This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: PlPA9pavSpGFPTrkwU9T0Z4gj0UyQdBH1FSizdAam10= Subject key identifier: 03:F3:73:E4:E7:29:0C:57:72:3C:AF:4D:06:67:94:41:0E:C8:BD:14 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 06EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 06E4 Signing time: Sat 24 Jan 2026 21:23:08 +0000 Manifest this update: Sat 24 Jan 2026 21:23:07 +0000 Manifest next update: Sat 31 Jan 2026 21:23:07 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: tM0HwoJ1fnKgeAqqTKLS1CcKx6lsem2VxXfBdmnjJRY=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: nQ2JLGKaP47ih5m9qTo7j8aG05in8F4XWfknPmuOpgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Jan 24 21:23:07 2026 GMT Not After : Jan 31 21:23:07 2026 GMT Subject: CN=6975383c-0d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:80:76:63:64:ad:c9:40:e4:6f:a1:97:dc:52: 69:ed:bb:49:8f:6b:3a:78:00:6f:3d:22:e8:ee:ef: c1:98:26:17:56:56:c9:08:29:7f:95:70:a2:ca:41: 28:d9:c3:6a:ea:73:24:65:2a:6e:12:a3:ce:f7:3f: 5b:bd:80:a1:bb:f9:86:32:28:85:9d:3c:6a:ae:b5: de:5e:0c:14:f5:20:b5:df:c4:6c:dd:16:59:6e:e7: c4:9e:8f:60:e4:be:00:56:a6:f1:50:88:78:32:ba: a3:5c:a6:86:09:d3:3d:a5:53:7f:7e:6e:cc:8a:f8: 1e:81:02:5b:04:65:f6:44:b3:3c:4e:7c:c0:3d:36: de:17:61:d8:dd:18:98:82:21:14:49:39:cc:f1:fd: 52:5e:01:25:35:11:ca:f4:f0:77:00:c5:ff:3e:a4: 49:b6:bf:4b:da:8f:0c:23:4d:f5:38:66:55:f0:f9: ac:b6:63:bf:db:33:e4:38:3d:21:3f:c8:a7:8e:3b: 2c:fa:b5:19:62:76:49:08:3d:5d:18:e1:2a:85:ac: f2:f5:b2:e6:e4:f7:d3:df:6b:73:25:df:f0:b8:d5: 31:82:0b:7a:2b:5c:c2:f0:b1:60:02:2e:c1:98:b3: d9:be:29:2e:79:ee:f9:61:4d:ec:00:5b:d0:b6:40: 42:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F3:73:E4:E7:29:0C:57:72:3C:AF:4D:06:67:94:41:0E:C8:BD:14 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:a9:37:cf:b7:c5:ed:b6:9b:ca:1a:95:53:57:16:67:48:87: d9:c4:e0:94:fe:55:ef:e2:08:bb:65:cf:ff:73:46:85:66:86: 08:25:82:00:c1:19:78:8e:d3:3d:08:0a:1d:b3:cf:bf:4e:e7: a1:15:e7:ae:e7:92:13:d4:21:4c:12:fe:b2:8b:e3:1f:8b:83: e3:52:2c:23:b9:ba:21:94:3c:df:3c:65:b8:67:17:bc:f7:bc: d4:fc:13:1f:c9:59:65:91:3a:67:1c:ef:35:33:d6:a2:65:ea: ed:0b:9d:77:39:2c:96:2d:55:8f:6d:ed:c1:26:51:78:a6:32: 17:db:a7:cd:8f:40:03:e8:24:5a:40:a8:ad:64:ff:7c:00:a9: 5b:62:2e:c0:a4:90:31:6b:c3:ca:ff:ef:96:d0:e2:2f:ac:0b: 46:d2:5e:64:ab:4c:58:79:87:77:55:ae:ba:75:ed:1f:45:03: cc:a4:6b:e0:72:5e:dd:09:c0:e3:fb:3b:6e:b4:1c:7d:bb:46: 15:2a:d2:da:d1:60:08:46:b3:3f:f9:3d:39:1b:93:d7:81:59: 3d:62:26:88:97:7b:6f:57:71:e5:99:b9:d6:cd:87:d1:19:ac: 9a:b2:b3:b1:d4:25:3c:d7:80:03:cd:63:aa:56:34:f3:0f:1f: 07:79:67:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjYwMTI0MjEyMzA3WhcNMjYwMTMxMjEyMzA3WjAYMRYwFAYD VQQDDA02OTc1MzgzYy0wZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi4B2Y2StyUDkb6GX3FJp7btJj2s6eABvPSLo7u/BmCYXVlbJCCl/lXCiykEo 2cNq6nMkZSpuEqPO9z9bvYChu/mGMiiFnTxqrrXeXgwU9SC138Rs3RZZbufEno9g 5L4AVqbxUIh4MrqjXKaGCdM9pVN/fm7MivgegQJbBGX2RLM8TnzAPTbeF2HY3RiY giEUSTnM8f1SXgElNRHK9PB3AMX/PqRJtr9L2o8MI031OGZV8PmstmO/2zPkOD0h P8injjss+rUZYnZJCD1dGOEqhazy9bLm5PfT32tzJd/wuNUxggt6K1zC8LFgAi7B mLPZvikuee75YU3sAFvQtkBCxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPzc+Tn KQxXcjyvTQZnlEEOyL0UMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvqTfPt8XttpvKGpVTVxZnSIfZxOCU/lXv4gi7Zc//c0aFZoYIJYIA wRl4jtM9CAods8+/TuehFeeu55IT1CFMEv6yi+Mfi4PjUiwjubohlDzfPGW4Zxe8 97zU/BMfyVllkTpnHO81M9aiZertC513OSyWLVWPbe3BJlF4pjIX26fNj0AD6CRa QKitZP98AKlbYi7ApJAxa8PK/++W0OIvrAtG0l5kq0xYeYd3Va66de0fRQPMpGvg cl7dCcDj+ztutBx9u0YVKtLa0WAIRrM/+T05G5PXgVk9YiaIl3tvV3HlmbnWzYfR GayasrOx1CU814ADzWOqVjTzDx8HeWeX -----END CERTIFICATE-----Generated at Sun Jan 25 17:08:32 2026 by rpki-client