This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: zjcknp1DOHUm++Qdbo4V+prRq+bFjJAL1cZH4It2avQ= Subject key identifier: 95:8E:76:B5:12:7D:E1:66:0F:79:39:5A:00:CB:72:DE:94:49:81:A5 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 15 Signing time: Fri 23 Jan 2026 06:58:55 +0000 Manifest this update: Fri 23 Jan 2026 06:58:54 +0000 Manifest next update: Fri 30 Jan 2026 06:58:54 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: gEsUhLC+O7p7oxM5fKlgaAR+zqlKfMT9/wMyh8aNv/E=) 2: 86A83D10DA3E11F09B1225578ED3641D.roa (hash: cYo/bv4qOhqtc2EXJ3pnpcx0v1pGJ4KX6dqhgSn3dVg=) 3: 87421F34DA3E11F09B1225578ED3641D.roa (hash: 8L4tAPrDqGgfmL4XivEBXxkIrTLCf+4aYWjfcHqE358=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Jan 23 06:58:54 2026 GMT Not After : Jan 30 06:58:54 2026 GMT Subject: CN=69731c2e-a36f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:05:a6:d0:b2:68:9c:b9:1d:84:2c:01:cf:57: 0f:52:c7:4e:0b:16:e8:2f:4e:09:2b:b3:27:66:be: 84:15:3c:d7:f3:df:c8:01:dc:6d:14:e2:a3:51:94: a7:6b:c5:58:0e:0f:1d:7d:d3:63:9c:82:0c:50:46: 2e:0a:ea:c6:b2:1d:a3:47:aa:95:ff:14:53:56:03: cc:b8:62:61:d4:98:4c:f7:74:11:4f:b5:94:14:30: 1d:e7:ed:ac:45:e6:f4:15:4d:bc:68:0d:b8:bb:b9: ba:63:a2:0c:d0:76:a4:1f:52:b0:52:08:5a:df:f9: a3:47:54:7c:1c:9a:b3:cc:ea:a5:f5:e6:e8:35:04: 6e:1e:a1:4a:3b:27:af:36:19:d0:f4:3b:9e:e9:ef: fe:4e:9b:aa:93:62:b9:1d:b5:ef:a2:74:d1:cc:65: d3:ae:28:24:32:5e:87:5d:4f:bf:ea:4f:a8:0b:d6: 42:77:c6:c6:e6:cc:57:fc:7f:2a:5d:f3:5d:7b:2d: d0:87:88:03:d2:f4:c0:33:4b:6d:73:ea:f8:ab:b1: 3f:f5:bf:09:82:ec:13:e6:e6:04:8a:6d:a3:9b:24: 64:de:2d:4f:72:2a:b5:43:c2:9b:ab:e3:25:12:29: c0:6f:f8:35:29:4f:12:03:67:d7:ea:70:44:9c:86: 24:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8E:76:B5:12:7D:E1:66:0F:79:39:5A:00:CB:72:DE:94:49:81:A5 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6b:19:84:72:71:4b:50:f0:00:2b:44:4e:5c:38:20:bb:8e: 99:c1:bc:e8:0c:38:46:04:85:9c:97:2b:6e:84:ab:22:db:da: 42:03:bf:95:f0:e7:91:08:76:b7:3a:ac:c0:9f:4b:7a:a0:b3: 24:8d:ee:78:6f:33:58:5f:9c:55:a4:da:9f:de:55:e6:ee:a7: e0:a5:ae:bc:ac:61:85:80:bc:9a:60:0e:c0:c3:05:3c:c5:87: 7b:bc:7e:01:cf:f2:4b:18:2b:a0:3c:1d:53:8c:00:8e:99:dc: 71:c5:04:e2:8f:c7:e6:ea:be:f3:1c:9b:ce:d5:bd:cd:08:06: 51:9a:36:b2:5c:95:a5:60:81:37:5a:b7:14:1a:bd:44:2b:ec: d7:b4:c5:c2:b4:f4:27:9c:3b:25:10:ca:44:25:3a:7a:b8:78: 33:6e:72:b1:89:06:c1:8d:3e:a6:83:49:79:91:ff:7d:65:e4: 8d:1a:b9:21:0b:98:22:e3:1e:70:c6:1b:1a:6c:d8:4e:12:22: a0:64:87:1e:ef:8c:0c:f1:e7:a0:7e:32:1c:ea:72:ef:d2:1e: 52:85:3e:ba:38:94:e4:f9:a3:4f:bc:c8:90:42:98:9c:f6:f6: ab:77:a0:88:35:77:57:9f:5a:6f:bd:79:66:6a:86:25:8c:c0: d6:67:7d:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAxMjMwNjU4NTRaFw0yNjAxMzAwNjU4NTRaMBgxFjAUBgNV BAMMDTY5NzMxYzJlLWEzNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCBabQsmicuR2ELAHPVw9Sx04LFugvTgkrsydmvoQVPNfz38gB3G0U4qNRlKdr xVgODx1902OcggxQRi4K6sayHaNHqpX/FFNWA8y4YmHUmEz3dBFPtZQUMB3n7axF 5vQVTbxoDbi7ubpjogzQdqQfUrBSCFrf+aNHVHwcmrPM6qX15ug1BG4eoUo7J682 GdD0O57p7/5Om6qTYrkdte+idNHMZdOuKCQyXoddT7/qT6gL1kJ3xsbmzFf8fypd 8117LdCHiAPS9MAzS21z6virsT/1vwmC7BPm5gSKbaObJGTeLU9yKrVDwpur4yUS KcBv+DUpTxIDZ9fqcESchiRpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlY52tRJ9 4WYPeTlaAMty3pRJgaUwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABdrGYRycUtQ8AArRE5cOCC7jpnBvOgMOEYEhZyXK26EqyLb2kIDv5Xw 55EIdrc6rMCfS3qgsySN7nhvM1hfnFWk2p/eVebup+ClrrysYYWAvJpgDsDDBTzF h3u8fgHP8ksYK6A8HVOMAI6Z3HHFBOKPx+bqvvMcm87Vvc0IBlGaNrJclaVggTda txQavUQr7Ne0xcK09CecOyUQykQlOnq4eDNucrGJBsGNPqaDSXmR/31l5I0auSEL mCLjHnDGGxps2E4SIqBkhx7vjAzx56B+Mhzqcu/SHlKFPro4lOT5o0+8yJBCmJz2 9qt3oIg1d1efWm+9eWZqhiWMwNZnfXc= -----END CERTIFICATE-----Generated at Sun Jan 25 07:26:16 2026 by rpki-client