This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: BuYzaMJ+92CMyybVQoScVXm2fY71Bkelh1jizYUS9dI= Subject key identifier: 1B:32:89:E2:66:51:08:6E:E6:77:91:A9:E5:E4:7B:DB:D8:C5:94:F9 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 017B Signing time: Sat 17 Jan 2026 02:59:28 +0000 Manifest this update: Sat 17 Jan 2026 02:59:28 +0000 Manifest next update: Sat 24 Jan 2026 02:59:28 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: KXl9N1Yn4uAH2WZZFGfh7sJCRUvzaAFahD7LixNFn14=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 02:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Jan 17 02:59:28 2026 GMT Not After : Jan 24 02:59:28 2026 GMT Subject: CN=696afb10-a2b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:01:4e:86:1b:37:bc:e4:fb:f8:ae:51:7d:53: c3:c9:ab:b7:0a:8e:72:d7:43:4e:27:fc:5f:83:06: 6b:47:63:8c:27:9b:eb:3a:46:f4:77:d0:50:91:ab: 8c:21:d3:ac:6b:a4:c3:fb:a9:6d:82:05:c2:63:e1: 63:fa:83:0f:8a:0a:1b:fd:06:c6:a2:c8:3d:d6:bc: 79:5e:5e:5c:88:d6:8c:5e:57:56:42:6c:5d:2a:25: 92:7c:40:f1:6c:2f:bb:47:ff:a0:2f:35:fc:14:de: 55:4e:5c:ca:46:04:bd:68:b7:b6:ff:77:8c:e2:0f: 23:97:2f:6c:b1:f8:cb:c3:08:84:6e:04:0d:01:c8: f8:ad:2f:65:e0:4b:0e:a0:8c:69:e1:84:c2:23:b7: c0:6a:33:86:f5:d5:7d:00:e7:0e:52:22:07:cb:e1: ac:8a:3e:be:f2:22:17:e6:5b:24:7d:57:52:1a:0d: 49:cb:30:47:a3:d4:83:7c:72:e1:03:e4:d0:7c:b4: a0:c5:a2:d3:bd:23:1a:a0:84:73:9a:a7:ae:c0:55: 6e:e7:20:59:36:f1:c5:3d:3e:5f:0a:4d:9e:cd:c3: 61:e5:3b:92:c1:bf:89:7e:d2:03:af:41:e2:3a:76: d4:b1:e9:b4:b7:7c:10:eb:03:b3:e1:88:e6:64:3f: e0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:32:89:E2:66:51:08:6E:E6:77:91:A9:E5:E4:7B:DB:D8:C5:94:F9 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:81:1a:cc:d5:bd:8b:ab:34:22:77:df:50:7c:74:fb:95:7b: d8:68:69:03:98:0a:67:e8:67:a2:b8:b1:5c:63:ba:aa:3d:07: e1:4d:4f:de:f8:1a:e3:cb:67:75:8c:7f:74:9e:cd:c5:1f:1a: 11:5a:a9:e5:47:b4:82:b7:1d:b1:b4:c1:18:0d:a4:dd:98:56: 29:6b:d1:3f:7e:77:52:9c:f3:80:da:49:df:25:e2:e2:8f:2e: d3:48:f2:23:f4:f5:0e:46:02:30:d6:64:5f:41:52:77:fc:c4: eb:34:6a:ba:32:87:c9:a8:1c:f3:a6:6a:27:aa:50:88:3e:56: e2:e5:98:7f:ac:b2:f8:bc:d2:8a:c3:7e:84:9d:25:e3:d4:6c: 8b:18:42:f5:35:d4:e1:73:91:da:9f:52:e1:27:b7:74:db:7a: e1:29:96:a9:bd:8b:37:bf:62:dc:df:43:d5:8e:0f:31:7c:bf: 36:a1:6b:3a:36:67:4e:8f:73:8c:48:06:fe:d3:a8:c3:a1:1c: 27:65:11:16:4a:e4:d4:f4:56:be:ce:66:f1:ea:f2:eb:43:ff: 19:82:87:8e:19:a2:09:60:7e:c4:04:31:6c:e8:22:bf:64:c0: e5:44:e6:32:40:b5:df:44:3a:5e:b4:e5:9f:11:79:ee:7d:f8: d6:fd:da:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjYwMTE3MDI1OTI4WhcNMjYwMTI0MDI1OTI4WjAYMRYwFAYD VQQDDA02OTZhZmIxMC1hMmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiwFOhhs3vOT7+K5RfVPDyau3Co5y10NOJ/xfgwZrR2OMJ5vrOkb0d9BQkauM IdOsa6TD+6ltggXCY+Fj+oMPigob/QbGosg91rx5Xl5ciNaMXldWQmxdKiWSfEDx bC+7R/+gLzX8FN5VTlzKRgS9aLe2/3eM4g8jly9ssfjLwwiEbgQNAcj4rS9l4EsO oIxp4YTCI7fAajOG9dV9AOcOUiIHy+Gsij6+8iIX5lskfVdSGg1JyzBHo9SDfHLh A+TQfLSgxaLTvSMaoIRzmqeuwFVu5yBZNvHFPT5fCk2ezcNh5TuSwb+JftIDr0Hi OnbUsem0t3wQ6wOz4YjmZD/ggQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsyieJm UQhu5neRqeXke9vYxZT5MB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTgRrM1b2LqzQid99QfHT7lXvYaGkDmApn6GeiuLFcY7qqPQfhTU/e +Brjy2d1jH90ns3FHxoRWqnlR7SCtx2xtMEYDaTdmFYpa9E/fndSnPOA2knfJeLi jy7TSPIj9PUORgIw1mRfQVJ3/MTrNGq6MofJqBzzpmonqlCIPlbi5Zh/rLL4vNKK w36EnSXj1GyLGEL1NdThc5Han1LhJ7d023rhKZapvYs3v2Lc30PVjg8xfL82oWs6 NmdOj3OMSAb+06jDoRwnZREWSuTU9Fa+zmbx6vLrQ/8ZgoeOGaIJYH7EBDFs6CK/ ZMDlROYyQLXfRDpetOWfEXnuffjW/dpd -----END CERTIFICATE-----Generated at Sun Jan 18 03:09:33 2026 by rpki-client