This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft File: nlcX9fFLsp9ntXrX2dXweRWunEM.mft (raw, json) Hash identifier: kzAXdnwzEeiVSWlGsgYMbT0qkEfVcgCh6nZIYpxcx4o= Subject key identifier: 44:25:C5:EB:B8:7D:97:BD:A9:DC:D2:16:32:1C:6F:A2:D4:64:A8:35 Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 0400 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft Manifest number: 03FB Signing time: Mon 22 Dec 2025 23:30:54 +0000 Manifest this update: Mon 22 Dec 2025 23:30:53 +0000 Manifest next update: Mon 29 Dec 2025 23:30:53 +0000 Files and hashes: 1: nlcX9fFLsp9ntXrX2dXweRWunEM.crl (hash: qB7YL0qtZIxUHuIHc6YzWk3AwBIgmKxMu7wLs1TOM9A=) 2: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (hash: l5UPW8luctznfhC7jBJpvRQP7pkTfMgJK+ognjXHfwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1024 (0x400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E, serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: Dec 22 23:30:53 2025 GMT Not After : Dec 29 23:30:53 2025 GMT Subject: CN=6949d4ae-ad55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:c0:67:70:15:99:a9:30:33:01:be:d8:e9:a2: 0f:f2:56:c8:36:18:d7:fd:a5:69:17:3f:14:6c:8c: 70:11:fc:a0:9d:2a:35:18:70:27:0a:28:8d:4b:eb: e0:dc:d0:fb:e0:89:9f:f8:e1:f1:49:6e:91:1b:b5: 0c:72:a9:10:db:24:2e:21:6d:a2:8a:a1:cd:8a:33: 9d:e2:e8:fd:5e:73:f0:10:9f:eb:5e:2c:91:9b:2c: 96:c2:6d:ea:75:03:3a:95:e3:9a:99:0b:28:59:15: 40:5d:8d:96:3a:a6:1a:72:63:3c:d6:8c:78:80:7e: f3:44:f5:0f:8c:05:ea:60:5b:35:2d:28:b6:4a:39: 2e:a6:0b:ef:30:a4:ab:f8:28:58:cd:89:5f:d4:a6: 8d:a1:c5:0e:5c:b0:34:05:e2:90:98:b3:1f:ac:1d: 56:33:02:ef:35:66:2c:b6:f9:33:23:db:58:30:01: 63:61:e1:3c:a3:5b:c0:62:1e:e9:d6:3a:df:8c:2e: 2e:98:10:5a:f3:5e:ae:0b:81:2f:ad:f6:d7:d9:d2: 6d:7e:86:8e:2e:2a:15:7a:6c:c6:2d:77:cb:79:ac: 03:b6:2c:e4:08:9b:2c:78:c7:76:86:be:b8:88:a6: 05:93:eb:b1:69:df:fd:bb:49:b6:5a:dc:99:35:65: 04:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:25:C5:EB:B8:7D:97:BD:A9:DC:D2:16:32:1C:6F:A2:D4:64:A8:35 X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:6e:2c:8f:ac:e0:eb:3c:05:fe:9e:f2:ca:1e:6e:d7:c2:3e: 32:5e:10:2e:b1:5d:4d:b2:e0:fd:42:ca:45:04:d7:d0:45:d1: 68:9e:4b:6a:a7:c8:48:15:da:29:c2:56:50:41:00:1e:d4:38: f8:7f:c5:6b:ca:63:3f:c9:57:74:df:33:44:19:9e:0c:6b:32: 16:56:8e:8b:95:d5:04:4a:1c:19:04:46:21:f7:20:91:aa:bf: b7:2e:b4:f7:4c:c7:06:e5:db:71:ba:19:d0:8e:54:ed:2e:5b: 14:da:c5:29:ea:f0:66:0c:73:29:b3:ac:4e:f7:5a:50:81:3d: df:2f:52:32:7b:8a:08:51:fb:39:ba:dc:43:c6:51:b2:08:13: 2a:83:df:d9:b8:87:4b:49:f9:50:ce:da:20:82:d0:9a:83:e1: da:33:e0:38:ff:a8:44:45:75:ab:aa:d1:74:5f:0c:bd:bb:65: 67:50:66:dc:78:c8:db:f7:9d:54:92:47:18:72:8a:2b:10:0d: b0:81:1c:09:8e:00:cb:c3:30:b0:10:c5:98:32:d3:e9:e3:5b: 9b:f9:32:62:59:84:86:a6:74:15:cf:f7:61:37:3b:0a:96:b7: b0:88:15:c2:42:67:84:f0:d1:0a:36:e1:78:be:1d:ea:03:32: 09:9c:80:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjUxMjIyMjMzMDUzWhcNMjUxMjI5MjMzMDUzWjAYMRYwFAYD VQQDDA02OTQ5ZDRhZS1hZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj8BncBWZqTAzAb7Y6aIP8lbINhjX/aVpFz8UbIxwEfygnSo1GHAnCiiNS+vg 3ND74Imf+OHxSW6RG7UMcqkQ2yQuIW2iiqHNijOd4uj9XnPwEJ/rXiyRmyyWwm3q dQM6leOamQsoWRVAXY2WOqYacmM81ox4gH7zRPUPjAXqYFs1LSi2SjkupgvvMKSr +ChYzYlf1KaNocUOXLA0BeKQmLMfrB1WMwLvNWYstvkzI9tYMAFjYeE8o1vAYh7p 1jrfjC4umBBa816uC4EvrfbX2dJtfoaOLioVemzGLXfLeawDtizkCJsseMd2hr64 iKYFk+uxad/9u0m2WtyZNWUEdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQlxeu4 fZe9qdzSFjIcb6LUZKg1MB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAxRS9DNUM2RjA1RTlFQTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNw OW50WHJYMmRYd2VSV3VuRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBObiyPrODrPAX+nvLKHm7Xwj4yXhAusV1NsuD9QspFBNfQRdFonktq p8hIFdopwlZQQQAe1Dj4f8VrymM/yVd03zNEGZ4MazIWVo6LldUEShwZBEYh9yCR qr+3LrT3TMcG5dtxuhnQjlTtLlsU2sUp6vBmDHMps6xO91pQgT3fL1Iye4oIUfs5 utxDxlGyCBMqg9/ZuIdLSflQztoggtCag+HaM+A4/6hERXWrqtF0Xwy9u2VnUGbc eMjb951UkkcYcoorEA2wgRwJjgDLwzCwEMWYMtPp41ub+TJiWYSGpnQVz/dhNzsK lrewiBXCQmeE8NEKNuF4vh3qAzIJnIDR -----END CERTIFICATE-----Generated at Wed Dec 24 00:32:06 2025 by rpki-client