This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: IIT1feGQlzs/E8CUotNc0VR5wWY1VK+M9qDbeYnX4zg= Subject key identifier: 79:48:8C:F7:7F:32:B6:E5:AD:60:A9:60:34:CA:94:2A:3D:AC:61:E5 Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: 011C Signing time: Sun 25 Jan 2026 04:01:42 +0000 Manifest this update: Sun 25 Jan 2026 04:01:41 +0000 Manifest next update: Sun 01 Feb 2026 04:01:41 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: wqA9int5AOh2IO7Jn8esCX+OjcZpvF+AYOtgfaAF1Ww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Jan 25 04:01:41 2026 GMT Not After : Feb 1 04:01:41 2026 GMT Subject: CN=697595a6-ab5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:12:fc:b6:f2:0e:51:f0:cb:96:48:23:c8:6d: c1:40:1e:4d:70:d2:7f:6c:66:bf:d9:ba:81:0e:ec: 17:67:d5:eb:86:6d:ab:dc:6a:bc:7f:05:3c:cd:1e: 1b:d9:93:bc:65:08:97:7d:16:3a:ff:49:3f:fb:8b: d9:70:34:ec:15:de:dd:f3:55:95:fa:89:35:e2:e5: f1:e7:be:47:58:cc:26:76:e6:82:77:fc:b0:1b:65: 5e:6d:13:f8:6f:78:ed:ee:18:9f:20:e9:b3:66:a9: 3e:1a:38:39:aa:ae:88:56:be:32:a8:dc:9b:ba:a7: c5:05:df:0f:b9:82:bd:00:e4:ff:6a:70:7f:90:fe: 71:ea:01:9e:39:e0:be:28:c1:7d:a6:ba:02:13:82: 28:d1:59:0d:2b:5e:dc:84:98:7d:7b:ab:49:a9:34: 03:05:47:c5:f0:79:0a:a8:fe:5a:20:64:0f:82:57: c9:a0:e3:cd:31:fe:19:75:75:a2:81:e3:c7:a3:6b: 94:ea:01:01:5e:67:75:3e:77:e3:97:2b:c5:29:1e: 7f:f3:1d:8e:39:50:c6:6c:7d:9b:d5:df:66:b9:9e: f0:6b:9c:0f:1e:82:f7:d5:03:9a:5d:7d:c3:0e:f7: 6b:2d:28:93:96:4b:ca:48:c0:7c:52:5b:76:9b:c8: 19:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:48:8C:F7:7F:32:B6:E5:AD:60:A9:60:34:CA:94:2A:3D:AC:61:E5 X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:61:74:75:dc:79:e1:c4:ff:80:36:23:c0:42:08:ea:f3:9a: ba:79:e0:e6:63:44:0b:ea:37:6d:d9:9e:8c:de:06:3a:95:31: 8d:b0:ce:8b:6b:51:d1:bb:14:48:c9:05:ca:6e:45:e1:04:4e: fd:ca:0e:6a:eb:37:40:b8:45:b7:0f:5f:2e:f2:69:4f:af:f4: 27:14:67:18:a0:5a:5b:46:a7:a8:c8:c4:30:46:a4:7e:89:78: e0:1f:9c:bf:ae:e4:2f:4e:75:ad:16:02:a7:ee:b1:e4:ab:fc: ca:bb:e5:91:4a:72:38:f9:7c:5b:d7:b7:8b:c3:51:28:07:49: 18:46:60:ec:22:2d:f7:fe:a5:27:91:5b:f0:51:32:85:39:40: 71:45:21:ea:a6:38:5e:03:0f:19:0c:db:f2:be:76:eb:4c:e0: 4e:e7:7f:4d:a1:0b:53:77:2d:f1:8a:6e:d9:c2:e1:c3:45:50: eb:b8:8f:7c:29:5e:99:86:9b:db:59:a1:be:ff:30:84:86:5a: eb:85:22:97:ff:6a:fc:fc:8c:57:4d:42:98:ae:32:18:39:12: 79:fd:2d:2f:7c:20:e2:c5:0d:f4:b9:58:4f:23:08:43:48:69: 39:c6:78:9f:43:45:7c:0e:57:3e:c6:f5:8d:1b:6f:d3:a4:71: f5:42:b9:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjYwMTI1MDQwMTQxWhcNMjYwMjAxMDQwMTQxWjAYMRYwFAYD VQQDDA02OTc1OTVhNi1hYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xL8tvIOUfDLlkgjyG3BQB5NcNJ/bGa/2bqBDuwXZ9Xrhm2r3Gq8fwU8zR4b 2ZO8ZQiXfRY6/0k/+4vZcDTsFd7d81WV+ok14uXx575HWMwmduaCd/ywG2VebRP4 b3jt7hifIOmzZqk+Gjg5qq6IVr4yqNybuqfFBd8PuYK9AOT/anB/kP5x6gGeOeC+ KMF9proCE4Io0VkNK17chJh9e6tJqTQDBUfF8HkKqP5aIGQPglfJoOPNMf4ZdXWi gePHo2uU6gEBXmd1PnfjlyvFKR5/8x2OOVDGbH2b1d9muZ7wa5wPHoL31QOaXX3D DvdrLSiTlkvKSMB8Ult2m8gZ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlIjPd/ MrblrWCpYDTKlCo9rGHlMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArYXR13HnhxP+ANiPAQgjq85q6eeDmY0QL6jdt2Z6M3gY6lTGNsM6L a1HRuxRIyQXKbkXhBE79yg5q6zdAuEW3D18u8mlPr/QnFGcYoFpbRqeoyMQwRqR+ iXjgH5y/ruQvTnWtFgKn7rHkq/zKu+WRSnI4+Xxb17eLw1EoB0kYRmDsIi33/qUn kVvwUTKFOUBxRSHqpjheAw8ZDNvyvnbrTOBO539NoQtTdy3xim7ZwuHDRVDruI98 KV6ZhpvbWaG+/zCEhlrrhSKX/2r8/IxXTUKYrjIYORJ5/S0vfCDixQ30uVhPIwhD SGk5xnifQ0V8Dlc+xvWNG2/TpHH1Qrkp -----END CERTIFICATE-----Generated at Sun Jan 25 10:54:54 2026 by rpki-client