This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: 1HfaItR+qcmFYZcgcLQWJPFHHihHPbi/yQUgq0Xqhuw= Subject key identifier: 4E:5C:39:3D:10:6A:E6:0F:00:B0:37:CB:AE:AD:AA:38:8A:C7:DA:76 Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0EC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0EB9 Signing time: Sat 24 Jan 2026 17:21:23 +0000 Manifest this update: Sat 24 Jan 2026 17:21:23 +0000 Manifest next update: Sat 31 Jan 2026 17:21:23 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: BlaVk+e6oFHCVOVijV+oxTB9pbnWk5TwAYJK/wmoOjY=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: MmZvnPTLEUK2uOO8LldttqheyhLmSNsa1D7UmikJt9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3783 (0xec7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743, serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: Jan 24 17:21:23 2026 GMT Not After : Jan 31 17:21:23 2026 GMT Subject: CN=6974ff93-fce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d0:58:10:b2:4d:ed:c5:1a:60:6a:2b:ee:ef: 06:f0:b0:03:0b:9f:00:e6:47:13:41:07:6c:b6:32: 1a:7e:85:8f:2e:5e:5d:93:e5:f0:3d:8c:b5:be:b6: 3a:b5:28:53:a1:80:fd:a2:94:e3:2d:d4:33:3c:a4: 2a:e0:e2:63:b1:f2:6e:a2:a4:39:f4:89:4c:d6:2d: dd:7d:e1:bb:2a:ea:56:1f:cd:18:02:df:3c:f4:c5: c0:96:90:7d:e8:83:d4:ec:e9:fe:af:08:c0:e4:d9: 9a:ff:70:a9:36:e6:24:e4:a3:07:0b:fb:95:2c:71: 02:dc:a6:73:58:81:6b:06:16:7a:53:15:cf:e8:6f: dd:cc:cd:8a:94:58:01:ae:63:77:38:4a:e2:0d:46: 5b:33:84:84:8c:64:7e:cd:f6:46:f2:40:18:d9:a8: 08:4a:74:20:6c:41:6d:9a:05:e7:e1:7a:bc:99:28: 60:26:44:3c:a0:8b:71:df:c0:eb:61:f9:7d:64:47: 81:42:63:70:e3:4f:0a:8a:8e:e2:c2:1d:c4:5b:1c: 68:66:fd:fb:cd:77:fa:91:e4:d9:d2:10:5e:62:cb: c1:a3:27:8a:4e:e1:8b:0f:4c:d9:4f:fb:6e:c5:6b: 10:bc:87:f8:0c:07:c0:b2:95:5e:af:da:0a:83:3c: bb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5C:39:3D:10:6A:E6:0F:00:B0:37:CB:AE:AD:AA:38:8A:C7:DA:76 X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:41:10:5c:7e:b2:25:4c:d6:92:51:fa:d2:f4:b2:38:ab:fb: dd:9b:93:8d:fd:8e:5e:fc:15:13:80:52:bb:69:05:ac:de:b1: 70:05:89:3a:f4:d1:42:bd:d5:e6:ca:e8:b6:73:e6:1f:97:b1: 18:7f:76:06:d5:5c:0b:58:4f:c8:fd:c4:c1:c3:49:3b:b5:8e: 7f:3d:f8:99:03:d4:c0:78:75:79:5b:cc:6b:4c:33:15:12:30: 9a:f4:3d:39:4d:15:a6:ce:16:a9:ba:5a:a9:d9:d6:bf:4a:f9: 48:e3:12:9e:29:59:2c:0f:8a:21:cd:9b:4e:81:de:db:60:56: de:1f:2c:25:14:b5:d8:7d:17:b2:58:b6:ab:75:77:0f:32:ea: 1c:f8:ad:50:87:7d:91:f5:3b:c0:a8:c4:ea:b4:53:01:06:d9: 26:b1:27:f6:73:09:b3:43:82:89:db:28:ed:51:a9:3f:3a:e2: 0b:12:cc:1a:3b:45:c8:e7:c3:f2:df:8f:86:09:a3:44:cb:d4: 3c:db:29:16:70:1e:ea:81:35:a7:51:7c:99:2d:9f:98:75:c0: 43:56:67:3e:73:7c:bc:0a:37:68:6b:66:f3:9f:1d:bb:fa:eb: c1:2b:01:10:43:bf:13:d0:6d:20:a3:f7:ff:8a:56:99:63:e8: c2:b9:16:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjYwMTI0MTcyMTIzWhcNMjYwMTMxMTcyMTIzWjAYMRYwFAYD VQQDDA02OTc0ZmY5My1mY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NBYELJN7cUaYGor7u8G8LADC58A5kcTQQdstjIafoWPLl5dk+XwPYy1vrY6 tShToYD9opTjLdQzPKQq4OJjsfJuoqQ59IlM1i3dfeG7KupWH80YAt889MXAlpB9 6IPU7On+rwjA5Nma/3CpNuYk5KMHC/uVLHEC3KZzWIFrBhZ6UxXP6G/dzM2KlFgB rmN3OEriDUZbM4SEjGR+zfZG8kAY2agISnQgbEFtmgXn4Xq8mShgJkQ8oItx38Dr Yfl9ZEeBQmNw408Kio7iwh3EWxxoZv37zXf6keTZ0hBeYsvBoyeKTuGLD0zZT/tu xWsQvIf4DAfAspVer9oKgzy7AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5cOT0Q auYPALA3y66tqjiKx9p2MB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdQRBcfrIlTNaSUfrS9LI4q/vdm5ON/Y5e/BUTgFK7aQWs3rFwBYk6 9NFCvdXmyui2c+Yfl7EYf3YG1VwLWE/I/cTBw0k7tY5/PfiZA9TAeHV5W8xrTDMV EjCa9D05TRWmzhapulqp2da/SvlI4xKeKVksD4ohzZtOgd7bYFbeHywlFLXYfRey WLardXcPMuoc+K1Qh32R9TvAqMTqtFMBBtkmsSf2cwmzQ4KJ2yjtUak/OuILEswa O0XI58Py34+GCaNEy9Q82ykWcB7qgTWnUXyZLZ+YdcBDVmc+c3y8Cjdoa2bznx27 +uvBKwEQQ78T0G0go/f/ilaZY+jCuRYX -----END CERTIFICATE-----Generated at Sun Jan 25 15:33:15 2026 by rpki-client