This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft File: NcbYSDFsIdmTz25MBtYB3AXvxOE.mft (raw, json) Hash identifier: 68CFtRoiCHWogEsUMcWH0FhJzUwmQEceMabJ7vr5o4E= Subject key identifier: 31:83:39:E1:45:F8:D7:CE:2F:77:23:6C:CE:27:85:A9:FF:77:35:15 Authority key identifier: 35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 Certificate issuer: /CN=A91F473F/serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft Manifest number: 01C8 Signing time: Tue 23 Dec 2025 01:58:42 +0000 Manifest this update: Tue 23 Dec 2025 01:58:42 +0000 Manifest next update: Tue 30 Dec 2025 01:58:42 +0000 Files and hashes: 1: NcbYSDFsIdmTz25MBtYB3AXvxOE.crl (hash: 5oLcp0gYhJr7gpqlCtWCGl6YqXfLnus9AKS/VM71V90=) 2: C416FBB02D6F11EEAC755B42C4F9AE02.roa (hash: 8GoJZpCZ9P4ckdBt/ZtHhmXHWFZw1X3kEDMJv2TH3VQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F473F, serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Validity Not Before: Dec 23 01:58:42 2025 GMT Not After : Dec 30 01:58:42 2025 GMT Subject: CN=6949f752-98c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:57:c9:8e:91:6c:a1:95:f0:41:ce:f7:86:af: c7:2e:cf:d3:69:45:41:7e:b7:60:4b:95:94:0b:9c: cb:85:6c:60:a9:46:a8:0c:ef:c9:8f:a4:90:b6:85: b7:dc:82:2e:b8:8f:9e:5f:b4:b2:aa:1a:f0:9d:5f: 6f:b9:58:99:00:34:01:18:21:06:59:77:65:89:42: 9b:9a:c7:05:4f:d1:f7:70:34:95:7c:2a:10:16:38: 9f:09:98:41:c1:a7:35:df:76:05:4c:d5:0d:fd:5b: ec:02:0c:8b:3b:cf:20:d5:9f:e1:83:3f:0f:65:0b: d8:2e:39:2f:01:81:32:d7:0e:6a:2f:07:f4:ac:45: cb:7f:44:5e:7c:e9:e2:67:e4:f6:b8:5c:25:ce:46: 2b:0d:03:87:b5:aa:d8:95:89:6c:53:65:e2:75:93: 61:0f:ca:fd:bc:61:b0:60:da:da:c7:82:ba:2a:64: a5:dc:6b:76:45:90:17:62:57:f7:b6:f2:3c:96:8b: c6:37:f6:bf:42:a4:27:8a:d3:2d:74:c0:1c:af:70: 8e:5f:57:c0:64:d8:32:2a:d0:13:9b:5b:30:72:3c: 3a:65:18:4d:e3:57:a1:b3:63:cf:d0:03:7a:b2:2e: e6:7a:92:50:d2:12:0b:aa:b9:77:05:22:6a:18:a3: 09:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:83:39:E1:45:F8:D7:CE:2F:77:23:6C:CE:27:85:A9:FF:77:35:15 X509v3 Authority Key Identifier: keyid:35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:7c:20:22:69:6e:4d:fb:a1:20:23:95:be:07:a4:6d:bd:34: 2c:07:fe:e1:85:f9:6e:8b:fa:3c:1e:50:bf:6a:5e:f3:25:b1: 0e:a6:48:05:d9:bd:42:a6:c0:3e:8f:28:d7:93:42:32:e0:9f: 79:02:cd:bf:10:f1:d6:2f:fa:2d:d8:33:22:e6:01:82:27:d1: 5a:4c:54:d0:65:28:e3:97:0a:92:9a:9d:f7:32:4b:a9:eb:85: 08:31:2c:70:8d:c3:d7:de:71:88:78:4e:df:fd:61:53:0f:c5: d7:d5:11:07:1d:3a:2b:45:fc:8f:cd:d6:89:82:17:f7:f4:cd: fd:18:2f:d5:f0:06:5f:f7:2c:6e:c4:e4:0c:06:f4:08:17:5b: 7c:4b:43:a8:60:fb:d3:8f:b6:03:b9:28:b2:08:5d:85:bd:20: c5:f0:4c:02:76:73:03:96:21:b5:ae:56:f1:f1:8e:a4:ac:c6: fb:29:8c:22:91:fa:81:30:13:49:75:e6:c9:e0:05:b8:ee:86: 2e:1c:eb:70:fa:9f:87:36:58:99:64:df:a3:e0:4d:cc:50:6c: 1f:ff:0b:d4:01:8a:13:b2:5a:de:57:8b:05:08:d1:87:20:c2: 2d:a4:be:de:19:73:44:e1:86:b1:ba:6c:11:83:ed:6c:bd:c4: 5b:d3:3a:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3M0YxMTAvBgNVBAUTKDM1QzZEODQ4MzE2QzIxRDk5M0NGNkU0QzA2RDYwMURD MDVFRkM0RTEwHhcNMjUxMjIzMDE1ODQyWhcNMjUxMjMwMDE1ODQyWjAYMRYwFAYD VQQDDA02OTQ5Zjc1Mi05OGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FfJjpFsoZXwQc73hq/HLs/TaUVBfrdgS5WUC5zLhWxgqUaoDO/Jj6SQtoW3 3IIuuI+eX7SyqhrwnV9vuViZADQBGCEGWXdliUKbmscFT9H3cDSVfCoQFjifCZhB wac133YFTNUN/VvsAgyLO88g1Z/hgz8PZQvYLjkvAYEy1w5qLwf0rEXLf0RefOni Z+T2uFwlzkYrDQOHtarYlYlsU2XidZNhD8r9vGGwYNrax4K6KmSl3Gt2RZAXYlf3 tvI8lovGN/a/QqQnitMtdMAcr3COX1fAZNgyKtATm1swcjw6ZRhN41ehs2PP0AN6 si7mepJQ0hILqrl3BSJqGKMJMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGDOeFF +NfOL3cjbM4nhan/dzUVMB8GA1UdIwQYMBaAFDXG2EgxbCHZk89uTAbWAdwF78Th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDczRi8xRDE3RURCNDJC OTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lkbVR6MjVNQnRZQjNBWHZ4 T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jYllTREZzSWRtVHoyNU1CdFlCM0FYdnhPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDczRi8xRDE3RURCNDJCOTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lk bVR6MjVNQnRZQjNBWHZ4T0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwfCAiaW5N+6EgI5W+B6RtvTQsB/7hhflui/o8HlC/al7zJbEOpkgF 2b1CpsA+jyjXk0Iy4J95As2/EPHWL/ot2DMi5gGCJ9FaTFTQZSjjlwqSmp33Mkup 64UIMSxwjcPX3nGIeE7f/WFTD8XX1REHHTorRfyPzdaJghf39M39GC/V8AZf9yxu xOQMBvQIF1t8S0OoYPvTj7YDuSiyCF2FvSDF8EwCdnMDliG1rlbx8Y6krMb7KYwi kfqBMBNJdebJ4AW47oYuHOtw+p+HNliZZN+j4E3MUGwf/wvUAYoTslreV4sFCNGH IMItpL7eGXNE4YaxumwRg+1svcRb0zoC -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:36 2025 by rpki-client