This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: yWj7W16JFVxZbFAwrqg2R65gWi0rUfJ6IJEVEqMntwg= Subject key identifier: 43:F9:FA:24:DF:FB:CD:C9:EB:90:8E:75:8B:AC:11:A5:EA:CF:69:28 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 6A Signing time: Fri 23 Jan 2026 06:07:13 +0000 Manifest this update: Fri 23 Jan 2026 06:07:13 +0000 Manifest next update: Fri 30 Jan 2026 06:07:13 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: zyHBvzGlyB3mCdpQj1c5HU7LTwLPgOW1PfR94CD9aes=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: H+sz1WV2JCbo6B0gUh55p+qB63Mvx+1vqhNeQo2vgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Jan 23 06:07:13 2026 GMT Not After : Jan 30 06:07:13 2026 GMT Subject: CN=69731011-dbf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c4:e5:bc:03:33:b9:2a:a5:3d:1e:00:65:5a: 6a:45:c8:b5:7c:9f:75:39:c8:45:e3:e7:6a:7a:ae: eb:8d:c2:8b:f8:b1:80:6e:bb:95:81:ad:56:3b:d1: f7:6f:d9:35:52:81:10:38:0e:f7:67:a2:a0:25:1f: a8:58:64:f6:84:4c:ef:98:68:ff:72:fb:3a:2d:fa: 29:82:ac:50:32:c9:ed:9d:ad:aa:cc:f0:d3:f3:f9: ff:bd:14:a8:ca:96:ea:dd:25:8d:ed:6e:a8:3c:a9: 73:a9:db:cd:3c:7b:b1:cf:ce:7a:ea:10:b7:9e:87: 39:57:5b:60:4f:6d:8f:ac:ea:36:16:be:12:f0:6c: a4:7b:57:78:7d:58:37:24:3a:66:a3:86:10:fa:b6: 3a:83:d5:59:72:8a:4e:ef:40:0d:d5:de:44:6f:9c: f7:4d:3a:35:82:7a:2e:ea:7a:0b:d6:4c:d0:54:7d: 7b:ea:2e:97:a9:65:73:2a:62:2f:09:8c:d4:b9:0a: 7d:8c:c2:b1:e8:bf:d2:07:28:a1:fc:2e:8b:01:97: 1a:9f:15:10:6d:78:31:ae:56:00:01:f8:34:00:23: 71:08:13:ce:41:7c:c7:0c:a0:79:d4:96:04:77:05: dc:51:f9:54:e6:1c:83:94:1f:0d:81:1b:42:bc:7d: 21:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F9:FA:24:DF:FB:CD:C9:EB:90:8E:75:8B:AC:11:A5:EA:CF:69:28 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:11:a0:37:58:45:f4:2a:e4:de:42:54:1e:12:72:bf:5e:3c: 37:e4:fe:09:d2:c1:a3:8e:f4:72:d4:30:13:e6:7f:17:68:bc: d0:95:34:ee:f2:c6:eb:7b:03:9a:8e:ba:29:17:9d:af:86:7a: 7f:dc:5a:be:df:23:dc:75:2a:3f:a6:35:77:a5:8d:dd:a6:f1: c5:ce:ec:5c:5a:01:80:65:4e:15:db:1d:8b:5e:01:99:02:94: 5e:b1:4b:2d:8b:72:d8:c9:c0:7f:59:6d:0c:b0:45:ff:de:f8: e5:bd:d0:4e:cf:45:27:c7:31:5f:6c:68:7b:e5:0c:0a:dd:4e: 85:37:50:46:bb:d8:eb:2b:cd:bf:d9:e8:80:c5:b3:f9:f5:f7: 7f:89:05:5a:15:a5:e7:06:97:5f:56:07:a1:4c:ab:cf:5e:4f: 94:ed:f4:ca:31:11:f0:92:50:bf:44:77:40:2e:ca:09:16:e6: 8c:36:11:56:ef:44:da:70:ef:e5:2f:f1:32:f1:2f:42:93:93: 35:5b:b2:6d:4c:e9:23:13:9a:02:54:4b:cc:d9:9c:48:b7:b0: 97:e6:19:41:40:20:95:53:e7:c4:ee:f5:95:ce:b0:9b:e0:a8: 5e:53:2d:1b:6e:cf:b0:05:b7:44:3c:09:cf:e1:35:24:80:01: ce:18:21:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkY1OTExMC8GA1UEBRMoMUNBMzZEQ0ZDM0MwNDMzM0Y4ODNCODM1RjJDOERERDAy NUQ1NDEwNjAeFw0yNjAxMjMwNjA3MTNaFw0yNjAxMzAwNjA3MTNaMBgxFjAUBgNV BAMMDTY5NzMxMDExLWRiZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuxOW8AzO5KqU9HgBlWmpFyLV8n3U5yEXj52p6ruuNwov4sYBuu5WBrVY70fdv 2TVSgRA4DvdnoqAlH6hYZPaETO+YaP9y+zot+imCrFAyye2drarM8NPz+f+9FKjK lurdJY3tbqg8qXOp2808e7HPznrqELeehzlXW2BPbY+s6jYWvhLwbKR7V3h9WDck OmajhhD6tjqD1Vlyik7vQA3V3kRvnPdNOjWCei7qegvWTNBUfXvqLpepZXMqYi8J jNS5Cn2MwrHov9IHKKH8LosBlxqfFRBteDGuVgAB+DQAI3EIE85BfMcMoHnUlgR3 BdxR+VTmHIOUHw2BG0K8fSG3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ/n6JN/7 zcnrkI51i6wRperPaSgwHwYDVR0jBBgwFoAUHKNtz8PAQzP4g7g18sjd0CXVQQYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRjU5LzA1MjZENjJFNjIz MDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFR WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSEtOdHo4UEFRelA0ZzdnMThzamQwQ1hWUVFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RjU5LzA1MjZENjJFNjIzMDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQ NGc3ZzE4c2pkMENYVlFRWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADsRoDdYRfQq5N5CVB4Scr9ePDfk/gnSwaOO9HLUMBPmfxdovNCVNO7y xut7A5qOuikXna+Gen/cWr7fI9x1Kj+mNXeljd2m8cXO7FxaAYBlThXbHYteAZkC lF6xSy2LctjJwH9ZbQywRf/e+OW90E7PRSfHMV9saHvlDArdToU3UEa72Osrzb/Z 6IDFs/n193+JBVoVpecGl19WB6FMq89eT5Tt9MoxEfCSUL9Ed0AuygkW5ow2EVbv RNpw7+Uv8TLxL0KTkzVbsm1M6SMTmgJUS8zZnEi3sJfmGUFAIJVT58Tu9ZXOsJvg qF5TLRtuz7AFt0Q8Cc/hNSSAAc4YIeY= -----END CERTIFICATE-----Generated at Sun Jan 25 03:02:34 2026 by rpki-client