This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: /NhCfml61ZGdOUillkTzYqIO+DzLviRZ79g6OHKRdqo= Subject key identifier: A5:D2:F3:51:28:8B:6B:49:4D:D5:62:98:E7:EB:4E:4B:EF:F9:69:71 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 01A0 Signing time: Sun 25 Jan 2026 02:39:00 +0000 Manifest this update: Sun 25 Jan 2026 02:39:00 +0000 Manifest next update: Sun 01 Feb 2026 02:39:00 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: aMGUib88fnZjERXr4eBZTZTiaiA0FcRq6S82zkCAFMQ=) 2: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: GYYAxCU47qOQPGRshhcyGpuUvaXO8+Ciqhml4LnWXo0=) 3: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: 0zk70ij/4hc+RQU97A0NsYTnIo4u8ElR/zwNhC6BFYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Jan 25 02:39:00 2026 GMT Not After : Feb 1 02:39:00 2026 GMT Subject: CN=69758244-caff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0a:8d:ab:29:11:6e:0f:e0:0e:0c:46:58:81: 4e:b6:1f:4b:f2:fa:b6:3c:c2:97:c8:d5:71:6c:44: 7c:f5:7b:b0:76:62:97:0c:83:3a:f7:68:47:b0:7e: 5e:54:2a:e4:9c:f9:da:40:a7:9c:29:34:75:bc:73: e7:2f:6b:d9:04:e9:2d:a9:cf:21:70:e8:c5:5c:e7: ce:f9:45:41:4b:0b:a3:95:04:51:54:61:f0:6f:50: 99:93:c4:82:4f:c7:2e:7c:7f:ee:df:f7:14:f8:f8: a7:71:83:01:c5:d2:0c:18:d4:83:a5:c5:cb:0c:8f: 6f:19:de:df:da:84:63:25:71:2a:01:c4:c8:82:d9: 05:b8:7d:57:c6:a6:f8:f5:5a:d7:04:eb:3a:1f:ae: 94:78:97:8f:44:25:11:2a:7d:a0:82:41:c8:66:d2: 3a:32:43:96:91:b4:52:c2:6e:9b:08:0c:7c:8e:00: c2:0a:a0:e4:74:cb:0e:09:33:12:55:04:a6:00:d9: 34:c5:55:5a:54:2d:99:d5:20:e7:52:f7:be:cb:1e: ef:80:ab:a5:46:19:8e:83:0d:89:44:68:6a:24:ee: a8:9e:99:b2:e4:dc:da:5f:93:86:a7:4b:68:4a:85: b7:95:32:7f:53:17:e1:a8:7c:04:9a:61:e5:56:80: 0b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D2:F3:51:28:8B:6B:49:4D:D5:62:98:E7:EB:4E:4B:EF:F9:69:71 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:71:d3:d9:9b:9d:57:14:4c:dc:3e:cc:c7:cd:d0:13:3f:a2: 28:95:78:5f:08:e9:50:91:c5:06:28:ca:ff:d7:ba:fb:57:59: 55:c2:83:2f:70:42:5d:df:2f:6e:4b:a2:02:46:4b:af:fa:5d: 4f:39:6b:12:25:42:92:2b:2b:9d:b3:8d:98:6a:4b:72:6c:ed: 4f:d8:6a:51:43:c4:44:29:09:4c:30:d4:fe:c4:55:7c:37:ac: 6f:40:4c:d3:05:a9:c0:d1:98:7a:29:87:33:cf:75:77:25:9c: a9:f3:b8:7e:0c:35:b9:30:7d:02:c0:08:88:1f:73:eb:ac:14: 1b:92:eb:b5:52:04:33:69:05:15:52:3b:b6:3a:11:c8:d3:10: f4:cd:1e:5a:0d:90:56:b4:3f:35:b6:80:53:5a:39:b9:89:c1: a3:f8:05:db:c3:38:c0:42:fc:6e:47:eb:09:89:05:77:39:ef: 62:5b:36:de:46:db:9c:31:86:85:0a:6a:af:4f:dc:14:79:b0: 53:5c:30:dd:f6:47:7b:17:5b:7d:9c:5d:50:d1:7c:1f:a5:0a: a2:da:f6:b4:65:cf:65:cf:57:93:ca:c1:fd:36:64:d6:e7:8a: c3:23:b3:5f:b1:af:66:6d:b9:9e:30:55:78:1e:55:62:9a:ff: 7a:cc:bb:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjYwMTI1MDIzOTAwWhcNMjYwMjAxMDIzOTAwWjAYMRYwFAYD VQQDDA02OTc1ODI0NC1jYWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gqNqykRbg/gDgxGWIFOth9L8vq2PMKXyNVxbER89XuwdmKXDIM692hHsH5e VCrknPnaQKecKTR1vHPnL2vZBOktqc8hcOjFXOfO+UVBSwujlQRRVGHwb1CZk8SC T8cufH/u3/cU+PincYMBxdIMGNSDpcXLDI9vGd7f2oRjJXEqAcTIgtkFuH1Xxqb4 9VrXBOs6H66UeJePRCURKn2ggkHIZtI6MkOWkbRSwm6bCAx8jgDCCqDkdMsOCTMS VQSmANk0xVVaVC2Z1SDnUve+yx7vgKulRhmOgw2JRGhqJO6onpmy5NzaX5OGp0to SoW3lTJ/UxfhqHwEmmHlVoALHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXS81Eo i2tJTdVimOfrTkvv+WlxMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvcdPZm51XFEzcPszHzdATP6IolXhfCOlQkcUGKMr/17r7V1lVwoMv cEJd3y9uS6ICRkuv+l1POWsSJUKSKyuds42YaktybO1P2GpRQ8REKQlMMNT+xFV8 N6xvQEzTBanA0Zh6KYczz3V3JZyp87h+DDW5MH0CwAiIH3PrrBQbkuu1UgQzaQUV Uju2OhHI0xD0zR5aDZBWtD81toBTWjm5icGj+AXbwzjAQvxuR+sJiQV3Oe9iWzbe RtucMYaFCmqvT9wUebBTXDDd9kd7F1t9nF1Q0XwfpQqi2va0Zc9lz1eTysH9NmTW 54rDI7Nfsa9mbbmeMFV4HlVimv96zLuy -----END CERTIFICATE-----Generated at Sun Jan 25 18:37:24 2026 by rpki-client