This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: 4RKTD8pRR3DCjjv96F+OLXH1FGs+cG4hz55iR3uGsFo= Subject key identifier: 85:3E:1F:AC:EE:F4:48:04:2A:68:77:36:76:98:0F:77:AF:FE:26:2A Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0143 Signing time: Fri 19 Dec 2025 03:47:19 +0000 Manifest this update: Fri 19 Dec 2025 03:47:19 +0000 Manifest next update: Fri 26 Dec 2025 03:47:19 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: dvQXzuBWeVMY7ZglxYrt1NwqMRvM5qj37r+EZHdshno=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Dec 19 03:47:19 2025 GMT Not After : Dec 26 03:47:19 2025 GMT Subject: CN=6944cac7-4bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:99:97:e4:ec:b6:6b:1f:fa:ff:1f:40:bf:68: b8:58:73:44:0e:59:e8:6a:8d:d0:de:3b:5b:c5:a0: c4:ec:bb:c3:c4:6e:f6:68:63:68:25:1d:74:3c:f3: 7b:ed:ed:ea:8f:02:3e:17:6d:d2:38:cc:cf:61:1e: 20:5a:a8:c8:4a:34:75:48:7f:09:43:84:da:e6:b3: db:eb:69:94:57:05:9d:b7:7c:60:5c:42:95:e9:11: 57:eb:32:a4:e6:61:14:1a:18:cf:10:fa:61:e6:61: 55:1c:35:75:40:c9:06:fe:58:b6:a6:dd:6a:e1:ec: 5e:2c:78:96:63:bb:be:1a:b0:53:bd:7d:b1:ce:04: f3:9f:6a:79:c0:2a:da:8f:68:5c:76:6f:48:42:76: 76:18:cf:d0:85:8b:10:6f:52:de:cc:df:05:06:d5: 44:05:6d:ae:06:5e:68:f1:c4:40:ca:7b:0a:28:c0: c8:1f:f7:24:02:77:9b:98:76:ed:57:d0:68:83:02: 02:b8:b9:a8:e4:e4:46:2a:1e:02:ee:72:ec:72:e0: 09:66:a3:46:bf:f0:80:c0:3c:ab:64:b3:3d:58:16: 49:57:68:92:a2:4b:39:b1:e1:01:b7:4e:94:76:5b: 8a:38:b8:e5:0b:9b:6a:41:a5:62:5c:fd:7d:40:7d: 5e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3E:1F:AC:EE:F4:48:04:2A:68:77:36:76:98:0F:77:AF:FE:26:2A X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:52:91:fb:05:6d:34:a9:00:bc:0e:d8:9f:c4:90:86:c3:b5: 94:a4:f7:8a:4e:e8:15:70:08:64:75:d6:c2:b9:52:77:70:80: 1b:c0:cb:f4:6f:31:f2:e9:2d:87:c5:e6:4c:78:10:75:0d:d1: 96:d3:28:35:75:d6:80:f6:21:83:7d:7d:f7:d7:91:06:77:1d: 06:c8:9d:d9:87:07:22:db:a2:5c:ff:b3:3a:50:b2:fc:60:b2: 25:a9:05:13:94:32:2a:ed:30:8c:99:09:9b:a6:9a:fc:fe:37: fd:7d:0a:b3:03:dd:50:d6:b6:de:10:10:cd:c7:79:0c:a4:ef: 5a:84:4f:26:86:2d:d7:3b:ef:a0:1b:fe:7c:da:d0:41:4e:f5: 1a:aa:9a:ae:67:7a:e1:82:0c:2a:9c:6a:7f:0d:8c:e6:52:20: 80:77:73:01:75:9f:16:d2:e6:0b:06:1c:cd:e1:a7:b4:a0:60: 6a:56:95:01:ab:23:fd:b6:7a:23:e2:d2:07:fe:71:b5:41:dc: cc:85:2e:70:50:f2:59:e7:c6:0c:ee:98:fd:62:a8:e1:77:dd: e9:f2:26:e1:ee:a2:a8:75:bf:12:79:c4:54:ff:1e:bb:e4:fe: 34:50:bd:3c:f4:08:af:99:a3:77:0e:dc:f6:01:c2:5e:cc:10: 13:4f:da:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUxMjE5MDM0NzE5WhcNMjUxMjI2MDM0NzE5WjAYMRYwFAYD VQQDDA02OTQ0Y2FjNy00YmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpmX5Oy2ax/6/x9Av2i4WHNEDlnoao3Q3jtbxaDE7LvDxG72aGNoJR10PPN7 7e3qjwI+F23SOMzPYR4gWqjISjR1SH8JQ4Ta5rPb62mUVwWdt3xgXEKV6RFX6zKk 5mEUGhjPEPph5mFVHDV1QMkG/li2pt1q4exeLHiWY7u+GrBTvX2xzgTzn2p5wCra j2hcdm9IQnZ2GM/QhYsQb1LezN8FBtVEBW2uBl5o8cRAynsKKMDIH/ckAnebmHbt V9BogwICuLmo5ORGKh4C7nLscuAJZqNGv/CAwDyrZLM9WBZJV2iSoks5seEBt06U dluKOLjlC5tqQaViXP19QH1eiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIU+H6zu 9EgEKmh3NnaYD3ev/iYqMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXUpH7BW00qQC8DtifxJCGw7WUpPeKTugVcAhkddbCuVJ3cIAbwMv0 bzHy6S2HxeZMeBB1DdGW0yg1ddaA9iGDfX3315EGdx0GyJ3Zhwci26Jc/7M6ULL8 YLIlqQUTlDIq7TCMmQmbppr8/jf9fQqzA91Q1rbeEBDNx3kMpO9ahE8mhi3XO++g G/582tBBTvUaqpquZ3rhggwqnGp/DYzmUiCAd3MBdZ8W0uYLBhzN4ae0oGBqVpUB qyP9tnoj4tIH/nG1QdzMhS5wUPJZ58YM7pj9Yqjhd93p8ibh7qKodb8SecRU/x67 5P40UL089AivmaN3Dtz2AcJezBATT9p8 -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:44 2025 by rpki-client