This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft File: HSQuN7enRsN-RUFFarAJiztXPPw.mft (raw, json) Hash identifier: SJ0cet5J/02ldGG2BfUIVglhHjl9zYEymWzR3W/fGrU= Subject key identifier: EE:81:A3:7C:76:B5:C9:01:C0:C1:56:AD:BA:55:7F:CB:FE:49:C8:16 Authority key identifier: 1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC Certificate issuer: /CN=A9142EA4/serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft Manifest number: 63 Signing time: Fri 23 Jan 2026 06:07:53 +0000 Manifest this update: Fri 23 Jan 2026 06:07:53 +0000 Manifest next update: Fri 30 Jan 2026 06:07:53 +0000 Files and hashes: 1: HSQuN7enRsN-RUFFarAJiztXPPw.crl (hash: YmHe/kRxQ2OBafV3mnfAYSiLaeAnGdE1KdbYsqc1S5g=) 2: 96E040E063B211F09B18DA38C4F9AE02.roa (hash: RBJCVf8Vhn27huQa1u7FR3jz192DVTd/ur20Jj+Crn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142EA4, serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Validity Not Before: Jan 23 06:07:53 2026 GMT Not After : Jan 30 06:07:53 2026 GMT Subject: CN=69731039-b9fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5e:40:0d:d4:a6:d3:eb:80:24:87:a6:22:9d: 82:ee:81:68:bd:93:cf:61:b2:af:28:fa:f0:6f:52: cd:93:00:92:84:0e:0e:e4:81:40:9d:7b:00:66:cf: 0d:b1:a9:46:2c:bd:e1:59:fb:5a:fc:58:99:86:b8: aa:30:a8:51:c6:4d:53:fd:90:ac:41:be:4c:6f:7a: 84:83:63:cf:fc:11:9c:99:cf:61:15:62:1d:ce:ff: 18:60:57:ce:4a:cc:d7:85:88:77:b3:0b:b0:1e:c2: f3:b9:df:a7:39:37:c4:d7:6a:99:d8:14:7b:35:24: b6:1f:0b:12:e2:62:dd:71:d7:27:83:e4:6a:09:e5: 0a:51:e4:b9:92:0e:06:0a:11:36:82:c9:9d:4c:0e: 5b:92:fa:0d:24:cd:d1:93:19:2f:2a:83:fb:b5:d2: 81:50:7b:65:10:e1:a7:cf:ae:00:e8:00:22:18:fc: c1:ab:26:00:62:05:d1:e7:0d:69:f7:c1:e6:3b:36: a3:4b:81:e3:96:85:b7:b6:bd:35:7c:f0:ec:75:7c: 73:d6:a6:64:1b:aa:14:6d:db:2a:96:06:f3:d9:eb: 68:99:01:93:0f:9a:c8:6e:24:bc:7a:26:01:ee:f0: ff:c5:95:2b:69:ce:de:a4:43:34:44:3b:24:89:76: ea:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:81:A3:7C:76:B5:C9:01:C0:C1:56:AD:BA:55:7F:CB:FE:49:C8:16 X509v3 Authority Key Identifier: keyid:1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a6:2a:fe:2b:1f:a2:e2:6a:ed:c9:42:6c:31:43:13:ed:db: 48:95:5d:5b:14:1d:8c:fc:84:c5:c8:04:d5:48:51:71:6c:4f: 3a:0f:20:6f:da:af:87:26:f6:5c:56:1e:0a:90:e5:f6:f3:52: 75:f9:be:87:71:55:e6:e0:08:a6:5f:f3:fd:f0:24:58:a4:35: 39:a6:ff:b4:1a:ad:76:98:c1:01:38:bb:f2:e1:18:4f:b3:a5: b4:84:0b:4e:8d:b9:97:28:10:5e:cb:08:ea:95:9d:a7:71:a1: 9e:dc:9f:7a:1b:3d:f7:b9:cf:dd:fb:50:94:c4:ce:fe:1a:a9: 81:c9:3f:ae:8e:a6:48:c0:9c:6d:62:a3:e1:2f:d1:bc:1e:33: 0e:6c:9e:98:0b:d6:6a:ac:45:c0:92:ee:e4:4c:a8:57:e2:a3: 9e:ad:58:c9:a4:a8:61:ff:6c:22:57:91:a7:11:4b:72:b5:8e: b5:21:3c:24:7f:4f:59:1d:02:c9:05:0a:8c:33:c8:23:96:13: 9a:55:2c:5d:c7:2b:8f:f8:fe:9a:ef:9e:e2:9a:7b:6c:bd:74: 3b:0f:39:2c:00:a7:83:3c:00:c6:ed:05:cb:92:9f:54:8d:be: 4b:70:79:ad:e0:d3:fc:f9:47:b7:e6:4e:56:50:50:3f:39:78: 4e:f1:99:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkVBNDExMC8GA1UEBRMoMUQyNDJFMzdCN0E3NDZDMzdFNDU0MTQ1NkFCMDA5OEIz QjU3M0NGQzAeFw0yNjAxMjMwNjA3NTNaFw0yNjAxMzAwNjA3NTNaMBgxFjAUBgNV BAMMDTY5NzMxMDM5LWI5ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcXkAN1KbT64Akh6YinYLugWi9k89hsq8o+vBvUs2TAJKEDg7kgUCdewBmzw2x qUYsveFZ+1r8WJmGuKowqFHGTVP9kKxBvkxveoSDY8/8EZyZz2EVYh3O/xhgV85K zNeFiHezC7AewvO536c5N8TXapnYFHs1JLYfCxLiYt1x1yeD5GoJ5QpR5LmSDgYK ETaCyZ1MDluS+g0kzdGTGS8qg/u10oFQe2UQ4afPrgDoACIY/MGrJgBiBdHnDWn3 weY7NqNLgeOWhbe2vTV88Ox1fHPWpmQbqhRt2yqWBvPZ62iZAZMPmshuJLx6JgHu 8P/FlStpzt6kQzREOySJduojAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7oGjfHa1 yQHAwVatulV/y/5JyBYwHwYDVR0jBBgwFoAUHSQuN7enRsN+RUFFarAJiztXPPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRUE0LzI2NERDRjFDNjNB RjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNOLVJVRkZhckFKaXp0WFBQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFNRdU43ZW5Sc04tUlVGRmFyQUppenRYUFB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RUE0LzI2NERDRjFDNjNBRjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNO LVJVRkZhckFKaXp0WFBQdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGCmKv4rH6Liau3JQmwxQxPt20iVXVsUHYz8hMXIBNVIUXFsTzoPIG/a r4cm9lxWHgqQ5fbzUnX5vodxVebgCKZf8/3wJFikNTmm/7QarXaYwQE4u/LhGE+z pbSEC06NuZcoEF7LCOqVnadxoZ7cn3obPfe5z937UJTEzv4aqYHJP66OpkjAnG1i o+Ev0bweMw5snpgL1mqsRcCS7uRMqFfio56tWMmkqGH/bCJXkacRS3K1jrUhPCR/ T1kdAskFCowzyCOWE5pVLF3HK4/4/prvnuKae2y9dDsPOSwAp4M8AMbtBcuSn1SN vktwea3g0/z5R7fmTlZQUD85eE7xmT8= -----END CERTIFICATE-----Generated at Sun Jan 25 09:07:28 2026 by rpki-client