This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft File: ihHrdksVeFOdbtOykDv2H0wIAHw.mft (raw, json) Hash identifier: D0cDiimWKaxRnjlg7k15Kkh+GWiwnTDh1VzofuA+IvA= Subject key identifier: 3D:17:B1:DD:8E:3C:CE:B6:1B:B6:6A:E9:61:48:33:6C:2B:FE:A3:13 Authority key identifier: 8A:11:EB:76:4B:15:78:53:9D:6E:D3:B2:90:3B:F6:1F:4C:08:00:7C Certificate issuer: /CN=A914CC0F/serialNumber=8A11EB764B1578539D6ED3B2903BF61F4C08007C Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft Manifest number: 89 Signing time: Sat 24 Jan 2026 19:22:31 +0000 Manifest this update: Sat 24 Jan 2026 19:22:30 +0000 Manifest next update: Sat 31 Jan 2026 19:22:30 +0000 Files and hashes: 1: ihHrdksVeFOdbtOykDv2H0wIAHw.crl (hash: NRtXC8uduZpWwbxUChejKBtdjeX+5ftylNo4G6yOFYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.crl rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CC0F, serialNumber=8A11EB764B1578539D6ED3B2903BF61F4C08007C Validity Not Before: Jan 24 19:22:30 2026 GMT Not After : Jan 31 19:22:30 2026 GMT Subject: CN=69751bf7-de31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:af:72:29:a3:ae:bc:82:31:0a:54:8a:cb: 26:79:35:cc:76:07:44:80:8b:47:4c:e6:50:92:37: 9c:52:5d:78:28:1e:3d:f2:05:40:02:14:ff:71:8a: 68:b1:aa:f6:90:b4:ad:28:ec:83:14:25:48:ba:e8: 77:22:5b:4b:70:50:ae:b9:8b:91:d4:89:dc:56:34: d9:7b:80:ea:18:8a:90:df:23:03:ae:4e:0f:3a:34: 27:a0:70:12:98:8f:e5:3b:8a:34:bc:94:78:36:8a: f0:db:fb:93:4d:f5:be:9b:97:d1:f6:bb:a7:e2:ec: be:19:23:fb:dd:97:0f:73:ff:bb:e5:0e:c4:45:ec: c5:83:ee:7f:03:3e:c9:cd:d5:7e:b5:73:0f:c6:7c: 21:2d:4f:15:67:0c:dc:f7:16:7f:93:55:e5:64:02: 15:68:16:0b:7f:56:ef:bd:78:1c:08:b6:6d:84:91: bb:9d:05:ea:5f:f8:c0:88:68:6e:b0:c8:c6:a5:17: 53:7e:ea:db:5c:e2:66:31:ac:c4:07:ee:2c:54:2a: 7f:89:5a:52:35:f8:d0:3a:5b:85:46:a7:81:81:01: 26:40:5d:5b:43:f2:14:a0:dd:33:7a:61:b2:18:ce: e3:eb:02:4a:ef:df:fd:d0:c0:db:1e:22:eb:38:3c: f8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:17:B1:DD:8E:3C:CE:B6:1B:B6:6A:E9:61:48:33:6C:2B:FE:A3:13 X509v3 Authority Key Identifier: keyid:8A:11:EB:76:4B:15:78:53:9D:6E:D3:B2:90:3B:F6:1F:4C:08:00:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:95:b9:22:80:d8:3a:d3:1b:d7:a5:dd:9a:9a:96:4c:e7:6a: 92:a9:06:b1:47:33:52:52:e2:3c:c2:c1:a4:f3:0c:05:34:4e: 