This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: 38q8Fc5pr9tJyr5OYhE/9fGykqOfInp/g60awRzbltM= Subject key identifier: B3:80:C8:41:99:59:A7:60:4A:BD:2B:81:B2:3F:24:39:6C:3E:F1:0D Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0164 Signing time: Wed 03 Dec 2025 02:33:30 +0000 Manifest this update: Wed 03 Dec 2025 02:33:30 +0000 Manifest next update: Wed 10 Dec 2025 02:33:30 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: LuRBFoIbqrVrsUFwUS3jRai+eQ6Jp28asw4jbPu28WU=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Dec 3 02:33:30 2025 GMT Not After : Dec 10 02:33:30 2025 GMT Subject: CN=692fa17a-1ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0f:15:1e:df:fe:5b:28:97:8a:8e:c6:85:99: 8f:4e:c0:90:01:68:69:95:e8:49:dc:41:74:56:cd: b8:ab:eb:33:be:b5:85:c6:b1:10:1b:a0:c6:fe:be: 1d:c8:d4:86:9c:05:5e:ad:7a:72:41:9f:7e:da:1b: 26:67:7c:65:b6:b0:5e:26:ed:4b:0c:21:37:66:b9: 8a:61:80:62:e6:a0:8d:a2:b1:67:f1:a6:10:a6:3d: d2:09:4e:05:60:e3:1e:36:ac:75:0b:3e:27:4c:0f: 9b:87:a1:40:83:b6:21:50:a7:81:67:8e:d0:51:c2: 95:3a:6a:ed:ac:ea:e1:55:43:c3:3b:91:24:41:80: 30:2b:84:6d:e3:13:8a:ea:11:e3:30:df:70:1f:21: 22:d6:2c:1c:0c:95:0c:84:00:8e:e9:52:ec:ae:68: db:25:ef:be:34:54:04:e8:99:61:7c:68:21:d4:52: bb:bc:08:89:4d:0f:3d:57:87:e1:44:f5:b0:d9:3e: 0e:25:55:39:3d:c7:5d:10:26:a6:a4:ab:fd:d9:42: 2b:86:85:1a:0b:59:aa:a2:d5:96:7b:5e:59:e4:28: 88:da:bc:36:84:69:5e:a8:52:c5:e0:7e:1a:56:0c: 42:ff:a4:58:9b:c5:06:40:c8:f5:f9:0a:e6:18:06: 6b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:80:C8:41:99:59:A7:60:4A:BD:2B:81:B2:3F:24:39:6C:3E:F1:0D X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:60:1a:68:e1:fa:ef:8a:d0:d2:2a:6b:30:74:c8:ea:62:93: bc:fb:d9:24:06:b2:d9:7b:5c:a2:26:e9:86:01:84:77:8c:cf: 7b:9f:44:10:22:1d:77:a5:14:c0:68:4f:f5:ce:df:62:f1:3a: bd:b8:5c:e8:c6:4f:d8:6a:41:f3:59:ec:43:d3:25:41:35:cd: ae:60:60:57:8b:53:03:33:bb:b5:6b:37:eb:13:4b:d4:17:ec: 25:53:9e:a8:a0:7a:c8:22:20:fe:0b:f9:b4:ad:31:70:66:5a: ee:27:e9:7e:56:e1:3d:83:80:8e:66:9e:7a:c9:4f:74:8a:26: 7a:f2:0d:04:38:a0:ac:85:0b:c3:cc:89:d8:49:74:b0:38:7d: e5:0f:3a:7c:3c:d1:a1:ed:1b:49:2b:cd:17:39:d8:24:4a:fa: b6:f0:98:a9:e2:54:f8:80:ba:09:aa:b3:ca:d2:99:06:b0:28: 80:d8:79:ee:48:8d:01:11:9c:7e:07:18:da:c0:72:fa:e8:7c: 96:fb:49:ca:9f:41:ed:b5:54:66:ab:4b:ef:bb:76:a6:05:07: 92:1f:d9:48:24:87:75:e4:5e:9e:fd:ca:26:c9:ae:14:81:cc: f7:22:85:06:69:5c:68:19:c7:c1:d7:a9:4c:68:c5:91:b2:03: 26:53:b6:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUxMjAzMDIzMzMwWhcNMjUxMjEwMDIzMzMwWjAYMRYwFAYD VQQDEw02OTJmYTE3YS0xYWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw8VHt/+WyiXio7GhZmPTsCQAWhplehJ3EF0Vs24q+szvrWFxrEQG6DG/r4d yNSGnAVerXpyQZ9+2hsmZ3xltrBeJu1LDCE3ZrmKYYBi5qCNorFn8aYQpj3SCU4F YOMeNqx1Cz4nTA+bh6FAg7YhUKeBZ47QUcKVOmrtrOrhVUPDO5EkQYAwK4Rt4xOK 6hHjMN9wHyEi1iwcDJUMhACO6VLsrmjbJe++NFQE6JlhfGgh1FK7vAiJTQ89V4fh RPWw2T4OJVU5PcddECampKv92UIrhoUaC1mqotWWe15Z5CiI2rw2hGleqFLF4H4a VgxC/6RYm8UGQMj1+QrmGAZrhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOAyEGZ WadgSr0rgbI/JDlsPvENMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQYBpo4frvitDSKmswdMjqYpO8+9kkBrLZe1yiJumGAYR3jM97n0QQ Ih13pRTAaE/1zt9i8Tq9uFzoxk/YakHzWexD0yVBNc2uYGBXi1MDM7u1azfrE0vU F+wlU56ooHrIIiD+C/m0rTFwZlruJ+l+VuE9g4COZp56yU90iiZ68g0EOKCshQvD zInYSXSwOH3lDzp8PNGh7RtJK80XOdgkSvq28Jip4lT4gLoJqrPK0pkGsCiA2Hnu SI0BEZx+BxjawHL66HyW+0nKn0HttVRmq0vvu3amBQeSH9lIJId15F6e/comya4U gcz3IoUGaVxoGcfB16lMaMWRsgMmU7aQ -----END CERTIFICATE-----Generated at Wed Dec 3 14:44:16 2025 by rpki-client