This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: aPTq6HEFiM4p8tMR2SxZTzmjI8oQSDP5kpu2wnAm+UU= Subject key identifier: 35:01:37:32:B3:FA:B6:D8:DB:C4:44:1C:B4:75:35:E3:34:BB:B7:06 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0147 Signing time: Sat 27 Dec 2025 03:33:56 +0000 Manifest this update: Sat 27 Dec 2025 03:33:55 +0000 Manifest next update: Sat 03 Jan 2026 03:33:55 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: 8azDvhWVvw+Wyfb7Ylma70/MmDRc0bWIfatvv3b1Wdk=) 2: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) 3: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 03:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Dec 27 03:33:55 2025 GMT Not After : Jan 3 03:33:55 2026 GMT Subject: CN=694f53a4-5daa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:16:ef:f7:5a:8a:c1:1d:75:0d:8e:39:cb: 90:9a:d6:c1:e7:12:4e:41:92:d4:73:6c:69:96:78: a8:d3:2e:66:0b:4e:03:83:a0:7d:0b:28:43:78:99: d1:a0:56:d9:f3:79:19:dc:6e:7c:61:25:bb:1e:5b: b4:d1:0d:29:31:05:c7:81:d3:45:f0:37:f1:bb:fb: 6b:07:1a:e0:51:63:0b:2d:8f:75:b8:ce:ed:32:08: c8:cf:a6:0e:1f:cd:a4:79:45:9b:7f:b6:1a:9a:eb: 4f:4b:5e:01:55:64:81:95:ae:97:2c:82:71:c8:aa: 4b:b5:ec:51:ce:7d:8f:d2:64:de:bb:bb:16:c3:77: 07:e0:e3:79:20:eb:30:43:5b:da:63:c4:5a:59:11: 4d:8b:f9:bf:98:66:80:39:88:a3:27:d0:4a:00:00: e7:bc:87:49:cd:97:cd:8d:26:46:d0:67:d6:ed:82: f9:d9:a6:08:0f:b7:0c:57:40:21:dc:df:16:70:3a: 94:ea:cc:14:a4:3a:d4:5f:31:c7:04:84:16:dd:db: 64:fa:54:b0:e2:fa:80:12:d5:d2:6f:16:92:bf:8b: ee:0d:2a:52:55:3d:4f:05:88:9e:84:2e:1c:a1:c8: 34:20:c2:b2:f8:02:26:e4:12:c1:4d:eb:11:83:8b: 5f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:01:37:32:B3:FA:B6:D8:DB:C4:44:1C:B4:75:35:E3:34:BB:B7:06 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:3f:7f:e8:e6:f3:ff:d4:46:c6:93:65:3a:38:b4:29:12:78: 41:5f:06:7a:c9:81:f7:d9:2a:95:99:6a:7a:b0:5c:c4:dc:1e: ca:88:69:a2:46:61:1f:b7:e9:b9:84:18:89:d4:94:85:f4:83: d0:f2:1a:47:4c:a3:3c:b6:83:b8:6c:6d:68:14:ff:89:16:0d: 93:d9:43:64:19:f3:63:b2:1e:4d:a1:9f:b3:3a:46:93:b7:4b: a1:48:ed:7f:b5:c7:2d:b9:8b:fd:5c:cb:24:75:ea:88:a5:9e: a6:7b:9d:66:ca:28:af:32:0d:53:f3:cf:b0:91:77:6e:80:41: 5e:4f:b3:67:2e:04:60:86:28:53:ab:8b:10:a9:5a:ba:ef:c3: 09:18:f6:66:ea:3b:43:91:81:b1:89:c9:f1:e2:d4:04:9a:8e: b3:8b:19:60:14:91:4e:fe:0a:42:eb:7e:2f:e7:84:b8:37:c4: df:c0:7e:88:6c:28:eb:ab:8e:ad:33:ae:42:34:4c:7e:73:61: 40:de:b4:e9:ba:53:86:a6:6a:a1:27:75:38:ed:39:a3:fa:c5: 9b:a5:34:f2:a9:88:66:20:13:49:77:41:d7:45:ba:00:c3:80: 7f:3d:43:68:3a:9c:a3:ab:39:5a:0a:1f:2d:57:83:ca:60:e7: b8:02:aa:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUxMjI3MDMzMzU1WhcNMjYwMTAzMDMzMzU1WjAYMRYwFAYD VQQDDA02OTRmNTNhNC01ZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWkW7/daisEddQ2OOcuQmtbB5xJOQZLUc2xplnio0y5mC04Dg6B9CyhDeJnR oFbZ83kZ3G58YSW7Hlu00Q0pMQXHgdNF8Dfxu/trBxrgUWMLLY91uM7tMgjIz6YO H82keUWbf7YamutPS14BVWSBla6XLIJxyKpLtexRzn2P0mTeu7sWw3cH4ON5IOsw Q1vaY8RaWRFNi/m/mGaAOYijJ9BKAADnvIdJzZfNjSZG0GfW7YL52aYID7cMV0Ah 3N8WcDqU6swUpDrUXzHHBIQW3dtk+lSw4vqAEtXSbxaSv4vuDSpSVT1PBYiehC4c ocg0IMKy+AIm5BLBTesRg4tflQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUBNzKz +rbY28REHLR1NeM0u7cGMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzP3/o5vP/1EbGk2U6OLQpEnhBXwZ6yYH32SqVmWp6sFzE3B7KiGmi RmEft+m5hBiJ1JSF9IPQ8hpHTKM8toO4bG1oFP+JFg2T2UNkGfNjsh5NoZ+zOkaT t0uhSO1/tcctuYv9XMskdeqIpZ6me51myiivMg1T88+wkXdugEFeT7NnLgRghihT q4sQqVq678MJGPZm6jtDkYGxicnx4tQEmo6zixlgFJFO/gpC634v54S4N8TfwH6I bCjrq46tM65CNEx+c2FA3rTpulOGpmqhJ3U47Tmj+sWbpTTyqYhmIBNJd0HXRboA w4B/PUNoOpyjqzlaCh8tV4PKYOe4Aqqx -----END CERTIFICATE-----Generated at Sun Dec 28 22:12:05 2025 by rpki-client