19:8b:9f:1c:23:29:4f:86:be:c2:f2:82:d2:b5:2e:7b:ed:14: 43:fc:ce:12:8f:08:a3:98:84:90:e1:84:b8:2a:b9:7d:99:8c: d9:28:35:e6:34:ab:7e:e3:62:05:7b:27:5a:24:ef:a5:bd:04: e3:3f:a7:9c:30:1c:25:23:d9:f7:fc:d9:5c:17:db:be:24:0b: 9c:b1:d0:50:11:6c:cc:d7:e8:88:87:bd:24:44:59:7b:30:0f: 1c:94:9c:9c:1f:9f:be:a7:f9:e7:7f:d9:59:2a:b1:ad:f8:e5: 90:54:e9:d8:52:6e:ac:da:d4:c1:ba:57:fd:fe:3d:8b:c7:9e: 63:23:2c:38:f7:f9:4f:67:ef:41:03:98:09:48:99:21:70:0f: 46:a9:c4:75:07:60:cd:9e:8d:84:10:88:ce:a3:10:43:72:53: 9b:49:07:b0:da:8a:b5:b9:94:1b:8b:48:1b:ec:d4:1d:5c:ae: 34:ba:89:9e:01:87:e7:a3:c5:77:f9:f0:74:f5:24:80:db:96: e6:4f:7a:55:de:b0:46:1d:d4:32:22:69:17:e2:91:cc:60:08: 1d:67:b7:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDMEYxMTAvBgNVBAUTKDhBMTFFQjc2NEIxNTc4NTM5RDZFRDNCMjkwM0JGNjFG NEMwODAwN0MwHhcNMjYwMTI0MTkyMjMwWhcNMjYwMTMxMTkyMjMwWjAYMRYwFAYD VQQDDA02OTc1MWJmNy1kZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwevcimjrryCMQpUissmeTXMdgdEgItHTOZQkjecUl14KB498gVAAhT/cYpo sar2kLStKOyDFCVIuuh3IltLcFCuuYuR1IncVjTZe4DqGIqQ3yMDrk4POjQnoHAS mI/lO4o0vJR4Norw2/uTTfW+m5fR9run4uy+GSP73ZcPc/+75Q7ERezFg+5/Az7J zdV+tXMPxnwhLU8VZwzc9xZ/k1XlZAIVaBYLf1bvvXgcCLZthJG7nQXqX/jAiGhu sMjGpRdTfurbXOJmMazEB+4sVCp/iVpSNfjQOluFRqeBgQEmQF1bQ/IUoN0zemGy GM7j6wJK79/90MDbHiLrODz4jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0Xsd2O PM62G7Zq6WFIM2wr/qMTMB8GA1UdIwQYMBaAFIoR63ZLFXhTnW7TspA79h9MCAB8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0MwRi80OUU5OTZDNDJD NjIxMUYwQTlCMUM2NUFDNEY5QUUwMi9paEhyZGtzVmVGT2RidE95a0R2Mkgwd0lB SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2loSHJka3NWZUZPZGJ0T3lrRHYySDB3SUFIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0MwRi80OUU5OTZDNDJDNjIxMUYwQTlCMUM2NUFDNEY5QUUwMi9paEhyZGtzVmVG T2RidE95a0R2Mkgwd0lBSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMlbkigNg60xvXpd2ampZM52qSqQaxRzNSUuI8wsGk8wwFNE4Zi58c IylPhr7C8oLStS577RRD/M4SjwijmISQ4YS4Krl9mYzZKDXmNKt+42IFeydaJO+l vQTjP6ecMBwlI9n3/NlcF9u+JAucsdBQEWzM1+iIh70kRFl7MA8clJycH5++p/nn f9lZKrGt+OWQVOnYUm6s2tTBulf9/j2Lx55jIyw49/lPZ+9BA5gJSJkhcA9GqcR1 B2DNno2EEIjOoxBDclObSQew2oq1uZQbi0gb7NQdXK40uomeAYfno8V3+fB09SSA 25bmT3pV3rBGHdQyImkX4pHMYAgdZ7cw -----END CERTIFICATE-----Generated at Mon Jan 26 02:09:31 2026 by rpki-client