This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: MdKJfbKlxE5kXIajRnHch0cv4wC4GM3j5M2x2GD44Ho= Subject key identifier: 99:12:F6:24:33:DA:2C:76:1E:26:2A:38:97:E1:06:B0:A1:5A:E3:80 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0848 Signing time: Sat 24 Jan 2026 20:11:53 +0000 Manifest this update: Sat 24 Jan 2026 20:11:52 +0000 Manifest next update: Sat 31 Jan 2026 20:11:52 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: ml30crXZyF2M4I/hdFGLiMaNfZY9qUTBvG9RvYn3n5E=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jan 24 20:11:52 2026 GMT Not After : Jan 31 20:11:52 2026 GMT Subject: CN=69752789-f75d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a1:8e:48:8d:24:bb:e7:2b:3f:51:ea:24:e2: bc:66:eb:a3:a6:bf:c6:fb:0e:00:fa:f0:0f:19:b2: 60:52:5c:a0:80:9a:31:60:a4:db:a0:ca:1a:f6:c8: 14:6e:9b:ed:a8:01:84:68:6d:9f:3a:a9:f5:28:13: 8b:be:e2:f0:ce:18:94:e0:56:70:0a:70:25:64:bd: 55:ca:89:1c:73:04:2d:13:82:48:6c:59:e3:dc:58: 0e:6f:fa:4e:5e:60:57:4a:84:7e:10:0e:cd:6a:be: 56:37:c8:a8:5d:81:fc:fc:53:0a:9d:2a:4d:93:59: ad:34:b1:cc:82:05:30:17:fe:e6:93:07:44:4f:cb: ee:c8:b8:40:9c:8a:ea:61:7f:08:5d:8c:c1:83:32: 3e:2b:6a:0b:db:ec:09:54:c0:5a:82:45:fb:55:53: fc:88:db:36:58:02:00:d0:01:df:8c:15:d2:fd:7b: 35:52:b0:77:fd:73:49:0e:96:36:74:81:b9:a5:3a: cd:96:ab:de:bf:c8:92:66:08:cb:d8:10:05:b9:79: fc:9e:bb:3f:c9:61:b4:33:4a:82:9c:3b:19:31:f4: b7:e7:1a:ed:15:2d:c8:99:f9:3d:b0:e2:67:2d:51: 45:d1:e6:c8:a4:21:5d:10:26:7f:54:4a:0d:94:f3: e0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:12:F6:24:33:DA:2C:76:1E:26:2A:38:97:E1:06:B0:A1:5A:E3:80 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:3f:d4:98:09:90:40:5e:4d:25:52:4b:43:2e:8c:a5:b6:ac: 78:95:83:c7:68:ff:d1:33:33:ed:51:9f:23:0d:35:3b:cd:5b: 2f:0a:5f:5b:e1:6f:7d:24:00:25:74:d7:79:88:85:82:e7:89: e6:54:6b:40:12:e6:15:c0:89:70:1b:8b:08:61:dc:90:74:81: d2:ae:8b:e7:7e:70:27:85:02:ae:80:b5:4d:fe:4e:ed:af:4b: 74:b0:95:d6:72:46:f4:ed:04:05:ea:eb:27:0a:de:d8:f2:65: d1:35:87:d0:58:fd:e5:3b:8f:1c:71:a4:86:17:ec:ac:85:2c: 96:ba:c7:6d:f0:9e:51:55:72:ce:85:3e:07:03:b7:0c:64:26: 59:9a:1c:55:61:28:60:9c:20:76:47:f7:a0:ab:22:bb:d4:74: ff:82:99:a5:f6:e4:a0:9d:0a:ad:6a:47:bc:d5:37:4b:03:48: f2:22:f1:42:81:12:0c:18:68:6d:c4:1e:6c:f1:3a:3d:84:8a: 83:ec:16:f7:82:d4:f4:d4:49:7a:78:3e:c8:bc:be:ab:7b:a9: 20:1f:47:b1:14:21:13:88:55:ac:06:10:ca:cc:99:3a:4c:77: b5:28:0e:19:2a:f0:e6:c8:3d:6f:62:ad:ea:3c:b5:42:b3:5c: 02:0e:04:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwMTI0MjAxMTUyWhcNMjYwMTMxMjAxMTUyWjAYMRYwFAYD VQQDDA02OTc1Mjc4OS1mNzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6GOSI0ku+crP1HqJOK8Zuujpr/G+w4A+vAPGbJgUlyggJoxYKTboMoa9sgU bpvtqAGEaG2fOqn1KBOLvuLwzhiU4FZwCnAlZL1VyokccwQtE4JIbFnj3FgOb/pO XmBXSoR+EA7Nar5WN8ioXYH8/FMKnSpNk1mtNLHMggUwF/7mkwdET8vuyLhAnIrq YX8IXYzBgzI+K2oL2+wJVMBagkX7VVP8iNs2WAIA0AHfjBXS/Xs1UrB3/XNJDpY2 dIG5pTrNlqvev8iSZgjL2BAFuXn8nrs/yWG0M0qCnDsZMfS35xrtFS3Imfk9sOJn LVFF0ebIpCFdECZ/VEoNlPPgSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkS9iQz 2ix2HiYqOJfhBrChWuOAMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmP9SYCZBAXk0lUktDLoyltqx4lYPHaP/RMzPtUZ8jDTU7zVsvCl9b 4W99JAAldNd5iIWC54nmVGtAEuYVwIlwG4sIYdyQdIHSrovnfnAnhQKugLVN/k7t r0t0sJXWckb07QQF6usnCt7Y8mXRNYfQWP3lO48ccaSGF+yshSyWusdt8J5RVXLO hT4HA7cMZCZZmhxVYShgnCB2R/egqyK71HT/gpml9uSgnQqtake81TdLA0jyIvFC gRIMGGhtxB5s8To9hIqD7Bb3gtT01El6eD7IvL6re6kgH0exFCETiFWsBhDKzJk6 THe1KA4ZKvDmyD1vYq3qPLVCs1wCDgSE -----END CERTIFICATE-----Generated at Sun Jan 25 18:32:32 2026 by rpki-client