This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: q8ecwUNs4ZBF+hyrXvvGk2ExR9doMrQh2V8tqfJhPuQ= Subject key identifier: BC:84:7B:25:BF:91:C5:69:00:2E:93:53:4A:6F:91:78:B3:82:3F:1E Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 3500 Signing time: Sat 24 Jan 2026 14:32:52 +0000 Manifest this update: Sat 24 Jan 2026 14:32:52 +0000 Manifest next update: Sat 31 Jan 2026 14:32:52 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: GWwi5pqYLo6utHQLHSrTiIPuwKqGX/VmPgZLlOAuNvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Jan 24 14:32:52 2026 GMT Not After : Jan 31 14:32:52 2026 GMT Subject: CN=6974d814-3b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:fb:d5:d3:b2:9c:f6:6f:3d:f3:17:d5:3a: 6b:42:92:3a:98:6a:f4:31:e5:88:3c:15:60:79:8d: 7e:b7:a0:04:ab:51:c8:84:b4:43:d3:54:f1:dc:7a: a3:e0:a5:6d:dd:fb:ce:21:d5:e8:26:41:f3:91:d9: b2:ca:f2:b5:db:ea:31:bb:0e:1a:c2:b1:58:92:81: a1:3d:ad:8f:27:de:a1:54:1d:1d:d5:78:73:02:14: 03:14:e4:92:9f:6d:08:bb:c6:ce:af:85:9f:86:d8: 6b:18:08:fd:62:b1:8b:f2:4e:d2:9d:d8:fc:c0:76: ff:4c:0a:02:38:b0:bd:1d:7d:06:1a:0c:28:ac:d8: 37:49:ad:79:86:92:bf:44:77:28:f8:78:5d:4e:c5: e9:18:73:b0:2a:2e:50:4e:94:ba:75:7d:8a:ff:0a: 65:fa:6b:0a:8f:ab:59:97:14:11:54:91:b3:e4:32: a3:5e:12:f8:dc:34:65:85:43:da:33:cf:45:ce:3e: c1:5c:cc:2e:37:6e:5a:71:b6:57:c4:df:5f:d3:e0: 9c:a2:05:ec:87:48:c9:e5:4d:cc:07:11:cf:25:02: 25:8d:7f:fc:a5:f2:3e:f5:f1:7d:c2:fd:4c:85:f1: ff:56:96:51:f2:a6:f7:1d:e5:7a:f9:c3:90:a8:02: 69:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:84:7B:25:BF:91:C5:69:00:2E:93:53:4A:6F:91:78:B3:82:3F:1E X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:6a:78:cd:23:7a:56:86:5e:78:80:9a:09:89:ba:25:88:64: fc:f1:3f:a3:40:b4:fd:81:3a:62:26:29:8e:fe:e9:69:39:60: a1:5a:05:9b:a1:d5:f9:c5:58:27:46:e0:86:f9:b4:72:9f:57: 06:0f:52:ff:81:1e:1f:91:d8:3e:2c:96:67:f6:40:e6:16:f8: c5:a8:df:3d:b8:96:62:b7:c2:58:b0:41:4b:9d:4a:c4:76:d3: 93:e5:6b:76:7d:a1:2b:97:fb:54:f5:50:c5:f1:30:92:26:3e: 1b:71:15:12:25:87:56:21:78:18:5b:8a:9a:ee:9e:e4:c3:c2: c4:11:87:a3:39:87:e6:f1:b5:29:2f:d2:43:1e:d8:cf:bb:c0: c9:ed:a5:19:6e:7a:81:7e:40:a9:eb:00:ee:79:a8:53:ec:2f: 50:ba:97:c9:cc:44:ad:63:8f:24:bb:02:a3:c7:5b:df:d4:f8: 27:66:c6:c9:09:2d:2f:c9:ab:9e:77:62:20:eb:22:6e:09:09: e6:c9:64:b8:fc:3c:f1:30:67:87:15:a4:7a:b7:38:dd:4e:05: 78:cc:c9:79:fa:f1:f8:e1:32:65:bf:0e:58:6c:0d:f1:5d:60: e8:cb:27:36:e9:82:03:7b:8a:d5:c5:01:61:a8:ee:c3:b7:1c: 05:f7:c7:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjYwMTI0MTQzMjUyWhcNMjYwMTMxMTQzMjUyWjAYMRYwFAYD VQQDDA02OTc0ZDgxNC0zYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApff71dOynPZvPfMX1TprQpI6mGr0MeWIPBVgeY1+t6AEq1HIhLRD01Tx3Hqj 4KVt3fvOIdXoJkHzkdmyyvK12+oxuw4awrFYkoGhPa2PJ96hVB0d1XhzAhQDFOSS n20Iu8bOr4WfhthrGAj9YrGL8k7Sndj8wHb/TAoCOLC9HX0GGgworNg3Sa15hpK/ RHco+HhdTsXpGHOwKi5QTpS6dX2K/wpl+msKj6tZlxQRVJGz5DKjXhL43DRlhUPa M89Fzj7BXMwuN25acbZXxN9f0+CcogXsh0jJ5U3MBxHPJQIljX/8pfI+9fF9wv1M hfH/VpZR8qb3HeV6+cOQqAJpUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyEeyW/ kcVpAC6TU0pvkXizgj8eMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqanjNI3pWhl54gJoJiboliGT88T+jQLT9gTpiJimO/ulpOWChWgWb odX5xVgnRuCG+bRyn1cGD1L/gR4fkdg+LJZn9kDmFvjFqN89uJZit8JYsEFLnUrE dtOT5Wt2faErl/tU9VDF8TCSJj4bcRUSJYdWIXgYW4qa7p7kw8LEEYejOYfm8bUp L9JDHtjPu8DJ7aUZbnqBfkCp6wDueahT7C9QupfJzEStY48kuwKjx1vf1PgnZsbJ CS0vyaued2Ig6yJuCQnmyWS4/DzxMGeHFaR6tzjdTgV4zMl5+vH44TJlvw5YbA3x XWDoyyc26YIDe4rVxQFhqO7DtxwF98dq -----END CERTIFICATE-----Generated at Sun Jan 25 08:08:42 2026 by rpki-client