This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: gZ6cZKGu3xPWs8UtXQA0LPovC6De3Px0UMt4kprF05M= Subject key identifier: 12:89:F7:41:05:60:8F:5D:EB:CC:2E:DB:48:5D:37:30:45:88:D3:23 Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: 65 Signing time: Fri 23 Jan 2026 06:03:32 +0000 Manifest this update: Fri 23 Jan 2026 06:03:31 +0000 Manifest next update: Fri 30 Jan 2026 06:03:31 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: QJ66nJtF/Q3QnSmDgIFxfr7NHduAGXBE8jKqGy1tyio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: Jan 23 06:03:31 2026 GMT Not After : Jan 30 06:03:31 2026 GMT Subject: CN=69730f34-3483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e5:de:2e:85:59:29:a4:2c:98:5c:69:28:3e: e8:f5:8e:2e:16:b2:04:5c:57:38:78:a5:a7:25:ee: 67:72:05:71:d8:1b:90:41:94:c1:19:49:c4:7e:06: 42:2d:ff:13:a9:3d:e9:7d:8e:7d:65:15:b2:6d:22: eb:e7:8b:5a:e8:e4:31:60:e8:28:e3:30:c3:21:05: 33:58:8a:e0:12:29:74:3f:d8:a8:2d:0d:81:7d:c7: 2b:26:36:a1:7b:85:09:ee:85:fe:fb:28:2e:01:08: a3:da:88:99:0a:54:53:29:a9:5e:62:f2:53:5a:06: 1e:6e:43:d0:50:6c:34:77:9f:f7:26:d9:c6:73:dd: 17:80:36:f4:83:bf:f5:c2:b9:1a:30:31:ef:5b:1d: e4:c5:bf:53:07:d5:f4:82:01:7d:95:80:58:72:b6: d9:7d:c9:8f:dd:e8:83:33:eb:15:f5:43:7b:29:66: 49:ec:e3:9e:7a:da:92:d8:88:4c:f0:ef:19:e8:d9: f9:b4:b1:6a:d4:18:8a:ab:2e:fd:82:f9:9f:15:b7: 8d:d7:b0:4c:f8:97:7b:41:5e:a3:e3:67:f4:9e:aa: 91:60:bb:3b:6a:8b:9f:3d:a1:0f:e3:46:09:2d:68: 71:e7:ec:78:3d:ca:09:0e:98:69:a3:7d:5f:15:5a: 4a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:89:F7:41:05:60:8F:5D:EB:CC:2E:DB:48:5D:37:30:45:88:D3:23 X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8b:62:06:cf:35:32:f7:39:b0:73:42:3e:6b:39:cc:22:37: 1f:af:1f:d0:d5:0d:4f:1f:6c:76:7d:c7:6e:ed:0c:28:24:30: 9a:68:03:de:1d:5a:62:8e:a9:24:66:d8:09:2e:38:bd:b5:ce: e2:73:1b:9a:49:0b:c8:85:f7:25:37:72:78:c0:9a:22:5a:ba: 9b:d6:ca:c5:16:07:2c:a0:ad:d9:17:2d:82:97:74:e5:25:eb: e8:85:65:83:71:1b:ff:ae:ce:d3:de:2a:7d:44:59:25:77:d3: 0d:01:46:da:16:67:60:f6:a0:e2:f8:1a:91:9b:c8:22:43:72: 0a:2a:78:c5:10:18:85:4c:45:4c:ac:04:84:42:2d:7c:3f:15: be:4f:3d:f4:98:52:38:0f:ca:50:75:8b:5c:bf:d7:e9:4a:8e: bc:a4:e8:6f:e9:6b:8b:42:e4:17:7d:fe:09:1d:4a:33:f4:19: 0a:4c:4a:27:b6:24:0c:e6:d7:d5:19:d1:ba:31:8f:17:59:18: 20:ec:ad:35:2a:14:27:88:9c:fb:8c:35:0c:77:93:6b:7c:a2: de:3d:6b:ae:47:12:bf:e8:51:36:91:84:8f:8a:73:0d:89:f7: b5:ff:ec:93:3b:ee:1f:1b:06:92:c7:65:88:78:fc:bf:df:7d: 6d:ec:b6:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlDNTExMC8GA1UEBRMoODZEOTVGNDFFRDE5ODFGQThEMEI1OTA4RDY0NDQ2NTEw RTZFQUM3RDAeFw0yNjAxMjMwNjAzMzFaFw0yNjAxMzAwNjAzMzFaMBgxFjAUBgNV BAMMDTY5NzMwZjM0LTM0ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK5d4uhVkppCyYXGkoPuj1ji4WsgRcVzh4pacl7mdyBXHYG5BBlMEZScR+BkIt /xOpPel9jn1lFbJtIuvni1ro5DFg6CjjMMMhBTNYiuASKXQ/2KgtDYF9xysmNqF7 hQnuhf77KC4BCKPaiJkKVFMpqV5i8lNaBh5uQ9BQbDR3n/cm2cZz3ReANvSDv/XC uRowMe9bHeTFv1MH1fSCAX2VgFhyttl9yY/d6IMz6xX1Q3spZkns45562pLYiEzw 7xno2fm0sWrUGIqrLv2C+Z8Vt43XsEz4l3tBXqPjZ/SeqpFguztqi589oQ/jRgkt aHHn7Hg9ygkOmGmjfV8VWkoVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEon3QQVg j13rzC7bSF03MEWI0yMwHwYDVR0jBBgwFoAUhtlfQe0ZgfqNC1kI1kRGUQ5urH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUM1LzA2MDNFNUJFNURC QzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHRsZlFlMFpnZnFOQzFrSTFrUkdVUTV1ckgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUM1LzA2MDNFNUJFNURCQzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2Zx TkMxa0kxa1JHVVE1dXJIMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFeLYgbPNTL3ObBzQj5rOcwiNx+vH9DVDU8fbHZ9x27tDCgkMJpoA94d WmKOqSRm2AkuOL21zuJzG5pJC8iF9yU3cnjAmiJaupvWysUWByygrdkXLYKXdOUl 6+iFZYNxG/+uztPeKn1EWSV30w0BRtoWZ2D2oOL4GpGbyCJDcgoqeMUQGIVMRUys BIRCLXw/Fb5PPfSYUjgPylB1i1y/1+lKjryk6G/pa4tC5Bd9/gkdSjP0GQpMSie2 JAzm19UZ0boxjxdZGCDsrTUqFCeInPuMNQx3k2t8ot49a65HEr/oUTaRhI+Kcw2J 97X/7JM77h8bBpLHZYh4/L/ffW3stkI= -----END CERTIFICATE-----Generated at Sun Jan 25 02:58:14 2026 by rpki-client