This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: SADQ80ci2053XA3us5LruJp5UwVGRs+U7KB9s9efV2c= Subject key identifier: C4:D4:04:C0:2A:38:DC:20:67:D9:FE:BE:1C:50:1B:44:15:FA:E0:83 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 0956 Signing time: Sat 24 Jan 2026 19:35:43 +0000 Manifest this update: Sat 24 Jan 2026 19:35:42 +0000 Manifest next update: Sat 31 Jan 2026 19:35:42 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: 9YuwJ/ENeahxgEBpd+2rPOhDTUnYOpdV13XpY3/xB6Q=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: hGeojJHl+slEu//W2T6Ztco0llWjDMzL1tIeaK2rSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Jan 24 19:35:42 2026 GMT Not After : Jan 31 19:35:42 2026 GMT Subject: CN=69751f0e-cc7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:b5:08:61:87:b4:a6:c3:09:4c:37:68:3f: 84:ab:06:b1:bc:77:9b:e0:42:6d:7f:35:69:e1:0e: 3f:cd:03:8c:6f:2b:a1:67:51:b3:c1:05:09:cc:2f: 79:f2:e4:a8:3b:75:93:fb:c6:43:ec:8a:8b:8f:e2: 9c:92:fb:75:9f:59:60:60:d8:bf:f6:92:7d:32:f7: 66:bc:cd:ee:bd:cb:1b:90:a8:10:54:7e:c4:6d:ab: 04:99:86:5a:af:0c:1d:a4:c5:65:10:d8:ca:32:5f: 94:8f:d8:47:2c:4b:f6:2a:cd:93:1c:2d:d0:8f:57: 09:63:38:54:e1:6a:0a:9d:e7:a0:d1:2a:4e:a9:86: 1a:e6:8c:49:a0:9a:bf:a9:b3:71:a5:8d:0c:ed:31: 63:73:7e:e1:41:3c:e7:ad:bd:7a:ef:32:cc:59:96: 67:c4:12:02:39:3b:6e:9b:38:5d:73:08:9c:cc:bf: 54:27:4e:a1:74:4e:8e:f8:13:e8:13:de:d8:e2:d4: b4:49:02:be:f9:8d:b8:10:cf:b4:84:d6:50:2e:25: 43:86:d0:d8:d0:15:cc:5b:07:e8:1d:6b:1b:c1:4e: 6a:16:b1:2a:6b:bf:cd:8e:8d:a5:7f:9e:fb:0e:a6: a5:46:44:94:d2:cb:c7:50:57:bc:58:2d:e5:b6:4e: 17:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D4:04:C0:2A:38:DC:20:67:D9:FE:BE:1C:50:1B:44:15:FA:E0:83 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f2:d6:54:e4:20:f8:b4:4e:8f:42:2b:c2:de:f8:bc:66:54: ec:41:8f:46:11:80:fd:2d:6b:31:4a:0f:d0:d6:46:30:d1:5e: 81:2a:a5:b4:21:20:38:31:3b:d6:a4:26:cc:f6:46:ca:29:de: 2e:75:65:00:e6:22:51:a6:93:11:e4:53:01:a4:63:87:2d:d2: f9:d5:20:1e:6c:00:63:3c:8a:31:79:c5:c7:2c:9d:55:60:9f: b5:34:af:02:84:54:4f:3d:04:e7:4d:23:c8:79:33:ec:54:36: ad:95:75:83:a5:df:bd:29:44:31:4c:47:31:44:09:7a:04:d2: 9e:71:e2:81:fb:10:ea:7a:16:d1:2b:37:68:db:d3:cd:27:96: ab:7a:b9:cd:3e:b8:94:3c:d3:cc:ce:18:13:ab:24:96:21:80: f1:db:d0:80:b3:b9:1a:a6:0a:2c:dd:18:48:f3:dd:64:4a:6f: 22:5b:c9:33:f3:a7:21:e1:83:47:2b:64:cc:83:22:ba:d3:be: 8c:35:52:26:7c:29:88:17:1d:6a:e8:6f:f5:8b:9e:0b:72:c8: c4:c0:04:56:d6:7f:ac:29:7e:3f:58:55:ab:d3:68:65:b4:42: ec:6d:d7:ba:48:73:b0:0c:ba:37:ad:57:af:d6:9b:bc:2b:39: 15:f3:1b:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjYwMTI0MTkzNTQyWhcNMjYwMTMxMTkzNTQyWjAYMRYwFAYD VQQDDA02OTc1MWYwZS1jYzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDy1CGGHtKbDCUw3aD+EqwaxvHeb4EJtfzVp4Q4/zQOMbyuhZ1GzwQUJzC95 8uSoO3WT+8ZD7IqLj+Kckvt1n1lgYNi/9pJ9MvdmvM3uvcsbkKgQVH7EbasEmYZa rwwdpMVlENjKMl+Uj9hHLEv2Ks2THC3Qj1cJYzhU4WoKneeg0SpOqYYa5oxJoJq/ qbNxpY0M7TFjc37hQTznrb167zLMWZZnxBICOTtumzhdcwiczL9UJ06hdE6O+BPo E97Y4tS0SQK++Y24EM+0hNZQLiVDhtDY0BXMWwfoHWsbwU5qFrEqa7/Njo2lf577 DqalRkSU0svHUFe8WC3ltk4XUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTUBMAq ONwgZ9n+vhxQG0QV+uCDMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK8tZU5CD4tE6PQivC3vi8ZlTsQY9GEYD9LWsxSg/Q1kYw0V6BKqW0 ISA4MTvWpCbM9kbKKd4udWUA5iJRppMR5FMBpGOHLdL51SAebABjPIoxecXHLJ1V YJ+1NK8ChFRPPQTnTSPIeTPsVDatlXWDpd+9KUQxTEcxRAl6BNKeceKB+xDqehbR Kzdo29PNJ5arernNPriUPNPMzhgTqySWIYDx29CAs7kapgos3RhI891kSm8iW8kz 86ch4YNHK2TMgyK6076MNVImfCmIFx1q6G/1i54LcsjEwARW1n+sKX4/WFWr02hl tELsbde6SHOwDLo3rVev1pu8KzkV8xvy -----END CERTIFICATE-----Generated at Mon Jan 26 04:58:10 2026 by rpki-client