This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: v9i4L7en0pZkRGnNBrVZ2Vok5vRSFvztK1ye1dTgAhg= Subject key identifier: 9F:D1:67:7E:92:4D:A5:19:2A:91:64:19:F5:4E:9F:C0:60:80:45:4A Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2BDB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2BC5 Signing time: Mon 22 Dec 2025 14:24:56 +0000 Manifest this update: Mon 22 Dec 2025 14:24:56 +0000 Manifest next update: Mon 29 Dec 2025 14:24:56 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: 1e9Fcl5q8wr+g+MXWVXuJ7YK5Mtnz/HYlxTE52kwFXc=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: NK9ND6m4XQQdYJfdTkVni6Vzs2GTwmWQ7OeeG3lJVUs=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: Dh1mpv4UoWbEEeCnj4hWDVua0Kb3Ya4BmP9+TVk00i8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11227 (0x2bdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Dec 22 14:24:56 2025 GMT Not After : Dec 29 14:24:56 2025 GMT Subject: CN=694954b8-4284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:17:7b:96:53:e9:5c:7f:56:01:f6:bd:ed:d2: cf:6e:9b:4e:ca:94:16:09:0d:5e:a6:54:b7:59:90: dc:07:8a:c8:6f:3f:b2:5c:85:ee:10:9d:1f:c8:e8: 70:50:61:b7:5b:82:b7:2f:91:64:d9:1a:72:79:fe: cd:77:18:d4:ed:e0:a9:82:d7:44:74:c0:07:32:32: 05:18:6d:7f:c9:31:b8:65:21:54:26:36:e5:25:be: 90:27:09:04:2a:fd:de:d3:4b:5f:f2:e0:56:55:4c: c9:cd:9f:fc:7a:05:61:e8:0d:18:fd:c9:38:6b:d4: a2:f0:97:73:6c:ae:73:6d:e7:ae:87:f5:0e:95:ae: 2e:66:b6:ca:22:95:80:6a:2f:f6:6a:6b:84:bd:fb: 01:20:c3:a6:2b:02:e1:59:79:f0:ee:04:d2:1b:cb: 3b:d2:6a:0e:02:52:43:70:45:9d:3d:2d:29:5d:f4: a2:8c:4e:4b:0f:4f:48:cb:f5:a2:e5:a2:f0:2b:d0: 5b:18:40:db:32:32:e5:36:3c:e6:61:94:88:52:f2: 84:e3:21:d6:6e:b5:60:e7:bf:de:34:3b:12:14:9c: 2b:45:20:4b:14:35:35:c9:13:00:4f:f4:72:55:b4: 67:e5:a6:f9:6c:49:b0:85:f7:c3:b5:1e:25:cc:24: 84:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D1:67:7E:92:4D:A5:19:2A:91:64:19:F5:4E:9F:C0:60:80:45:4A X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:43:32:70:19:63:5d:7c:56:c5:54:87:2a:04:c5:9e:dd:f2: b7:71:ab:cc:e5:0c:1c:44:11:5e:73:7e:e8:fd:ab:f1:77:c8: 86:86:e2:95:8b:e5:e6:09:10:7a:a1:d2:c7:b5:cf:a3:4f:56: 30:71:d2:7b:26:b9:e6:0f:d4:cc:d4:cf:67:94:95:9d:f6:b9: 0c:08:df:99:1b:7d:10:3f:1c:d9:ad:64:b4:c7:b5:46:c3:82: b6:c8:0a:56:64:71:ba:0b:f7:5e:6b:54:14:0a:2f:20:95:83: 2f:ff:bc:2d:a6:e9:1a:36:21:ee:d6:d5:55:f4:c0:43:e0:9f: d0:04:09:1c:19:3a:8e:ef:6a:69:63:7b:6b:4c:9e:ed:d3:1a: 4c:7e:e3:54:d0:46:36:2f:fe:0b:a2:41:99:2f:8b:23:8b:f2: 5d:aa:3f:90:67:d0:83:62:61:86:65:6f:94:50:cb:36:42:b2: 6c:2a:da:5e:98:91:3d:af:07:70:c0:83:78:8f:91:1a:cb:fd: 55:e6:6a:b1:69:48:95:05:d9:d9:fb:9f:f5:af:a8:78:f2:92: e1:3c:07:41:88:4f:fd:58:79:98:19:b1:e2:0b:53:1f:c5:77: 51:ad:f2:c4:c0:4a:f1:f1:86:a2:0c:ce:28:1a:2a:2c:a5:e4: 3e:e0:5c:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUxMjIyMTQyNDU2WhcNMjUxMjI5MTQyNDU2WjAYMRYwFAYD VQQDDA02OTQ5NTRiOC00Mjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxd7llPpXH9WAfa97dLPbptOypQWCQ1eplS3WZDcB4rIbz+yXIXuEJ0fyOhw UGG3W4K3L5Fk2Rpyef7NdxjU7eCpgtdEdMAHMjIFGG1/yTG4ZSFUJjblJb6QJwkE Kv3e00tf8uBWVUzJzZ/8egVh6A0Y/ck4a9Si8JdzbK5zbeeuh/UOla4uZrbKIpWA ai/2amuEvfsBIMOmKwLhWXnw7gTSG8s70moOAlJDcEWdPS0pXfSijE5LD09Iy/Wi 5aLwK9BbGEDbMjLlNjzmYZSIUvKE4yHWbrVg57/eNDsSFJwrRSBLFDU1yRMAT/Ry VbRn5ab5bEmwhffDtR4lzCSEpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/RZ36S TaUZKpFkGfVOn8BggEVKMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEQzJwGWNdfFbFVIcqBMWe3fK3cavM5QwcRBFec37o/avxd8iGhuKV i+XmCRB6odLHtc+jT1YwcdJ7JrnmD9TM1M9nlJWd9rkMCN+ZG30QPxzZrWS0x7VG w4K2yApWZHG6C/dea1QUCi8glYMv/7wtpukaNiHu1tVV9MBD4J/QBAkcGTqO72pp Y3trTJ7t0xpMfuNU0EY2L/4LokGZL4sji/Jdqj+QZ9CDYmGGZW+UUMs2QrJsKtpe mJE9rwdwwIN4j5Eay/1V5mqxaUiVBdnZ+5/1r6h48pLhPAdBiE/9WHmYGbHiC1Mf xXdRrfLEwErx8YaiDM4oGiospeQ+4Fzn -----END CERTIFICATE-----Generated at Tue Dec 23 16:21:30 2025 by rpki-client