This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: jJLQzKwzLrptn+isvnNVWc6kDu2usXv3Ph4OOGMuHhQ= Subject key identifier: C8:83:F0:48:07:34:1B:1D:79:4C:81:27:4A:4E:5B:52:CC:4A:CC:6B Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0642 Signing time: Sat 24 Jan 2026 21:59:27 +0000 Manifest this update: Sat 24 Jan 2026 21:59:27 +0000 Manifest next update: Sat 31 Jan 2026 21:59:27 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: GvxBKvRq4mR15dgRetN4dK6YEX54X0E7c1PRYcmCL6Q=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Jan 24 21:59:27 2026 GMT Not After : Jan 31 21:59:27 2026 GMT Subject: CN=697540bf-2138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:00:07:6a:60:e9:88:ab:3b:07:b1:6c:3e:4e: ef:7a:65:01:77:7e:b0:1a:8a:f0:76:4a:84:cd:a3: 56:5b:53:ba:94:3c:10:ac:99:14:81:aa:7d:e8:ba: 73:75:32:c2:88:60:db:b5:fa:ed:34:a3:46:a4:4d: ba:e8:48:ea:f1:bb:9d:f1:76:d3:2d:6b:28:ad:23: 98:13:9a:5b:23:07:ee:1c:e5:34:29:4d:ad:86:3f: 60:4c:72:78:c9:c3:b0:35:f2:e3:ce:01:85:b1:45: 70:b8:a1:4f:d8:83:6e:03:a2:56:8e:d2:d7:b5:ab: 6f:70:c3:f1:0e:64:10:6a:c9:1b:bf:fa:5b:28:b9: 13:e6:ae:8a:bc:08:fc:ca:9a:c9:26:74:0c:a1:f3: 0d:60:df:56:f1:45:94:9a:a4:a1:81:c9:a4:3d:d2: 88:b8:ab:9e:66:40:c5:76:3a:ce:dd:bc:bd:97:79: d2:a4:82:0f:ed:30:de:8e:e8:e5:66:3d:93:50:03: 57:e7:26:28:fc:f3:c5:4d:c0:91:a6:6d:84:e6:73: 78:72:be:7d:11:f6:cf:6e:9b:28:e9:aa:20:26:b3: be:74:4a:8d:9b:64:7b:2c:e2:ef:c2:5f:3d:c3:35: e6:4b:46:27:17:e8:31:36:e1:7f:d0:3a:ef:3d:09: 31:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:83:F0:48:07:34:1B:1D:79:4C:81:27:4A:4E:5B:52:CC:4A:CC:6B X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:14:95:bb:47:f6:9c:a1:49:49:b6:fc:68:de:21:f3:1b:94: 28:b2:8d:ba:b3:58:05:9a:4e:70:65:72:0d:3b:23:b2:5e:80: cd:df:6d:90:03:bb:b8:b4:27:d3:7d:e0:59:b3:8c:29:e2:f1: 95:bd:ef:6a:e6:0b:c7:39:50:1c:ff:82:09:18:ec:3e:82:84: 11:1c:0d:fc:1f:8c:da:68:4e:0d:91:7a:b2:f3:55:04:77:2e: bd:45:f9:02:60:ef:4a:f2:0d:3a:0b:69:67:11:08:7f:7b:3e: 2b:fa:67:73:c0:c7:ca:f7:cc:83:d1:67:08:25:07:ea:e4:f8: 80:c6:cc:94:19:0c:a1:30:c6:bd:2b:4f:b2:b4:a0:0e:84:a7: d4:6a:13:5b:ab:65:50:a8:5c:3e:83:a6:72:f3:30:dd:64:c5: 2e:0a:96:80:82:65:32:27:f7:aa:9a:c3:54:fb:b9:9d:b5:f0: 47:29:bb:e4:03:68:4e:49:3e:a1:60:0f:cd:65:d3:b3:93:9e: 0c:69:bf:a5:58:14:bc:31:41:0a:72:a0:22:91:e9:14:ee:21: 84:b0:d3:83:93:2d:6a:ec:1d:11:51:4f:c6:c3:4d:2e:99:0c: 56:22:5e:f2:6c:9e:bc:2a:f7:e3:2b:26:0a:6b:57:f2:a2:38: 85:21:47:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjYwMTI0MjE1OTI3WhcNMjYwMTMxMjE1OTI3WjAYMRYwFAYD VQQDDA02OTc1NDBiZi0yMTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAAHamDpiKs7B7FsPk7vemUBd36wGorwdkqEzaNWW1O6lDwQrJkUgap96Lpz dTLCiGDbtfrtNKNGpE266Ejq8bud8XbTLWsorSOYE5pbIwfuHOU0KU2thj9gTHJ4 ycOwNfLjzgGFsUVwuKFP2INuA6JWjtLXtatvcMPxDmQQaskbv/pbKLkT5q6KvAj8 yprJJnQMofMNYN9W8UWUmqShgcmkPdKIuKueZkDFdjrO3by9l3nSpIIP7TDejujl Zj2TUANX5yYo/PPFTcCRpm2E5nN4cr59EfbPbpso6aogJrO+dEqNm2R7LOLvwl89 wzXmS0YnF+gxNuF/0DrvPQkxTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiD8EgH NBsdeUyBJ0pOW1LMSsxrMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0FJW7R/acoUlJtvxo3iHzG5Qoso26s1gFmk5wZXINOyOyXoDN322Q A7u4tCfTfeBZs4wp4vGVve9q5gvHOVAc/4IJGOw+goQRHA38H4zaaE4NkXqy81UE dy69RfkCYO9K8g06C2lnEQh/ez4r+mdzwMfK98yD0WcIJQfq5PiAxsyUGQyhMMa9 K0+ytKAOhKfUahNbq2VQqFw+g6Zy8zDdZMUuCpaAgmUyJ/eqmsNU+7mdtfBHKbvk A2hOST6hYA/NZdOzk54Mab+lWBS8MUEKcqAikekU7iGEsNODky1q7B0RUU/Gw00u mQxWIl7ybJ68KvfjKyYKa1fyojiFIUd1 -----END CERTIFICATE-----Generated at Sun Jan 25 09:23:00 2026 by rpki-client