This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: ttoX4fwCIQD2TPr5qcTtb6vwVl9F1p5Vlvp0V57KOjE= Subject key identifier: 70:64:1B:0F:2D:BC:10:27:4A:8D:00:6B:BA:10:4A:93:B7:14:29:56 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: F8 Signing time: Fri 23 Jan 2026 04:23:52 +0000 Manifest this update: Fri 23 Jan 2026 04:23:52 +0000 Manifest next update: Fri 30 Jan 2026 04:23:52 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: 4OkP8Yx160BRgNJjBzO7IYKWDBp/amz2q5wotJG3xO0=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Jan 23 04:23:52 2026 GMT Not After : Jan 30 04:23:52 2026 GMT Subject: CN=6972f7d8-95d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:15:9c:93:de:5b:3d:1c:17:1b:83:1a:9e: 50:aa:25:9b:47:5c:66:b9:01:f9:2f:09:fc:40:ef: ab:d5:6f:7e:76:ea:c5:28:c0:50:d0:a5:aa:2b:5e: 9b:90:57:36:e5:bc:1c:0f:20:4d:24:a3:f3:29:3a: 50:60:9e:f7:c0:bc:8b:8e:3b:90:96:24:31:4e:93: 48:2c:a2:b5:88:32:08:83:e0:08:e4:33:d2:55:b5: 93:b8:e0:91:30:1e:b6:e0:19:f9:1f:30:ba:6e:8d: 7f:8f:f5:37:9b:53:7c:43:0c:6e:d0:6b:a0:d4:29: 5c:44:12:2b:1d:27:1c:6c:af:a2:1f:9e:27:5c:e5: b9:7a:15:36:d7:b7:a3:79:a6:a5:55:fa:12:91:33: 74:64:7e:a0:30:6b:71:8b:06:44:d8:41:49:6e:b8: 3f:a9:c1:99:1b:88:3a:b0:45:75:c2:a4:18:c6:22: 41:3e:c2:4b:a5:19:03:69:a8:ba:c9:4a:48:94:35: 23:2e:d7:b6:18:13:18:71:5f:08:93:2f:54:73:ad: b7:77:48:9c:4e:24:11:a1:f7:d6:d8:9d:f0:f3:9f: cb:3d:bf:b1:d2:c5:2f:44:83:a0:72:61:34:7b:4e: 26:aa:21:55:c6:e9:f1:ff:30:f7:86:0b:9e:56:56: f0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:64:1B:0F:2D:BC:10:27:4A:8D:00:6B:BA:10:4A:93:B7:14:29:56 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0f:8e:85:99:2b:b9:fc:53:ed:14:33:f4:6f:99:3b:f9:16: 2f:70:bd:09:96:5e:a2:fd:f9:24:41:0e:45:9d:b9:1e:8d:1c: 98:a2:1b:89:da:2a:7f:ac:2b:bf:12:4d:f9:c8:01:4e:e0:2c: b2:3c:e4:f7:05:3e:4a:6f:e5:cd:06:ca:fc:d7:3e:bd:65:ad: 69:96:f5:f2:8a:72:5b:20:9b:78:2b:f6:4f:2a:b9:d8:65:dc: a8:c3:00:da:de:89:03:18:62:f8:b3:21:8a:5b:7d:1c:d5:d9: 66:9b:19:01:b3:17:c6:e8:01:f4:ba:12:d6:71:29:79:93:45: ff:55:75:77:1a:da:e3:8a:27:ca:d6:1f:58:26:1e:f6:9f:34: 2a:b2:8b:2c:f2:e0:72:b3:28:2f:d7:dc:ad:9c:3a:1a:ee:e4: bb:df:8e:c6:66:d0:2d:ab:42:06:53:1e:e2:6e:7e:ac:8e:ec: a3:9e:db:42:6e:0a:0f:3a:3f:ae:d6:61:6a:89:6f:ba:f4:39: 85:3c:38:56:fd:8c:f6:13:f1:0f:36:8a:3a:cf:57:81:b3:72: 7e:cd:e3:f8:37:cf:cd:f5:3b:b0:05:f9:05:b5:aa:5f:ed:c2: 6d:f9:de:bf:67:ae:0f:8d:ef:70:0a:63:4f:f4:72:60:29:cf: 37:48:93:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjYwMTIzMDQyMzUyWhcNMjYwMTMwMDQyMzUyWjAYMRYwFAYD VQQDDA02OTcyZjdkOC05NWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufgVnJPeWz0cFxuDGp5QqiWbR1xmuQH5Lwn8QO+r1W9+durFKMBQ0KWqK16b kFc25bwcDyBNJKPzKTpQYJ73wLyLjjuQliQxTpNILKK1iDIIg+AI5DPSVbWTuOCR MB624Bn5HzC6bo1/j/U3m1N8Qwxu0Gug1ClcRBIrHSccbK+iH54nXOW5ehU217ej eaalVfoSkTN0ZH6gMGtxiwZE2EFJbrg/qcGZG4g6sEV1wqQYxiJBPsJLpRkDaai6 yUpIlDUjLte2GBMYcV8Iky9Uc623d0icTiQRoffW2J3w85/LPb+x0sUvRIOgcmE0 e04mqiFVxunx/zD3hgueVlbwvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBkGw8t vBAnSo0Aa7oQSpO3FClWMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTD46FmSu5/FPtFDP0b5k7+RYvcL0Jll6i/fkkQQ5FnbkejRyYohuJ 2ip/rCu/Ek35yAFO4CyyPOT3BT5Kb+XNBsr81z69Za1plvXyinJbIJt4K/ZPKrnY ZdyowwDa3okDGGL4syGKW30c1dlmmxkBsxfG6AH0uhLWcSl5k0X/VXV3GtrjiifK 1h9YJh72nzQqsoss8uBysygv19ytnDoa7uS7347GZtAtq0IGUx7ibn6sjuyjnttC bgoPOj+u1mFqiW+69DmFPDhW/Yz2E/EPNoo6z1eBs3J+zeP4N8/N9TuwBfkFtapf 7cJt+d6/Z64Pje9wCmNP9HJgKc83SJM+ -----END CERTIFICATE-----Generated at Sun Jan 25 04:32:05 2026 by rpki-client