This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: GeC8PXOIQUTV7UfOnYpnKTauzzrVR+OpEG8Lv1jpFdY= Subject key identifier: B1:F2:F6:46:37:3D:0E:3D:FD:3C:C9:4C:F1:52:EC:31:89:BE:99:44 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 101C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 0FF3 Signing time: Sat 24 Jan 2026 17:09:55 +0000 Manifest this update: Sat 24 Jan 2026 17:09:55 +0000 Manifest next update: Sat 31 Jan 2026 17:09:55 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: RkJaSeMiCFekRSjAaUWz5Up2TnvIfAWPDNflTWPw4SY=) 2: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: kt6+dcMSnt8HtFoNHoxve7SwNMn6XsQ5fmhhFuEOZOM=) 3: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: KmlW5cxQJtlnajXFs7j5PHn6wJjQG7ZZKRzUGo5l5KM=) 4: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: WopX8EPUj9ND6qcXFWft9CyuoZSX2+UxPu40b2aj+pc=) 5: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: S7XAN9hoPkMQD1dwIo9UheEK0CbHpWptDyxJHPNt49g=) 6: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY=) 7: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4124 (0x101c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Jan 24 17:09:55 2026 GMT Not After : Jan 31 17:09:55 2026 GMT Subject: CN=6974fce3-12d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:19:39:04:e6:a1:39:ef:20:c7:f7:a4:b9:22: b7:30:06:72:dc:91:e0:99:e2:ed:82:5d:4d:d1:1b: 17:84:4a:a3:dd:74:81:24:20:cf:f0:30:71:63:7e: ac:04:d8:4e:eb:72:89:b3:70:1f:f5:12:d2:a8:ab: 54:65:24:3f:d1:af:e8:b6:bf:2e:1d:aa:68:e1:60: b9:6b:10:ae:19:73:ea:62:c1:09:73:91:a7:66:23: 3e:97:21:b1:e0:d2:11:c5:a2:d4:d0:8a:98:59:c5: 32:f0:e2:f3:6e:74:fd:99:3e:b7:cc:c4:5f:30:98: 47:6d:28:8a:60:f6:33:5c:d3:33:73:bd:0b:42:26: c6:4d:06:56:43:ae:e1:80:57:e1:b5:e8:16:d9:f0: 52:2f:40:f1:48:84:0a:03:96:ab:35:2f:58:ff:f2: 81:84:fb:5e:df:69:ff:55:ca:71:cf:a4:8a:e9:d3: 51:9d:7c:2a:8f:16:b0:0b:b1:1f:23:f3:87:25:45: 0c:e6:31:39:bc:5c:b0:b8:d5:52:e9:09:77:95:67: 6f:7b:10:87:cd:42:54:15:ac:fc:04:84:f6:a3:c8: 84:65:0c:a1:23:cb:8f:da:07:b2:b0:70:01:d5:dd: 05:e4:18:53:3a:e2:a3:c7:37:17:b2:04:e0:ee:fa: f8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F2:F6:46:37:3D:0E:3D:FD:3C:C9:4C:F1:52:EC:31:89:BE:99:44 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:41:2f:e4:f5:ff:0a:9b:a9:9e:bb:9a:dc:ed:44:c0:15:fb: 2f:cb:8a:44:d3:30:b7:12:a5:81:e2:c1:58:5f:89:22:aa:6a: c9:c9:09:5c:b0:08:95:d8:ce:5c:83:e4:0b:b3:62:97:af:98: b0:90:3b:88:5a:c5:a7:0b:ff:7e:63:08:13:5b:38:8b:a3:83: 04:01:1e:40:53:43:d4:04:af:ec:d6:5e:66:d7:01:49:34:72: 4f:e5:50:96:01:c8:05:64:d0:73:38:5d:53:38:27:cf:85:32: 16:3e:b7:b3:ad:94:c2:1f:de:ed:0f:35:28:bb:77:1a:74:33: d5:ab:dc:dd:af:3d:18:c4:f2:5d:44:31:64:ea:f1:a3:e5:02: 6b:4e:97:8a:9a:b2:54:ea:91:43:7f:cb:f1:09:36:1b:cc:1e: 34:3c:48:fe:7d:f1:c3:99:59:d9:ff:74:da:49:7c:ef:4c:af: de:7c:a8:66:de:3b:4c:b8:b1:fc:bd:8b:53:32:44:11:eb:ad: 8e:ba:1b:a3:13:68:78:1f:3f:27:74:da:98:51:cf:c6:28:56: 44:c9:78:48:ad:f7:c8:97:d7:9c:3d:82:4c:23:17:1c:8f:c1: f5:36:39:7e:10:f2:d3:4f:80:cc:a8:73:bb:77:29:2a:93:1a: dc:c4:71:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjYwMTI0MTcwOTU1WhcNMjYwMTMxMTcwOTU1WjAYMRYwFAYD VQQDDA02OTc0ZmNlMy0xMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxk5BOahOe8gx/ekuSK3MAZy3JHgmeLtgl1N0RsXhEqj3XSBJCDP8DBxY36s BNhO63KJs3Af9RLSqKtUZSQ/0a/otr8uHapo4WC5axCuGXPqYsEJc5GnZiM+lyGx 4NIRxaLU0IqYWcUy8OLzbnT9mT63zMRfMJhHbSiKYPYzXNMzc70LQibGTQZWQ67h gFfhtegW2fBSL0DxSIQKA5arNS9Y//KBhPte32n/Vcpxz6SK6dNRnXwqjxawC7Ef I/OHJUUM5jE5vFywuNVS6Ql3lWdvexCHzUJUFaz8BIT2o8iEZQyhI8uP2geysHAB 1d0F5BhTOuKjxzcXsgTg7vr4gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHy9kY3 PQ49/TzJTPFS7DGJvplEMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlQS/k9f8Km6meu5rc7UTAFfsvy4pE0zC3EqWB4sFYX4kiqmrJyQlc sAiV2M5cg+QLs2KXr5iwkDuIWsWnC/9+YwgTWziLo4MEAR5AU0PUBK/s1l5m1wFJ NHJP5VCWAcgFZNBzOF1TOCfPhTIWPrezrZTCH97tDzUou3cadDPVq9zdrz0YxPJd RDFk6vGj5QJrTpeKmrJU6pFDf8vxCTYbzB40PEj+ffHDmVnZ/3TaSXzvTK/efKhm 3jtMuLH8vYtTMkQR662OuhujE2h4Hz8ndNqYUc/GKFZEyXhIrffIl9ecPYJMIxcc j8H1Njl+EPLTT4DMqHO7dykqkxrcxHHb -----END CERTIFICATE-----Generated at Sun Jan 25 08:19:21 2026 by rpki-client