This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: DYObJctTQMeHA9/fUSVcuYB1h63a3ZQl6oNB/w0rAR4= Subject key identifier: 2E:04:5B:ED:06:04:6E:21:F1:9B:91:49:33:87:BC:BC:98:1E:57:05 Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 0677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 0670 Signing time: Sat 24 Jan 2026 21:50:01 +0000 Manifest this update: Sat 24 Jan 2026 21:50:00 +0000 Manifest next update: Sat 31 Jan 2026 21:50:00 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: J1UPJXzhxW3W2DJDOcAoJOe34l+W7kxj9vrt3HY/gXU=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Jan 24 21:50:00 2026 GMT Not After : Jan 31 21:50:00 2026 GMT Subject: CN=69753e88-f318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a9:03:63:92:93:c9:a9:29:dd:a7:c5:43:7c: 03:fb:71:a1:ca:ed:ba:7c:49:5b:e1:19:7a:8f:eb: ed:e0:21:85:af:b7:ca:15:ae:8c:3f:e4:e9:b2:b2: c3:0b:ca:68:8b:28:a7:75:52:73:84:e4:db:38:1f: c6:33:94:81:c5:7d:7d:58:ab:87:48:bc:c6:39:aa: fb:a8:f0:78:84:ab:b6:06:1d:13:c4:ec:f1:02:2f: 7b:b4:bf:84:31:82:af:3b:f1:a3:26:e7:24:01:32: 92:e2:3e:12:92:09:b2:0c:bf:68:10:d4:da:e8:0f: d1:ab:b9:b2:57:28:b9:6c:89:22:cc:25:7f:fd:b4: f8:ff:ef:71:bb:26:6b:fa:ae:58:c9:30:f3:74:29: 5d:41:72:3a:c9:37:9d:91:b6:2b:81:7b:95:55:4c: 4c:d2:16:f2:3c:3d:a6:83:f8:ce:81:04:a2:9a:51: 11:7a:a9:bb:fd:05:f9:ba:56:2a:7a:a3:98:44:1d: 0b:ee:7a:a1:0b:a0:f6:c6:1d:01:33:ab:51:61:df: 07:4c:41:03:c6:ef:a8:14:31:56:a2:73:9f:30:c6: 00:56:f3:fb:27:fc:f2:b2:0b:7f:ba:58:d2:62:b0: 33:cf:70:d4:d1:e2:ca:19:18:61:f6:3f:24:41:5c: 38:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:04:5B:ED:06:04:6E:21:F1:9B:91:49:33:87:BC:BC:98:1E:57:05 X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:b2:31:3f:84:cf:13:bf:e1:74:d0:e1:04:d1:cb:94:e5:35: 6d:b8:89:70:05:ae:bd:a7:21:ad:4d:14:0d:df:c3:66:e5:5f: b3:1b:97:28:fc:45:f4:6d:3e:e4:8c:0f:7c:8e:3a:a5:7d:5b: e3:c6:f0:c0:19:36:70:2e:93:79:bc:c4:7a:db:4a:fb:97:01: 4f:ff:04:01:f0:34:9a:ab:0d:16:ae:c2:54:78:7d:a0:25:39: 34:be:e5:a3:dc:5e:b7:9f:01:fa:09:ff:d8:6c:fd:98:66:84: 02:dc:fa:bd:b1:2d:2d:59:1a:2c:ff:85:96:0f:40:59:66:36: 38:57:26:1f:e7:6b:61:a5:6d:58:b4:43:29:bd:ae:ed:19:e9: 9f:21:40:62:3f:18:42:5d:56:b4:b2:63:63:f4:47:98:00:05: c5:5b:95:0a:22:95:54:9d:45:96:c0:ba:d0:71:e1:b2:9b:ab: dd:43:5c:d8:62:f7:bf:72:67:d5:df:48:09:fb:75:93:20:a8: 8a:72:58:01:88:f5:69:61:88:21:72:95:68:97:91:8d:e7:1a: 3f:cc:fa:e5:bb:41:84:31:c8:0d:21:ea:b4:f2:5a:83:1d:54: e0:a2:a2:e8:53:43:5b:04:94:1c:eb:ba:2e:e0:ff:12:ec:b1: d0:f8:89:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjYwMTI0MjE1MDAwWhcNMjYwMTMxMjE1MDAwWjAYMRYwFAYD VQQDDA02OTc1M2U4OC1mMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qkDY5KTyakp3afFQ3wD+3Ghyu26fElb4Rl6j+vt4CGFr7fKFa6MP+TpsrLD C8poiyindVJzhOTbOB/GM5SBxX19WKuHSLzGOar7qPB4hKu2Bh0TxOzxAi97tL+E MYKvO/GjJuckATKS4j4SkgmyDL9oENTa6A/Rq7myVyi5bIkizCV//bT4/+9xuyZr +q5YyTDzdCldQXI6yTedkbYrgXuVVUxM0hbyPD2mg/jOgQSimlEReqm7/QX5ulYq eqOYRB0L7nqhC6D2xh0BM6tRYd8HTEEDxu+oFDFWonOfMMYAVvP7J/zysgt/uljS YrAzz3DU0eLKGRhh9j8kQVw4QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4EW+0G BG4h8ZuRSTOHvLyYHlcFMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCksjE/hM8Tv+F00OEE0cuU5TVtuIlwBa69pyGtTRQN38Nm5V+zG5co /EX0bT7kjA98jjqlfVvjxvDAGTZwLpN5vMR620r7lwFP/wQB8DSaqw0WrsJUeH2g JTk0vuWj3F63nwH6Cf/YbP2YZoQC3Pq9sS0tWRos/4WWD0BZZjY4VyYf52thpW1Y tEMpva7tGemfIUBiPxhCXVa0smNj9EeYAAXFW5UKIpVUnUWWwLrQceGym6vdQ1zY Yve/cmfV30gJ+3WTIKiKclgBiPVpYYghcpVol5GN5xo/zPrlu0GEMcgNIeq08lqD HVTgoqLoU0NbBJQc67ou4P8S7LHQ+Ikc -----END CERTIFICATE-----Generated at Sun Jan 25 15:21:57 2026 by rpki-client