This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: codzhUw5R5iTEtNQhdSijjKzHlexpvUWtC5WbA5oZRs= Subject key identifier: CF:52:42:72:A5:09:A2:A6:C4:A3:48:A2:ED:95:43:86:D7:CD:A5:02 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 1002 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0FD9 Signing time: Thu 04 Dec 2025 17:04:31 +0000 Manifest this update: Thu 04 Dec 2025 17:04:31 +0000 Manifest next update: Thu 11 Dec 2025 17:04:31 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: iHJvxt/1wHp0Q75SynUBf/6mNMEx+ZkDVJlM75tyKgI=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 3: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 6: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 7: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4098 (0x1002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Dec 4 17:04:31 2025 GMT Not After : Dec 11 17:04:31 2025 GMT Subject: CN=6931bf1f-2e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7b:8d:c2:3b:6b:13:28:3c:4d:c9:74:60:9a: 58:96:50:12:6f:09:60:90:37:2e:1d:9a:cb:8c:aa: ca:78:81:52:e8:40:95:a6:6d:24:d1:71:07:a3:49: 3f:8f:c6:0a:7c:ba:1c:b8:cf:36:c2:fb:c1:87:f2: c4:72:8a:4b:e4:8d:7c:f1:82:b1:ba:64:8e:56:7a: 1c:19:33:e8:cb:fb:73:e2:42:e1:e5:d1:8b:75:73: 75:74:8a:ab:13:8b:9a:7d:a6:3d:57:b7:a2:2b:1b: eb:b7:b0:1f:6f:71:6f:23:2f:86:e5:7c:0b:2e:5e: ef:6b:4a:a1:30:58:1a:b8:d7:87:46:30:12:83:3f: 8d:03:b9:18:b0:5d:34:4b:e8:c1:6a:22:27:9a:90: c7:49:92:67:9f:40:58:ae:5a:6c:e8:dd:9d:b9:21: 03:04:74:c5:d4:2b:2c:d2:a0:4d:1c:68:b2:bb:9e: d1:80:7e:03:e2:1e:e4:dc:14:77:cb:01:f8:48:b8: 9b:10:4f:99:e5:6e:11:b7:77:f5:9f:bf:8a:86:21: 89:a7:d6:e3:fc:1b:b4:8a:a3:7f:ee:19:55:39:5e: a7:9e:41:be:97:db:77:bf:c6:32:0b:a0:ad:46:32: ee:55:2d:8f:8b:4e:85:1c:2b:7a:d3:38:af:07:ba: 6a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:52:42:72:A5:09:A2:A6:C4:A3:48:A2:ED:95:43:86:D7:CD:A5:02 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:4d:76:45:ff:36:ad:54:99:70:0d:5e:29:27:c9:8c:f0:36: c1:dd:25:e4:77:b2:e4:62:28:9e:6e:4f:77:3e:d9:9d:ac:2c: 64:b3:e8:78:e8:e2:16:5d:64:c6:f4:c5:5b:a7:fd:c8:b5:38: 08:11:ed:6b:3c:10:98:27:d4:02:a5:ac:31:76:0f:bb:c1:d8: c8:78:26:cf:ed:d7:97:23:83:60:d6:eb:f3:e9:16:13:11:c3: 9a:23:d3:7f:51:8b:de:00:37:3b:4f:7c:89:02:8b:7d:b9:fc: 27:92:b5:84:04:2d:d2:b0:a1:67:09:e2:d7:49:7a:c9:4a:55: 26:a4:e7:50:01:4f:03:e8:f1:03:67:94:38:f7:99:fd:ba:40: ae:b4:3b:04:32:52:2d:03:61:09:04:73:4e:e4:82:a6:b1:d3: 61:e7:b2:bd:3d:93:fb:9b:c1:ea:97:e9:6d:6f:70:3a:0c:ed: 3c:d8:a2:6c:a0:12:65:b0:f7:14:76:bd:b7:e0:0e:98:9d:8f: f7:5d:65:27:27:95:d6:82:7d:4b:70:10:48:93:e7:d7:8e:5e: 21:45:52:8a:17:8f:4a:88:c2:96:a1:b0:92:ad:c0:0d:de:ec: 2b:3c:6a:22:e1:82:65:65:6b:0d:03:82:aa:51:e9:be:6f:36: 7a:b1:6e:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUxMjA0MTcwNDMxWhcNMjUxMjExMTcwNDMxWjAYMRYwFAYD VQQDEw02OTMxYmYxZi0yZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHuNwjtrEyg8Tcl0YJpYllASbwlgkDcuHZrLjKrKeIFS6ECVpm0k0XEHo0k/ j8YKfLocuM82wvvBh/LEcopL5I188YKxumSOVnocGTPoy/tz4kLh5dGLdXN1dIqr E4uafaY9V7eiKxvrt7Afb3FvIy+G5XwLLl7va0qhMFgauNeHRjASgz+NA7kYsF00 S+jBaiInmpDHSZJnn0BYrlps6N2duSEDBHTF1Css0qBNHGiyu57RgH4D4h7k3BR3 ywH4SLibEE+Z5W4Rt3f1n7+KhiGJp9bj/Bu0iqN/7hlVOV6nnkG+l9t3v8YyC6Ct RjLuVS2Pi06FHCt60zivB7pqnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9SQnKl CaKmxKNIou2VQ4bXzaUCMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyTXZF/zatVJlwDV4pJ8mM8DbB3SXkd7LkYiiebk93PtmdrCxks+h4 6OIWXWTG9MVbp/3ItTgIEe1rPBCYJ9QCpawxdg+7wdjIeCbP7deXI4Ng1uvz6RYT EcOaI9N/UYveADc7T3yJAot9ufwnkrWEBC3SsKFnCeLXSXrJSlUmpOdQAU8D6PED Z5Q495n9ukCutDsEMlItA2EJBHNO5IKmsdNh57K9PZP7m8Hql+ltb3A6DO082KJs oBJlsPcUdr234A6YnY/3XWUnJ5XWgn1LcBBIk+fXjl4hRVKKF49KiMKWobCSrcAN 3uwrPGoi4YJlZWsNA4KqUem+bzZ6sW5I -----END CERTIFICATE-----Generated at Sat Dec 6 18:34:08 2025 by rpki-client