This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: fFy9AwREVdqgonMfxBFv8xrZWzDkIlIN7ky2spxTLA0= Subject key identifier: 3A:F5:A5:67:C4:E5:54:B4:6E:F2:B9:9D:79:2F:4F:B7:24:11:C7:44 Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: BD Signing time: Sun 25 Jan 2026 05:08:57 +0000 Manifest this update: Sun 25 Jan 2026 05:08:56 +0000 Manifest next update: Sun 01 Feb 2026 05:08:56 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: 5nnrlp+4IexvLcyOzrMEDRMnl1oY+EH7767EUK7hxfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Jan 25 05:08:56 2026 GMT Not After : Feb 1 05:08:56 2026 GMT Subject: CN=6975a569-5977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c5:7c:d2:0e:45:45:a1:5f:2b:12:0d:24:a5: 83:b9:66:ff:34:5b:68:8d:06:49:3b:5b:c5:01:01: 8b:aa:2d:ef:81:e5:5d:96:3f:4d:5c:d5:f8:66:b7: 5c:19:65:75:bf:6d:14:01:7b:e4:b2:9c:c4:d3:d0: c4:70:3d:3f:03:2d:34:ee:34:9e:9a:58:df:8c:23: c4:28:e5:61:37:a5:1c:40:c9:15:fa:45:8c:58:70: 51:fa:2c:1a:62:30:2e:07:49:b4:b6:02:ec:5b:26: 32:32:f9:95:0f:65:3a:f8:19:2d:3e:16:1b:22:12: 44:d9:3e:82:4d:f4:50:e4:94:8f:b6:50:4f:b8:d9: 2c:4a:fc:71:a2:0b:7c:f0:db:1e:3f:3e:09:89:06: fc:fe:17:7e:e0:fb:89:10:84:f0:98:d6:d8:67:e9: b3:9d:d4:21:56:49:3f:76:07:14:7f:64:50:c6:65: 51:21:cf:c4:f3:44:55:47:f6:55:cd:31:f6:4d:77: 9a:cb:50:98:0a:33:ab:36:42:f6:be:aa:40:b9:96: 4c:3d:de:54:29:c5:10:3a:31:25:61:9d:b0:7a:b1: 54:72:9d:46:79:c2:45:93:e1:ac:02:22:33:53:15: 5e:d3:d3:a1:a7:3b:c7:e1:e8:7b:55:a2:f5:ff:94: e0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F5:A5:67:C4:E5:54:B4:6E:F2:B9:9D:79:2F:4F:B7:24:11:C7:44 X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5a:10:ae:56:8a:a2:60:b1:b1:97:62:d2:af:6c:8f:c2:f6: b1:70:ae:63:7d:ba:bf:47:1b:73:ab:a3:7c:e0:1e:92:2f:24: 4c:2e:6f:13:b4:50:4e:2b:85:08:31:8f:90:a9:61:a5:63:86: 0f:bc:52:3b:2d:c1:35:94:b5:52:5f:7a:82:db:b7:26:c8:94: 83:30:c2:59:9c:62:ae:f4:63:aa:bf:4a:ac:bb:50:c2:4c:6d: 01:56:55:be:54:0a:a1:09:8b:6a:7d:55:bb:d6:95:2a:f1:90: 70:da:8b:f5:29:35:44:c5:46:da:b3:9b:5a:ea:f2:40:5a:2f: cb:ca:0d:be:84:6c:81:0b:be:87:90:a0:23:0a:af:cb:05:be: 24:b9:bd:cd:1f:e1:7a:4b:5a:e0:38:2d:10:a7:d8:d3:18:1d: b6:2c:e4:b6:6a:b8:99:b3:c4:b9:e5:67:03:d6:91:db:fc:cb: 82:96:31:de:ab:8c:2e:ae:3c:a7:3d:72:12:28:e4:26:0e:16: 61:6f:c0:a6:33:42:57:c7:34:bd:34:4b:4a:b9:3c:24:5a:0e: 22:fa:27:0b:88:b0:e7:ad:0a:16:d5:1a:b2:0c:cd:7b:8e:9c: 37:34:d1:99:aa:47:b5:76:a4:68:73:0d:9a:d7:e1:c0:ad:97: 28:ec:73:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDk4N0EyNDAzNUMxNTM5MTcwMjBCNjUxREI5OEYwOTFG MEFBQTMyMjcwHhcNMjYwMTI1MDUwODU2WhcNMjYwMjAxMDUwODU2WjAYMRYwFAYD VQQDDA02OTc1YTU2OS01OTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssV80g5FRaFfKxINJKWDuWb/NFtojQZJO1vFAQGLqi3vgeVdlj9NXNX4Zrdc GWV1v20UAXvkspzE09DEcD0/Ay007jSemljfjCPEKOVhN6UcQMkV+kWMWHBR+iwa YjAuB0m0tgLsWyYyMvmVD2U6+BktPhYbIhJE2T6CTfRQ5JSPtlBPuNksSvxxogt8 8NsePz4JiQb8/hd+4PuJEITwmNbYZ+mzndQhVkk/dgcUf2RQxmVRIc/E80RVR/ZV zTH2TXeay1CYCjOrNkL2vqpAuZZMPd5UKcUQOjElYZ2werFUcp1GecJFk+GsAiIz UxVe09OhpzvH4eh7VaL1/5TgRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDr1pWfE 5VS0bvK5nXkvT7ckEcdEMB8GA1UdIwQYMBaAFJh6JANcFTkXAgtlHbmPCR8KqjIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BRkRFRkU1NEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9SY0NDMlVkdVk4Skh3cXFN aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BRkRFRkU1NEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9S Y0NDMlVkdVk4Skh3cXFNaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqWhCuVoqiYLGxl2LSr2yPwvaxcK5jfbq/Rxtzq6N84B6SLyRMLm8T tFBOK4UIMY+QqWGlY4YPvFI7LcE1lLVSX3qC27cmyJSDMMJZnGKu9GOqv0qsu1DC TG0BVlW+VAqhCYtqfVW71pUq8ZBw2ov1KTVExUbas5ta6vJAWi/Lyg2+hGyBC76H kKAjCq/LBb4kub3NH+F6S1rgOC0Qp9jTGB22LOS2ariZs8S55WcD1pHb/MuCljHe q4wurjynPXISKOQmDhZhb8CmM0JXxzS9NEtKuTwkWg4i+icLiLDnrQoW1RqyDM17 jpw3NNGZqke1dqRocw2a1+HArZco7HMx -----END CERTIFICATE-----Generated at Sun Jan 25 12:20:47 2026 by rpki-client