This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: 7krVU7yWDofIRpFSLMQsMTjvybbnsqV0NIJKDZvoUl8= Subject key identifier: B1:3E:76:6B:0D:3E:F5:E5:11:33:9F:A5:37:67:01:65:FF:92:CB:C4 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: DB Signing time: Sun 25 Jan 2026 04:53:14 +0000 Manifest this update: Sun 25 Jan 2026 04:53:13 +0000 Manifest next update: Sun 01 Feb 2026 04:53:13 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: OcDw8RfT4GjweXtL5NR2u8xz7ErDLtQ/ywpbaJEm22Q=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: cRwLsutqQVxWT3ZK97DqtNM6mPPtYnnF8FmbKFlWINg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: wDnirQsBVGr2+TbqtsfsrtJW3jBHzGAZ6azL84nOZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Jan 25 04:53:13 2026 GMT Not After : Feb 1 04:53:13 2026 GMT Subject: CN=6975a1ba-e8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2f:0d:c5:f0:c6:10:bf:d9:6e:77:42:f3:56: 6d:2d:a1:67:0c:7c:61:ca:33:51:67:c3:f6:33:70: b2:8a:1e:6b:9e:cb:47:b2:ff:09:0b:31:5b:d6:b2: 60:d4:e0:53:c1:3c:92:6b:d1:47:a1:1e:38:e1:b3: 7a:ed:c7:0e:f3:fe:db:c7:ac:3d:03:99:b0:17:68: cd:13:e8:c0:f7:74:d0:70:fb:3f:d7:40:45:cf:91: 72:e1:f8:a6:3e:d5:a1:c1:ab:77:91:5d:61:89:63: 09:b4:2d:48:41:de:fd:ff:88:4d:79:5e:1e:71:61: 24:05:07:b3:e4:63:14:72:8e:fe:b2:4d:a4:35:a1: 5f:e2:f9:67:1a:90:5b:e5:3c:cd:ab:43:77:1b:c6: 9f:47:ef:03:1a:3f:a4:24:5b:36:b0:07:38:7f:99: eb:57:dd:47:c4:7a:c1:24:97:8e:aa:17:7c:75:69: a8:12:85:96:21:a5:ef:1e:be:30:90:33:b9:73:f1: bb:0e:a9:d6:f5:e4:a4:1a:c0:53:a5:be:89:89:6a: 28:9b:bf:71:c4:11:68:a5:1b:7d:89:82:f5:33:a6: 47:f9:86:18:05:95:9d:78:d5:ea:b4:08:3e:c4:3f: b8:83:1a:0a:2b:41:cd:ae:fb:0a:e4:d8:39:da:b3: ec:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:3E:76:6B:0D:3E:F5:E5:11:33:9F:A5:37:67:01:65:FF:92:CB:C4 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1e:d2:27:56:83:94:b1:d3:d5:1f:c6:32:42:1e:b6:c9:5c: c1:09:1c:8d:92:57:0d:3e:cd:cc:35:d4:ea:c1:53:bb:a2:3f: 4b:30:b7:16:83:eb:93:7d:ab:2c:c5:b0:1d:ac:c3:05:12:6e: 7c:5c:8a:7c:b2:2b:98:88:3f:a7:7a:13:34:26:49:0e:1e:be: 34:f6:d7:57:07:f0:ce:1a:c3:6d:a1:58:5f:5f:cb:6c:9e:54: 72:71:52:24:68:95:e3:9f:78:af:35:58:f7:52:4e:16:e5:25: f0:e2:b2:e8:09:2b:63:8d:ed:57:c9:7b:af:71:e3:42:9b:24: 1c:63:ed:b0:60:0e:f1:f8:d6:c2:3c:47:32:cd:aa:b3:20:f2: fd:6a:6f:75:b2:9f:3d:f6:94:2f:1d:2d:4b:31:ae:fa:3a:d6: cc:d9:7c:e2:97:04:5a:e0:e6:ad:69:f3:21:18:45:2f:c9:c3: b8:47:50:ca:0c:b9:7f:73:e5:6e:41:75:e5:8d:12:99:c7:2b: 6b:6c:a9:72:fe:96:77:4b:0a:97:11:0f:95:ec:12:4a:a5:32: 8e:6a:3f:66:f0:da:d3:ca:23:76:b5:8f:96:6e:3c:26:1f:fb: a9:a4:22:85:45:eb:77:30:39:8c:61:3d:1e:09:7d:22:c7:6a: 4d:bc:2a:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjYwMTI1MDQ1MzEzWhcNMjYwMjAxMDQ1MzEzWjAYMRYwFAYD VQQDDA02OTc1YTFiYS1lOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAki8NxfDGEL/ZbndC81ZtLaFnDHxhyjNRZ8P2M3Cyih5rnstHsv8JCzFb1rJg 1OBTwTySa9FHoR444bN67ccO8/7bx6w9A5mwF2jNE+jA93TQcPs/10BFz5Fy4fim PtWhwat3kV1hiWMJtC1IQd79/4hNeV4ecWEkBQez5GMUco7+sk2kNaFf4vlnGpBb 5TzNq0N3G8afR+8DGj+kJFs2sAc4f5nrV91HxHrBJJeOqhd8dWmoEoWWIaXvHr4w kDO5c/G7DqnW9eSkGsBTpb6JiWoom79xxBFopRt9iYL1M6ZH+YYYBZWdeNXqtAg+ xD+4gxoKK0HNrvsK5Ng52rPsmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLE+dmsN PvXlETOfpTdnAWX/ksvEMB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhHtInVoOUsdPVH8YyQh62yVzBCRyNklcNPs3MNdTqwVO7oj9LMLcW g+uTfassxbAdrMMFEm58XIp8siuYiD+nehM0JkkOHr409tdXB/DOGsNtoVhfX8ts nlRycVIkaJXjn3ivNVj3Uk4W5SXw4rLoCStjje1XyXuvceNCmyQcY+2wYA7x+NbC PEcyzaqzIPL9am91sp899pQvHS1LMa76OtbM2XzilwRa4OatafMhGEUvycO4R1DK DLl/c+VuQXXljRKZxytrbKly/pZ3SwqXEQ+V7BJKpTKOaj9m8NrTyiN2tY+Wbjwm H/uppCKFRet3MDmMYT0eCX0ix2pNvCpm -----END CERTIFICATE-----Generated at Sun Jan 25 10:46:00 2026 by rpki-client