3UoJ7Z49XpGc2WLAjYXnV7JcdUN8AOg=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: oF9pzHgXgFgT7pclB8+4buU+FpQCxpT9fP80ypai+xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 04:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Dec 31 04:53:53 2025 GMT Not After : Jan 7 04:53:53 2026 GMT Subject: CN=6954ac61-4c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7d:84:b3:cf:b3:ba:38:c0:9e:3a:50:d4:73: 56:08:1d:be:8b:01:68:06:57:45:26:a6:c8:55:11: 55:3c:c1:52:4e:59:6c:10:46:61:14:00:63:db:a0: 60:40:12:08:9d:d8:fa:5c:59:f8:d1:60:8e:ef:68: b5:39:33:b1:7d:5a:17:5c:c4:c9:4a:26:6c:4e:66: a0:9d:c2:51:7e:9d:6c:1f:a0:12:cc:8c:dd:0b:3f: 67:2a:ae:79:b2:ea:f3:e9:e6:fc:32:bc:13:1f:c1: ce:38:d7:f1:1e:e9:ec:f4:26:a2:66:7f:90:73:fb: 01:28:75:ce:dc:88:a0:fe:26:19:f8:d2:c8:9c:3c: d9:15:46:83:8e:a3:73:58:31:f3:cd:7d:0e:21:81: 11:d4:2f:1e:c3:15:ff:aa:81:a5:ca:34:91:fb:5f: 3a:e3:88:8b:ab:89:f8:e8:53:c6:f8:4c:70:5c:fb: a6:7f:0c:ca:ad:60:39:c5:30:cc:36:aa:52:29:f9: e7:e2:96:18:83:a8:a4:9d:7b:7b:44:dc:7c:a1:f7: ad:6a:4e:0b:b4:5d:5f:f8:c4:fa:94:b1:3a:d9:50: 26:c5:9d:28:ac:50:cd:0d:f3:67:0a:92:13:dc:fe: ab:64:80:8a:34:84:f0:64:74:71:fd:49:8b:99:fb: 16:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2E:18:54:D5:44:DE:6B:A0:69:22:18:29:61:B3:35:66:A9:71:47 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:89:cf:f2:4c:e9:7a:f9:66:3d:f2:44:88:c4:7e:1c:c1:99: 6c:f3:89:76:69:9f:ae:57:0b:46:31:44:3b:1d:01:e2:d1:3a: 86:4f:70:f3:e2:11:dc:ec:69:9e:2d:18:80:19:68:42:97:3b: ee:0c:08:bf:ee:76:8f:7b:19:b6:c1:9c:66:4b:a7:8a:95:e5: 6f:5f:fd:84:14:73:b5:7b:20:7d:87:3a:36:44:96:77:3b:fb: c7:c1:84:59:97:55:f3:fc:b8:62:24:63:42:6b:8d:b5:cf:11: 98:3b:76:97:f5:05:4a:68:03:72:90:72:af:be:0e:7a:a9:65: 71:94:d4:ff:3b:b4:fc:55:a5:d8:e4:1c:e9:ca:9b:ce:72:65: 56:ae:62:a8:ba:27:d9:af:85:dc:b0:4b:6a:91:ae:3a:b2:5e: 42:1a:21:07:c6:a0:c5:cb:1e:a6:d2:27:61:77:4f:f2:7b:e8: 12:e8:40:5e:3a:29:b0:63:ba:83:89:e4:ac:07:48:76:be:21: 76:d8:6d:0f:07:b0:4c:42:76:f4:8a:8a:90:79:04:cb:ee:e0: 97:b5:7d:72:c3:89:05:e7:a8:cb:b5:4c:01:7c:d7:83:ca:04: 7c:66:53:e0:33:a7:0d:62:bf:b2:7e:e8:06:08:fa:b5:7b:4e: e4:c2:c8:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUxMjMxMDQ1MzUzWhcNMjYwMTA3MDQ1MzUzWjAYMRYwFAYD VQQDDA02OTU0YWM2MS00YzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApX2Es8+zujjAnjpQ1HNWCB2+iwFoBldFJqbIVRFVPMFSTllsEEZhFABj26Bg QBIIndj6XFn40WCO72i1OTOxfVoXXMTJSiZsTmagncJRfp1sH6ASzIzdCz9nKq55 surz6eb8MrwTH8HOONfxHuns9CaiZn+Qc/sBKHXO3Iig/iYZ+NLInDzZFUaDjqNz WDHzzX0OIYER1C8ewxX/qoGlyjSR+18644iLq4n46FPG+ExwXPumfwzKrWA5xTDM NqpSKfnn4pYYg6iknXt7RNx8ofetak4LtF1f+MT6lLE62VAmxZ0orFDNDfNnCpIT 3P6rZICKNITwZHRx/UmLmfsWuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkuGFTV RN5roGkiGClhszVmqXFHMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfic/yTOl6+WY98kSIxH4cwZls84l2aZ+uVwtGMUQ7HQHi0TqGT3Dz 4hHc7GmeLRiAGWhClzvuDAi/7naPexm2wZxmS6eKleVvX/2EFHO1eyB9hzo2RJZ3 O/vHwYRZl1Xz/LhiJGNCa421zxGYO3aX9QVKaANykHKvvg56qWVxlNT/O7T8VaXY 5BzpypvOcmVWrmKouifZr4XcsEtqka46sl5CGiEHxqDFyx6m0idhd0/ye+gS6EBe OimwY7qDieSsB0h2viF22G0PB7BMQnb0ioqQeQTL7uCXtX1yw4kF56jLtUwBfNeD ygR8ZlPgM6cNYr+yfugGCPq1e07kwsiv -----END CERTIFICATE-----Generated at Wed Dec 31 11:42:57 2025 by rpki-client