This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: tAQXur1RzFGp+xgD+rcwy9KziTZOq1RkhP+VjRb6i+E= Subject key identifier: C3:41:0D:69:06:19:65:A4:A5:C7:07:2A:0F:54:2E:96:02:C8:3E:27 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0CD4 Signing time: Thu 04 Dec 2025 17:41:17 +0000 Manifest this update: Thu 04 Dec 2025 17:41:16 +0000 Manifest next update: Thu 11 Dec 2025 17:41:16 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: cxzaV/ULqXYjFzX2w/f5yl5gwnuN9D/SSEY49Y4dFec=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: DxAfEgav23qNw9acbrJvstjPzIpBZbMgGcy+koP3ZBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:41:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Dec 4 17:41:16 2025 GMT Not After : Dec 11 17:41:16 2025 GMT Subject: CN=6931c7bd-2d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:26:4d:c3:11:51:4c:f0:89:b4:ba:7e:98:2e: ec:a3:4d:8e:7c:52:36:1e:a9:65:63:a7:a1:14:f3: 73:94:5b:54:12:67:f5:61:df:ab:08:70:a6:6a:89: 82:ec:d1:6e:f7:a9:94:8a:82:b5:b9:9a:bf:c4:23: 0c:f1:d1:0a:47:58:df:de:f6:c6:e1:fc:2f:11:e7: df:a8:3e:58:d9:a0:29:29:bb:3e:e0:65:3f:c9:a9: 96:98:35:7f:f8:f8:28:36:62:1b:3c:94:3c:49:a9: 36:e9:3c:92:84:c3:8b:c1:9a:3f:2b:b9:de:90:d0: a1:b2:d2:2b:40:0b:f6:20:c9:a6:a3:c0:af:4d:ed: e4:fa:5e:3b:99:45:f8:96:fb:f2:cd:a3:00:cf:89: 21:2d:17:b8:6d:ed:b5:4c:a5:1b:80:f0:fa:90:67: 24:46:e5:18:a3:5a:5e:a5:52:33:40:07:79:c3:68: 5e:cb:fd:3e:5b:ae:1a:d5:46:40:71:8d:60:86:06: b9:6e:55:53:8e:6f:27:ae:ee:ff:7b:49:8f:88:1f: f4:36:36:f4:a7:71:aa:bc:23:10:2a:5f:a9:e4:b0: 3d:c2:12:3f:b1:64:88:f8:c7:81:a0:14:f4:c2:af: a2:92:26:27:e6:1b:9a:18:2c:d5:f3:f4:5a:6b:ac: 46:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:41:0D:69:06:19:65:A4:A5:C7:07:2A:0F:54:2E:96:02:C8:3E:27 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c3:2e:f0:57:e3:7a:a1:a8:0f:ec:5c:3d:36:bc:4d:35:09: 18:60:d1:18:e9:3f:ff:ca:12:cd:14:0b:56:1a:a0:63:39:68: 3a:30:fd:c0:ed:a6:80:6e:13:39:b1:68:a3:b4:85:62:e1:20: 81:71:90:a9:95:83:21:ec:e6:af:48:ef:91:e4:ed:4d:80:61: db:7a:75:8c:43:68:a4:a4:b4:46:79:86:b6:5b:f2:47:3a:68: a7:ac:2d:85:d8:bd:f5:ee:a3:73:ad:c5:d5:df:04:cc:7e:6f: 57:59:cd:9b:e9:e7:65:1e:9c:7a:c0:e5:7a:8e:78:7c:2c:74: 93:0e:16:0b:72:87:04:fa:c6:0b:9c:15:b4:bf:0e:24:6d:ef: e0:ef:76:63:04:29:66:bf:55:59:61:f4:89:b8:51:b5:7b:23: 28:07:68:c7:12:a9:2e:0c:81:90:6a:b1:9e:aa:48:14:28:82: 00:34:54:d2:a0:4b:c6:6c:c4:fd:66:14:e4:12:1a:ab:cb:48: f0:3e:91:05:98:c4:22:4b:97:14:b3:53:ed:7e:83:2d:26:e8: 12:f6:78:85:3a:cf:a5:c1:9b:05:50:74:4e:e9:a5:e9:05:40: 74:6a:0e:64:fb:52:88:83:47:2d:ce:c5:74:16:e8:29:13:52: 78:18:26:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUxMjA0MTc0MTE2WhcNMjUxMjExMTc0MTE2WjAYMRYwFAYD VQQDEw02OTMxYzdiZC0yZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyZNwxFRTPCJtLp+mC7so02OfFI2HqllY6ehFPNzlFtUEmf1Yd+rCHCmaomC 7NFu96mUioK1uZq/xCMM8dEKR1jf3vbG4fwvEeffqD5Y2aApKbs+4GU/yamWmDV/ +PgoNmIbPJQ8Sak26TyShMOLwZo/K7nekNChstIrQAv2IMmmo8CvTe3k+l47mUX4 lvvyzaMAz4khLRe4be21TKUbgPD6kGckRuUYo1pepVIzQAd5w2hey/0+W64a1UZA cY1ghga5blVTjm8nru7/e0mPiB/0Njb0p3GqvCMQKl+p5LA9whI/sWSI+MeBoBT0 wq+ikiYn5huaGCzV8/Raa6xGVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNBDWkG GWWkpccHKg9ULpYCyD4nMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnwy7wV+N6oagP7Fw9NrxNNQkYYNEY6T//yhLNFAtWGqBjOWg6MP3A 7aaAbhM5sWijtIVi4SCBcZCplYMh7OavSO+R5O1NgGHbenWMQ2ikpLRGeYa2W/JH OminrC2F2L317qNzrcXV3wTMfm9XWc2b6edlHpx6wOV6jnh8LHSTDhYLcocE+sYL nBW0vw4kbe/g73ZjBClmv1VZYfSJuFG1eyMoB2jHEqkuDIGQarGeqkgUKIIANFTS oEvGbMT9ZhTkEhqry0jwPpEFmMQiS5cUs1PtfoMtJugS9niFOs+lwZsFUHRO6aXp BUB0ag5k+1KIg0ctzsV0FugpE1J4GCYy -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:43 2025 by rpki-client