This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: SLs6k6fW6BcKClWOYcbRyFB15/wRCkyu6+8qwyGDEvI= Subject key identifier: E9:9F:0A:32:96:55:34:DD:7A:D5:C7:BE:E6:88:8C:C7:A5:7C:9E:2F Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 0348 Signing time: Sun 25 Jan 2026 00:09:28 +0000 Manifest this update: Sun 25 Jan 2026 00:09:27 +0000 Manifest next update: Sun 01 Feb 2026 00:09:27 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: AWQ075tD8WBir13V2dQ7wJbT7QKRVKnlDhalwbCrzjQ=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Jan 25 00:09:27 2026 GMT Not After : Feb 1 00:09:27 2026 GMT Subject: CN=69755f37-463e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:95:70:74:05:1f:5c:f5:31:b3:bf:52:c6:ed: 0d:cf:fe:30:ff:d6:6a:41:90:ad:7f:11:84:a2:31: 9c:e2:fe:7b:78:a5:db:46:0f:7a:e3:a2:7b:9c:65: 0b:d9:49:de:c6:c0:11:21:53:8e:2d:8d:9b:74:9a: 76:ad:e6:be:74:54:32:21:33:7f:03:9d:13:19:8d: 93:53:76:62:f0:da:1c:a8:60:0d:07:61:ce:c8:24: 02:15:3c:dd:62:03:24:0b:8b:6b:75:73:f0:a6:7b: 8f:92:68:c6:4f:d2:a1:47:e5:f3:54:a7:9d:b5:fa: ec:93:ec:e3:80:6f:11:16:bb:15:22:a6:b4:3a:f9: f9:de:b8:b8:2d:fd:2d:f7:b0:6f:68:60:47:2b:b7: 8b:95:37:5b:0e:fb:ee:4d:8d:64:97:f9:18:32:a1: d5:1a:6b:1f:dd:79:0d:b2:a3:cd:fe:5e:3b:e6:fd: 66:93:7d:6b:5f:e2:b9:00:f2:e2:f9:08:8e:e0:3e: 25:3f:c2:12:e7:44:ed:be:36:d4:4c:d2:ff:c8:2b: 1c:f8:06:b5:2c:1e:74:99:3a:72:fe:74:19:d6:3f: 18:41:bf:cd:4d:25:80:df:b2:20:e4:13:cb:3c:f3: d4:3f:99:72:97:79:69:a7:e0:27:fc:d3:cc:58:f0: b8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9F:0A:32:96:55:34:DD:7A:D5:C7:BE:E6:88:8C:C7:A5:7C:9E:2F X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:4b:4f:eb:8b:2e:2f:16:eb:a6:54:b5:4a:4f:bb:e8:fc:22: 75:ca:e0:f2:00:e6:52:02:f1:e5:e2:60:64:67:ca:37:1e:96: b9:41:35:51:0b:07:70:1d:80:36:7a:88:8b:1b:fb:0b:84:f8: 9e:d8:ce:ca:49:c4:d9:e7:19:cb:52:ce:99:5e:a2:ef:ad:0c: a5:85:8f:f9:e4:18:17:7e:98:9d:48:5d:9b:17:f5:92:32:d2: 85:95:1b:45:20:f5:21:02:34:d4:43:53:8c:2f:5f:41:b8:0d: da:0e:cf:36:9d:73:f6:21:38:40:6a:ab:81:da:93:a5:5c:d6: 0a:ca:2b:55:92:01:dd:07:58:28:f9:b9:f4:db:f8:85:b4:a0: 16:fc:c5:70:18:48:d1:db:79:06:ed:12:c8:fc:76:27:eb:3a: c0:ec:e3:94:db:a4:62:4f:9e:4d:bc:a8:02:29:5f:32:87:00: a7:30:d4:60:c8:1e:b5:6e:9f:60:59:71:7f:77:c0:74:87:4b: 60:27:5a:d6:22:2f:c2:d1:68:b5:be:fb:dc:8d:91:4e:3a:40: 5e:b2:d3:0f:9a:15:6a:1c:9e:d5:58:5a:bc:f0:eb:9f:87:f5: 4b:bc:b4:2d:b1:a5:6f:94:02:7f:41:13:c6:84:49:91:a4:92: 59:74:16:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjYwMTI1MDAwOTI3WhcNMjYwMjAxMDAwOTI3WjAYMRYwFAYD VQQDDA02OTc1NWYzNy00NjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZVwdAUfXPUxs79Sxu0Nz/4w/9ZqQZCtfxGEojGc4v57eKXbRg9646J7nGUL 2UnexsARIVOOLY2bdJp2rea+dFQyITN/A50TGY2TU3Zi8NocqGANB2HOyCQCFTzd YgMkC4trdXPwpnuPkmjGT9KhR+XzVKedtfrsk+zjgG8RFrsVIqa0Ovn53ri4Lf0t 97BvaGBHK7eLlTdbDvvuTY1kl/kYMqHVGmsf3XkNsqPN/l475v1mk31rX+K5APLi +QiO4D4lP8IS50TtvjbUTNL/yCsc+Aa1LB50mTpy/nQZ1j8YQb/NTSWA37Ig5BPL PPPUP5lyl3lpp+An/NPMWPC4vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmfCjKW VTTdetXHvuaIjMelfJ4vMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHS0/riy4vFuumVLVKT7vo/CJ1yuDyAOZSAvHl4mBkZ8o3Hpa5QTVR CwdwHYA2eoiLG/sLhPie2M7KScTZ5xnLUs6ZXqLvrQylhY/55BgXfpidSF2bF/WS MtKFlRtFIPUhAjTUQ1OML19BuA3aDs82nXP2IThAaquB2pOlXNYKyitVkgHdB1go +bn02/iFtKAW/MVwGEjR23kG7RLI/HYn6zrA7OOU26RiT55NvKgCKV8yhwCnMNRg yB61bp9gWXF/d8B0h0tgJ1rWIi/C0Wi1vvvcjZFOOkBestMPmhVqHJ7VWFq88Ouf h/VLvLQtsaVvlAJ/QRPGhEmRpJJZdBZp -----END CERTIFICATE-----Generated at Sun Jan 25 11:09:37 2026 by rpki-client