This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: 8EBzfWLxhSvEIgRFWeV5l25ZqeF3hS8vF2rtF3xEUCY= Subject key identifier: AE:9A:EA:8C:3C:8F:DC:9A:86:52:FF:C5:C3:1C:14:BB:3C:CA:A3:95 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A67 Signing time: Sat 24 Jan 2026 19:06:19 +0000 Manifest this update: Sat 24 Jan 2026 19:06:19 +0000 Manifest next update: Sat 31 Jan 2026 19:06:19 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: 4ifLaHII83OasZg5cGzHLiUv5WGtfgRytck7iDSqLdg=) 2: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) 3: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: S+5qUnemcpQGoSOv79wtTvxOi8xqGPx0E74Y3KFGkhU=) 4: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: B5buB00YWWO2A2xnD3M5vrisGIi+aFvWdlZltMnylng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Jan 24 19:06:19 2026 GMT Not After : Jan 31 19:06:19 2026 GMT Subject: CN=6975182b-e336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:d8:c7:72:c7:17:79:4f:d2:b2:ad:f0:50: 5b:f1:e2:3d:8c:f9:1f:20:89:ee:82:f2:2a:c4:9a: 2a:b3:0c:d1:c1:36:28:5a:97:bf:c0:51:63:9b:1f: 6a:d8:24:81:4b:42:92:fe:af:67:0e:62:41:c0:13: b6:6e:b9:5e:f8:63:9a:48:d8:61:7d:d3:fe:70:d5: 6d:e5:15:1b:db:fb:03:ef:a5:1e:b0:82:c8:d4:36: ae:6c:f6:62:d2:b0:59:ba:86:e1:4a:48:1e:a0:0f: d3:cf:cd:90:d0:0e:37:7c:0f:11:3f:46:2f:e3:3c: 4a:ca:10:a7:17:7c:c3:d1:f9:81:f4:17:9a:6e:0e: f1:f8:3c:82:a3:c2:58:15:28:60:ee:8d:49:2c:e7: 75:48:62:06:12:86:72:e7:06:0d:87:66:84:b9:c6: 71:0c:b2:20:66:49:24:c5:94:46:24:b2:ac:8e:f5: 98:5c:6f:40:1c:94:fb:df:45:a0:05:57:0f:ee:25: e6:36:c2:72:2e:c0:c4:0d:da:a0:0f:d9:81:56:3e: 63:a4:58:ac:cd:99:86:9e:fc:b2:5e:82:ec:41:7c: 42:e0:c4:49:8d:8f:38:da:3d:46:70:4f:61:f9:03: 83:61:63:5a:2d:6a:ab:a8:b4:08:aa:35:a4:5f:fb: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9A:EA:8C:3C:8F:DC:9A:86:52:FF:C5:C3:1C:14:BB:3C:CA:A3:95 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c8:07:70:3e:cf:86:45:aa:ba:a6:f8:8f:a4:d7:9e:e9:20: 4d:0a:94:fd:c4:66:cd:61:51:2d:5c:76:38:94:ee:0e:ae:8b: 62:06:20:23:ab:bd:14:05:b8:fc:0b:02:cf:ac:d0:26:88:52: 0c:9f:d8:4a:0b:f4:fb:92:ea:8c:da:a0:0a:62:ea:3c:12:39: a4:52:c3:8c:00:61:40:7c:0a:33:e2:4e:fb:50:8f:6d:6f:aa: e4:97:a3:7a:32:35:23:b5:52:7a:94:ad:2f:3c:47:63:c3:dd: ac:12:a4:0f:21:f4:05:97:44:fd:29:39:ca:ba:f2:a4:88:46: ea:58:60:9e:f7:dd:2d:e3:45:73:de:53:cd:2f:28:f1:1d:2d: 6a:ce:f5:fb:40:98:ac:ea:8e:db:a4:a5:7c:a3:73:21:6d:94: e8:e2:15:21:ce:b8:3f:b5:83:b3:f7:70:3f:32:dd:26:7f:68: 0d:f2:e4:12:f0:1f:04:06:ee:89:56:98:5f:c1:bf:60:cb:3f: 6a:69:a8:e7:11:21:24:86:85:06:34:37:1f:4a:53:eb:0f:88: eb:0e:48:7d:ff:9a:85:ba:ce:0e:94:18:af:26:cc:05:33:63: 3e:61:6d:a9:54:35:31:76:fc:80:6c:f0:7f:0c:a4:d6:20:c8: 8b:c7:c0:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjYwMTI0MTkwNjE5WhcNMjYwMTMxMTkwNjE5WjAYMRYwFAYD VQQDDA02OTc1MTgyYi1lMzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3zYx3LHF3lP0rKt8FBb8eI9jPkfIInugvIqxJoqswzRwTYoWpe/wFFjmx9q 2CSBS0KS/q9nDmJBwBO2brle+GOaSNhhfdP+cNVt5RUb2/sD76UesILI1DaubPZi 0rBZuobhSkgeoA/Tz82Q0A43fA8RP0Yv4zxKyhCnF3zD0fmB9Beabg7x+DyCo8JY FShg7o1JLOd1SGIGEoZy5wYNh2aEucZxDLIgZkkkxZRGJLKsjvWYXG9AHJT730Wg BVcP7iXmNsJyLsDEDdqgD9mBVj5jpFiszZmGnvyyXoLsQXxC4MRJjY842j1GcE9h +QODYWNaLWqrqLQIqjWkX/vhEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6a6ow8 j9yahlL/xcMcFLs8yqOVMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGyAdwPs+GRaq6pviPpNee6SBNCpT9xGbNYVEtXHY4lO4OrotiBiAj q70UBbj8CwLPrNAmiFIMn9hKC/T7kuqM2qAKYuo8EjmkUsOMAGFAfAoz4k77UI9t b6rkl6N6MjUjtVJ6lK0vPEdjw92sEqQPIfQFl0T9KTnKuvKkiEbqWGCe990t40Vz 3lPNLyjxHS1qzvX7QJis6o7bpKV8o3MhbZTo4hUhzrg/tYOz93A/Mt0mf2gN8uQS 8B8EBu6JVphfwb9gyz9qaajnESEkhoUGNDcfSlPrD4jrDkh9/5qFus4OlBivJswF M2M+YW2pVDUxdvyAbPB/DKTWIMiLx8DJ -----END CERTIFICATE-----Generated at Sun Jan 25 09:56:55 2026 by rpki-client