This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: hvZ8iJG2nVNRs6q4PCFBieKXKBPJ4lNALHHxCaEkw5c= Subject key identifier: 1F:5C:58:91:35:41:D9:60:A3:3B:52:D7:25:78:4F:B1:18:08:4F:C5 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 01F1 Signing time: Sat 06 Dec 2025 16:36:08 +0000 Manifest this update: Sat 06 Dec 2025 16:36:07 +0000 Manifest next update: Sat 13 Dec 2025 16:36:07 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: MBKgBcqsAXDkDrtKsQNMnE/0nUJ9cmDkA4k5uKUC7N0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Dec 6 16:36:07 2025 GMT Not After : Dec 13 16:36:07 2025 GMT Subject: CN=69345b78-4a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a3:ac:10:5f:a5:82:b5:fa:be:35:a1:70:8b: 7f:fe:70:88:68:cd:2c:db:de:e0:53:8f:8b:10:6a: 5a:1c:fe:04:ac:a2:59:13:32:01:1c:40:61:eb:28: b2:a4:37:57:0d:c3:d5:ec:7e:ee:4a:31:bd:b1:40: 91:0c:33:cf:ba:de:bb:9f:e4:b0:e3:15:89:6a:b3: e6:75:9f:d8:11:e0:66:7c:d9:66:01:7f:7d:0c:5e: 3c:cd:eb:53:77:8d:33:4c:b0:ee:f5:a3:3b:a4:5f: 82:f5:b6:42:6d:ed:6b:b8:a5:eb:52:8e:93:f7:5f: 05:a0:34:15:65:9d:5e:c1:34:27:07:77:12:35:fe: 45:4a:8d:82:67:cd:52:89:a4:2e:ac:10:46:ca:7a: 9b:2f:d9:7d:fb:04:97:6e:7a:dd:72:f4:aa:40:e8: f6:13:33:97:13:ea:d3:33:4b:a2:fc:ac:e1:67:a9: 4e:dd:95:6c:86:fb:9b:29:87:6c:ed:e7:e5:8c:e1: 74:92:d9:8f:a3:33:c5:6e:94:22:14:7a:28:cc:8c: 1a:60:69:02:aa:e0:78:08:10:4b:c4:6a:f9:55:35: f4:39:c5:1d:a6:94:2c:7c:94:32:f3:11:05:c5:39: ce:ba:b7:b2:c7:23:ad:bd:f1:af:d0:8a:e7:a8:ea: e4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5C:58:91:35:41:D9:60:A3:3B:52:D7:25:78:4F:B1:18:08:4F:C5 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ea:fd:2e:da:75:45:f1:32:d9:17:d1:b7:17:66:ec:5a:22: de:60:ba:53:de:79:2b:7d:3c:22:2d:d7:64:ca:74:7c:d6:60: 7f:09:f0:5e:e3:21:a1:99:c7:66:1d:12:3e:84:16:7d:6b:6a: 79:a3:59:97:81:b0:f4:99:e5:1d:2a:d2:18:91:6b:e1:26:22: 56:62:bf:bd:e3:ee:13:ba:60:55:f3:67:b0:26:f8:24:17:f5: 5f:2c:b3:21:5d:2a:76:2f:0c:e8:a3:ed:d8:72:08:36:84:2b: dc:dd:7f:ed:d5:f1:78:67:56:f4:26:ab:ca:30:b2:66:17:70: b6:20:b0:53:1c:5a:58:2a:c9:60:87:66:29:48:97:b7:d2:29: 00:ba:9b:55:41:e1:c1:bc:b2:15:9c:db:13:17:6f:63:0d:65: f6:f1:3b:22:9b:40:4f:37:cc:d1:ca:35:21:0a:41:35:19:cc: 2d:d9:b9:c7:90:23:36:e7:0d:59:e7:21:81:91:03:49:3c:a5: 75:f5:d0:94:89:2f:dd:94:88:22:ef:07:31:d6:e5:f7:f1:e1: bf:3c:93:81:8f:89:ae:e1:2e:89:ac:df:28:4f:81:28:a9:7e: 04:bf:02:15:d5:73:08:a5:94:53:c6:c6:f5:de:60:a2:2f:69: a4:18:56:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjUxMjA2MTYzNjA3WhcNMjUxMjEzMTYzNjA3WjAYMRYwFAYD VQQDEw02OTM0NWI3OC00YTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqOsEF+lgrX6vjWhcIt//nCIaM0s297gU4+LEGpaHP4ErKJZEzIBHEBh6yiy pDdXDcPV7H7uSjG9sUCRDDPPut67n+Sw4xWJarPmdZ/YEeBmfNlmAX99DF48zetT d40zTLDu9aM7pF+C9bZCbe1ruKXrUo6T918FoDQVZZ1ewTQnB3cSNf5FSo2CZ81S iaQurBBGynqbL9l9+wSXbnrdcvSqQOj2EzOXE+rTM0ui/KzhZ6lO3ZVshvubKYds 7efljOF0ktmPozPFbpQiFHoozIwaYGkCquB4CBBLxGr5VTX0OcUdppQsfJQy8xEF xTnOureyxyOtvfGv0IrnqOrkxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9cWJE1 QdlgoztS1yV4T7EYCE/FMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe6v0u2nVF8TLZF9G3F2bsWiLeYLpT3nkrfTwiLddkynR81mB/CfBe 4yGhmcdmHRI+hBZ9a2p5o1mXgbD0meUdKtIYkWvhJiJWYr+94+4TumBV82ewJvgk F/VfLLMhXSp2Lwzoo+3Ycgg2hCvc3X/t1fF4Z1b0JqvKMLJmF3C2ILBTHFpYKslg h2YpSJe30ikAuptVQeHBvLIVnNsTF29jDWX28Tsim0BPN8zRyjUhCkE1Gcwt2bnH kCM25w1Z5yGBkQNJPKV19dCUiS/dlIgi7wcx1uX38eG/PJOBj4mu4S6JrN8oT4Eo qX4EvwIV1XMIpZRTxsb13mCiL2mkGFam -----END CERTIFICATE-----Generated at Sat Dec 6 23:59:30 2025 by rpki-client