This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft File: Nocz_cVgxeuJ5FJA331AOcsvYQg.mft (raw, json) Hash identifier: bTA/wgF67UplPZkUZUQwdPFuKygwP7/F0uHZqqQTl4k= Subject key identifier: 2D:EA:40:F1:99:32:C2:5F:44:E5:6F:FB:CB:66:CD:35:F9:F5:C0:91 Authority key identifier: 36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 Certificate issuer: /CN=A91C97F5/serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft Manifest number: 02A1 Signing time: Fri 19 Dec 2025 00:43:12 +0000 Manifest this update: Fri 19 Dec 2025 00:43:12 +0000 Manifest next update: Fri 26 Dec 2025 00:43:12 +0000 Files and hashes: 1: Nocz_cVgxeuJ5FJA331AOcsvYQg.crl (hash: gujwNMu0Xy9B5auttnf7TpJ8DNfXdqoSPo3L3EUQ/5A=) 2: 48B639C8B85E11F0B0F0B01CC4F9AE02.roa (hash: 38dtcu5XNmHe596DDUxh/YiXpcTFN/ujsTf1rBJPJf4=) 3: 020D49E0283211ED9E29FA70C4F9AE02.roa (hash: n4GQURkQPmTfwV8TLFN5U8XOYAl5Wab+Sk4x39wADhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C97F5, serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Validity Not Before: Dec 19 00:43:12 2025 GMT Not After : Dec 26 00:43:12 2025 GMT Subject: CN=69449fa0-485c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:78:4a:fa:8d:b3:4e:64:f6:ba:3c:8b:09:fd: 02:54:ac:f7:f1:27:4e:37:61:98:52:2b:b5:c2:81: e1:71:1f:3e:62:6e:c2:72:24:f3:a2:90:7d:59:8d: 2d:d3:70:b2:dc:5c:a0:90:3c:76:8f:a5:ed:7a:1a: 14:88:0a:48:ed:1d:1a:85:ef:3a:5f:88:17:98:e1: fc:a7:fe:76:d3:aa:eb:73:91:09:93:f2:52:ca:a2: 11:97:8d:4e:08:6e:15:1c:85:55:a5:b2:a2:6a:31: 5e:0c:c2:9d:c7:fb:d6:b3:f1:ed:b3:8e:3f:a6:d2: 1d:66:bd:b3:00:18:77:bb:11:a0:17:6d:ed:10:d1: 82:de:4b:47:e3:ee:10:88:25:eb:a9:dc:3b:a4:e6: 39:32:53:9d:84:f1:9e:ad:e0:20:a2:0f:bc:1d:f8: c7:6d:1e:54:65:b0:c5:61:ac:08:31:26:48:c6:e1: 4e:75:15:09:f9:db:cd:03:ac:c7:d1:47:4c:0c:e9: 55:57:8d:7a:78:04:39:f4:9c:61:88:24:92:21:50: ca:d9:53:6e:6a:4d:dc:96:d6:64:81:0a:0b:de:49: e9:3e:a3:88:27:75:1a:10:16:ce:2d:89:80:73:85: 9d:1f:ce:a6:10:d9:1d:05:63:79:5f:8d:0e:62:fa: d4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EA:40:F1:99:32:C2:5F:44:E5:6F:FB:CB:66:CD:35:F9:F5:C0:91 X509v3 Authority Key Identifier: keyid:36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:12:7a:a4:dc:a6:04:a3:b0:89:af:d8:e9:c5:ff:1e:64:0d: b5:7d:15:98:f6:ee:30:77:dd:d9:3e:6f:e1:b9:50:c3:f0:38: 16:a0:b1:51:d7:c3:5d:4d:53:74:03:e8:61:2f:1a:23:34:b9: 29:43:8c:3a:fa:6b:c1:ce:b0:c9:0e:a1:7f:62:00:29:93:ba: e0:be:e4:28:56:6a:7c:8d:57:79:66:af:f1:7e:85:60:50:7e: 83:d5:b1:80:66:76:2d:f5:43:68:91:46:29:d6:bb:7b:09:9e: 17:91:ed:45:1a:2c:e2:a8:dc:6d:d3:4a:be:af:8f:43:8a:10: 1d:2c:71:63:d5:9f:f8:61:5f:81:1a:a5:c2:0e:2d:7c:c5:f2: 46:70:c4:b3:bb:9f:06:dd:54:70:16:d0:6c:35:25:d6:37:61: 3b:cf:1f:07:21:ae:d1:e7:f3:5c:f2:6a:2d:49:d9:93:e9:21: 18:31:dc:6a:06:f1:2f:17:7d:73:de:3c:2c:f1:21:16:c2:1d: a2:64:2a:f5:fb:f9:9b:6b:bb:51:fe:6b:be:d4:97:43:a1:5c: 86:e7:13:ae:79:05:64:13:36:1c:3b:b3:c3:ca:41:db:a0:35: 30:2e:50:a6:bf:c5:35:f0:19:26:2d:66:3f:79:74:07:24:b1: 2a:44:f8:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk3RjUxMTAvBgNVBAUTKDM2ODczM0ZEQzU2MEM1RUI4OUU0NTI0MERGN0Q0MDM5 Q0IyRjYxMDgwHhcNMjUxMjE5MDA0MzEyWhcNMjUxMjI2MDA0MzEyWjAYMRYwFAYD VQQDDA02OTQ0OWZhMC00ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23hK+o2zTmT2ujyLCf0CVKz38SdON2GYUiu1woHhcR8+Ym7CciTzopB9WY0t 03Cy3FygkDx2j6XtehoUiApI7R0ahe86X4gXmOH8p/5206rrc5EJk/JSyqIRl41O CG4VHIVVpbKiajFeDMKdx/vWs/Hts44/ptIdZr2zABh3uxGgF23tENGC3ktH4+4Q iCXrqdw7pOY5MlOdhPGereAgog+8HfjHbR5UZbDFYawIMSZIxuFOdRUJ+dvNA6zH 0UdMDOlVV416eAQ59JxhiCSSIVDK2VNuak3cltZkgQoL3knpPqOIJ3UaEBbOLYmA c4WdH86mENkdBWN5X40OYvrUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3qQPGZ MsJfROVv+8tmzTX59cCRMB8GA1UdIwQYMBaAFDaHM/3FYMXrieRSQN99QDnLL2EI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTdGNS85MTcwQzQyQTI3 NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hldUo1RkpBMzMxQU9jc3ZZ UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05vY3pfY1ZneGV1SjVGSkEzMzFBT2NzdllRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTdGNS85MTcwQzQyQTI3NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hl dUo1RkpBMzMxQU9jc3ZZUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Enqk3KYEo7CJr9jpxf8eZA21fRWY9u4wd93ZPm/huVDD8DgWoLFR 18NdTVN0A+hhLxojNLkpQ4w6+mvBzrDJDqF/YgApk7rgvuQoVmp8jVd5Zq/xfoVg UH6D1bGAZnYt9UNokUYp1rt7CZ4Xke1FGiziqNxt00q+r49DihAdLHFj1Z/4YV+B GqXCDi18xfJGcMSzu58G3VRwFtBsNSXWN2E7zx8HIa7R5/Nc8motSdmT6SEYMdxq BvEvF31z3jws8SEWwh2iZCr1+/mba7tR/mu+1JdDoVyG5xOueQVkEzYcO7PDykHb oDUwLlCmv8U18BkmLWY/eXQHJLEqRPgK -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:26 2025 by rpki-client