This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: AfLI1EKEPCnpPc2yNevvUOwYBUfsB9On+diKHV88BGk= Subject key identifier: DD:A0:14:65:B7:2D:8C:F2:6F:49:FC:34:CE:BC:52:76:DD:7E:6F:D5 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 016C Signing time: Fri 19 Dec 2025 03:08:32 +0000 Manifest this update: Fri 19 Dec 2025 03:08:32 +0000 Manifest next update: Fri 26 Dec 2025 03:08:32 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: cSLzJuwVaQerWj3u6URnSye8VMgCqQq82fVmCOaDprA=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Dec 19 03:08:32 2025 GMT Not After : Dec 26 03:08:32 2025 GMT Subject: CN=6944c1b0-767b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:37:e8:be:6d:0d:6a:23:38:ad:43:56:6e: e9:36:19:83:1d:f1:92:40:5c:91:ca:a9:d5:91:90: d1:51:a4:7f:f2:2d:4f:12:19:4b:24:bd:58:cb:ec: 5d:0d:91:a1:98:b5:c9:14:bc:db:80:01:1f:3b:34: 95:c1:a5:9f:91:48:0a:68:86:aa:97:8e:33:6e:4a: db:72:54:c7:0d:27:23:48:d6:e1:79:61:1a:5b:cc: 90:41:4c:9f:42:1e:2f:22:9a:a3:ef:2b:b9:04:60: e0:20:f9:7e:77:e2:16:bc:b4:fa:20:a8:c3:bf:8f: 8d:cb:5c:c0:a1:d6:72:73:22:f3:4a:83:df:7d:26: a1:fe:53:0c:4d:36:9b:6c:7c:9f:ee:83:b2:ef:c4: 86:73:39:9c:92:87:32:84:9c:f7:74:05:e4:34:7c: eb:11:d7:ac:cb:81:29:4f:89:da:7d:a3:77:9e:84: 62:fc:88:e4:aa:44:ad:c4:79:bb:6a:b0:ea:c0:3b: f6:ec:78:d3:04:7c:e2:86:54:f3:bd:d4:36:13:76: 48:d3:41:7d:5f:dd:8a:9d:75:06:9f:ca:7b:eb:e5: f7:24:a0:59:fd:71:78:98:0f:5f:74:35:2d:21:15: d6:49:41:4b:bd:11:e7:00:b6:ce:4f:56:93:c7:42: 4b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A0:14:65:B7:2D:8C:F2:6F:49:FC:34:CE:BC:52:76:DD:7E:6F:D5 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d7:b4:52:0a:40:b9:73:58:a4:91:d5:48:e4:89:34:cc:cd: 9b:43:38:ed:f9:0c:9a:11:02:94:70:1c:0f:ee:13:c2:14:84: f7:66:4d:d5:1a:0a:4b:18:1a:c8:d5:41:a3:0e:71:ac:bf:01: 4a:6b:43:d2:fb:cf:4b:4b:f5:85:31:2a:cc:4c:7b:e1:35:31: cf:4a:85:a5:b2:e2:d5:7a:85:90:8d:39:b2:a8:00:97:c2:1c: c9:f7:76:6f:2d:77:a4:fb:58:05:bd:c7:6a:ff:d1:00:d6:8c: f9:3d:90:79:22:59:31:8e:e2:e8:ad:ec:6f:45:ba:24:da:7f: 3e:fc:81:a1:bb:ab:d5:18:a7:fc:d4:6e:41:bd:33:ce:05:83: ad:89:43:6c:b2:da:f3:83:56:50:56:d7:b9:e2:34:78:74:90: be:21:90:21:62:f1:02:91:c1:f5:d9:ff:f7:61:27:3f:51:a1: 25:29:6a:4a:33:85:52:b0:af:8a:a4:63:0b:38:0c:80:5c:4d: 00:0b:62:34:0b:fa:98:c1:99:b6:03:0c:53:6a:e7:34:b4:1d: 84:f5:c7:65:61:39:ee:40:a0:25:cc:d0:6f:7f:0e:3f:c9:4b: b8:b6:7b:4c:99:c3:1c:52:86:aa:8c:0e:ae:21:42:b0:aa:a3: 97:f4:ec:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUxMjE5MDMwODMyWhcNMjUxMjI2MDMwODMyWjAYMRYwFAYD VQQDDA02OTQ0YzFiMC03NjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiw36L5tDWojOK1DVm7pNhmDHfGSQFyRyqnVkZDRUaR/8i1PEhlLJL1Yy+xd DZGhmLXJFLzbgAEfOzSVwaWfkUgKaIaql44zbkrbclTHDScjSNbheWEaW8yQQUyf Qh4vIpqj7yu5BGDgIPl+d+IWvLT6IKjDv4+Ny1zAodZycyLzSoPffSah/lMMTTab bHyf7oOy78SGczmckocyhJz3dAXkNHzrEdesy4EpT4nafaN3noRi/IjkqkStxHm7 arDqwDv27HjTBHzihlTzvdQ2E3ZI00F9X92KnXUGn8p76+X3JKBZ/XF4mA9fdDUt IRXWSUFLvRHnALbOT1aTx0JLTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2gFGW3 LYzyb0n8NM68Unbdfm/VMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH17RSCkC5c1ikkdVI5Ik0zM2bQzjt+QyaEQKUcBwP7hPCFIT3Zk3V GgpLGBrI1UGjDnGsvwFKa0PS+89LS/WFMSrMTHvhNTHPSoWlsuLVeoWQjTmyqACX whzJ93ZvLXek+1gFvcdq/9EA1oz5PZB5IlkxjuLorexvRbok2n8+/IGhu6vVGKf8 1G5BvTPOBYOtiUNsstrzg1ZQVte54jR4dJC+IZAhYvECkcH12f/3YSc/UaElKWpK M4VSsK+KpGMLOAyAXE0AC2I0C/qYwZm2AwxTauc0tB2E9cdlYTnuQKAlzNBvfw4/ yUu4tntMmcMcUoaqjA6uIUKwqqOX9Oz4 -----END CERTIFICATE-----Generated at Sat Dec 20 00:52:41 2025 by rpki-client