This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: Jy4wG+jov70+HkEM++gWVX9iWCsNEuJ5TS2w5FH8alk= Subject key identifier: 81:8D:7B:C1:1F:3A:05:68:CF:9B:26:4D:DB:57:82:F7:51:A1:0B:F7 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: F1 Signing time: Sun 25 Jan 2026 04:40:12 +0000 Manifest this update: Sun 25 Jan 2026 04:40:12 +0000 Manifest next update: Sun 01 Feb 2026 04:40:12 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: EOpmgeY+U5xgTUn4//o/02WLVtW/mX0/EdkPPjoGcSU=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: pGqkeCwicqjTqpVAd+nv6sW9bSd6/F8SqrVl+2o3VCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Jan 25 04:40:12 2026 GMT Not After : Feb 1 04:40:12 2026 GMT Subject: CN=69759eac-dfc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ae:e6:29:d7:03:93:dc:7a:96:c3:7f:dd:ba: 6d:21:dc:af:91:7d:af:4a:55:c1:06:32:d3:fd:26: f1:8d:25:83:07:eb:f9:b9:a8:73:01:bf:3d:b3:e3: 80:bc:55:23:b6:4e:57:b7:04:51:c0:77:d3:10:f7: 0e:6e:85:8f:4d:b9:4e:9c:5f:f6:9c:85:78:c7:05: 0d:34:d7:b3:bf:35:9c:05:2d:a8:a6:9c:1d:6d:1b: 78:2b:47:94:7a:70:65:95:00:c5:70:32:8b:c4:13: 44:1a:d4:de:7b:16:37:85:5c:c0:0a:6b:dc:ad:4f: 69:b8:93:ac:03:05:a4:91:a8:31:f2:83:d4:ed:79: 9d:f5:88:40:07:25:c0:a5:59:af:ed:db:9f:69:6f: 3c:91:b8:8d:3c:0f:9f:29:da:45:dd:89:63:8a:f3: 0f:6a:06:44:6e:c5:c6:f6:a1:e8:09:17:49:af:a1: 0f:63:c6:45:88:05:47:e3:9c:0a:2a:bd:6f:b6:7a: ff:ba:f2:f7:75:38:30:a4:16:1a:43:74:d0:da:98: 4e:8b:b3:5d:cb:0e:d5:cc:ad:b1:a4:e5:e3:1e:0e: 02:be:25:1d:87:28:41:21:d2:c4:40:c5:ef:c9:60: 9f:19:a8:bb:50:35:5b:d5:d2:16:ac:63:06:1d:48: 8c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:8D:7B:C1:1F:3A:05:68:CF:9B:26:4D:DB:57:82:F7:51:A1:0B:F7 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:fc:80:ed:eb:6c:4b:6f:f8:4c:42:bc:09:17:7a:b1:0a:96: 2d:51:4c:a5:d1:96:76:50:fc:ba:8b:80:b8:43:85:28:b4:ce: f1:69:ca:29:e2:35:5b:a6:e4:5f:9c:08:33:56:dd:9d:bd:96: 57:ec:88:29:19:c9:79:83:0a:58:0d:63:05:d3:30:dd:1a:5e: 23:12:01:1e:c1:2e:fe:33:39:3f:64:20:18:35:27:8f:4d:65: 30:89:fc:28:82:a0:8e:80:44:f7:71:43:56:41:4a:7e:01:82: 9c:70:52:9a:ac:ac:96:6e:65:83:4a:ed:ad:8e:80:07:30:b1: c3:e5:28:cf:3f:42:2a:b8:c1:2c:48:ff:81:81:8b:62:9f:7a: de:6a:9b:5a:05:f4:f0:56:6e:52:4b:f7:1e:50:3c:3e:3d:3b: 04:69:87:d2:40:4c:29:fd:b2:a7:b1:14:65:6c:d6:da:cd:42: 93:05:45:b0:48:4e:95:8e:59:c5:4b:10:14:0f:cf:cd:12:ea: b8:fc:82:30:58:49:58:e5:8f:74:6a:e5:47:f8:f3:f9:a7:b7: 86:51:fe:4b:20:86:0b:90:5d:d9:3a:33:6a:ee:41:5c:10:d2: c1:64:32:a4:25:d4:56:a4:0d:71:7e:cf:ed:55:79:94:ac:ca: 67:4c:76:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjYwMTI1MDQ0MDEyWhcNMjYwMjAxMDQ0MDEyWjAYMRYwFAYD VQQDDA02OTc1OWVhYy1kZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsa7mKdcDk9x6lsN/3bptIdyvkX2vSlXBBjLT/SbxjSWDB+v5uahzAb89s+OA vFUjtk5XtwRRwHfTEPcOboWPTblOnF/2nIV4xwUNNNezvzWcBS2oppwdbRt4K0eU enBllQDFcDKLxBNEGtTeexY3hVzACmvcrU9puJOsAwWkkagx8oPU7Xmd9YhAByXA pVmv7dufaW88kbiNPA+fKdpF3YljivMPagZEbsXG9qHoCRdJr6EPY8ZFiAVH45wK Kr1vtnr/uvL3dTgwpBYaQ3TQ2phOi7Ndyw7VzK2xpOXjHg4CviUdhyhBIdLEQMXv yWCfGai7UDVb1dIWrGMGHUiMRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGNe8Ef OgVoz5smTdtXgvdRoQv3MB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5/IDt62xLb/hMQrwJF3qxCpYtUUyl0ZZ2UPy6i4C4Q4UotM7xacop 4jVbpuRfnAgzVt2dvZZX7IgpGcl5gwpYDWMF0zDdGl4jEgEewS7+Mzk/ZCAYNSeP TWUwifwogqCOgET3cUNWQUp+AYKccFKarKyWbmWDSu2tjoAHMLHD5SjPP0IquMEs SP+BgYtin3reaptaBfTwVm5SS/ceUDw+PTsEaYfSQEwp/bKnsRRlbNbazUKTBUWw SE6VjlnFSxAUD8/NEuq4/IIwWElY5Y90auVH+PP5p7eGUf5LIIYLkF3ZOjNq7kFc ENLBZDKkJdRWpA1xfs/tVXmUrMpnTHZ1 -----END CERTIFICATE-----Generated at Mon Jan 26 01:12:26 2026 by rpki-client