This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: ehTbbBNCzzsyQ1SxIA/mp1+vYS2uCm7ORSQuLAPerc8= Subject key identifier: 8A:2B:AC:54:B2:F2:8D:2F:C5:AA:E3:8C:C6:FE:34:CB:62:2D:31:8E Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: D3 Signing time: Fri 23 Jan 2026 04:53:00 +0000 Manifest this update: Fri 23 Jan 2026 04:52:59 +0000 Manifest next update: Fri 30 Jan 2026 04:52:59 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: 2nlZXYlZNFmGfc4bIerp4VJJDKC34D+99jD7O+MVf4w=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: ztHcyied63n5u52LWMJ9U0s6jM6YVpsvBanXfX0Gx6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Jan 23 04:52:59 2026 GMT Not After : Jan 30 04:52:59 2026 GMT Subject: CN=6972feab-8937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:37:03:4a:5c:0f:35:c0:9a:a0:19:24:ff:67: 9b:c1:1e:60:ad:67:4a:99:c3:4e:0b:00:b8:05:d7: 3a:e7:25:79:e9:da:e3:c7:a9:7e:6f:1f:ab:1d:aa: 20:16:3e:3f:4d:8d:e9:47:26:f5:eb:14:be:ed:cc: 02:ae:1d:a8:14:a8:3b:41:9d:55:c3:61:0b:eb:04: 22:64:a2:b1:84:8b:08:59:56:94:68:57:67:e8:5f: 7a:1c:8a:6e:72:79:7d:88:6a:a6:00:34:04:c9:ba: 78:ca:bc:bf:b6:56:34:c9:54:8e:73:36:ea:74:06: ad:b4:a7:a9:a3:60:ba:0d:a2:f9:5e:f6:8f:cd:c6: fe:40:51:bf:ad:57:ed:09:0b:51:07:d6:96:9d:69: 48:cb:91:58:0b:4f:4c:9f:3a:6d:b8:67:c3:3f:07: 8d:53:1b:94:7e:0a:cd:35:05:09:4e:26:7e:4d:14: c0:80:9f:11:40:ad:70:bd:55:1c:fb:38:85:de:98: ad:fb:be:41:05:de:52:f7:41:6c:28:d4:40:32:65: f0:b8:27:df:44:85:b0:77:7e:ee:f5:d6:18:84:09: 0d:14:61:ba:5a:5b:6a:9b:e1:07:c4:78:e4:f6:ea: 06:86:19:d7:fa:6e:6c:8c:86:9d:79:85:7b:06:a6: 19:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2B:AC:54:B2:F2:8D:2F:C5:AA:E3:8C:C6:FE:34:CB:62:2D:31:8E X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:12:98:0c:76:10:78:42:50:41:5d:cb:2b:d6:f2:0c:d7:aa: ea:36:2c:a9:39:34:07:7f:0d:01:46:44:18:b5:48:70:40:27: 24:3e:07:69:61:00:2d:0c:80:62:2b:e5:65:cc:c3:fb:d6:1d: 6e:d8:d6:0f:41:aa:be:18:c8:b0:21:53:b3:bb:6a:fb:20:40: 83:80:49:1e:c8:ab:6c:c9:53:03:4b:d6:1c:ce:0d:87:c6:86: 15:1a:ef:d8:4b:a8:89:e8:2a:19:5d:f9:be:c9:4c:5d:97:8e: ba:09:32:81:db:e1:9b:73:d1:c4:12:68:1a:bd:d5:9a:f8:42: 71:58:48:9e:0e:17:5e:d5:7b:fc:c0:36:c0:cd:48:64:e6:fe: 5f:87:71:d4:60:40:c4:83:e9:19:56:b0:a1:1d:44:c6:35:05: e5:19:af:fa:fc:7b:98:eb:2e:c5:01:06:b7:7b:d8:61:c9:4d: 64:f6:55:87:ff:2f:fe:8b:29:b4:79:71:37:a8:5d:d5:53:6b: 85:fa:5d:84:9f:a5:77:56:a1:bc:e9:62:8d:1f:cd:6f:b7:cc: d7:f7:a2:62:17:28:9c:35:3a:79:50:92:fc:19:b3:9d:fc:4c: 29:4c:32:7a:6c:0c:40:94:d6:81:cc:78:55:9b:5a:27:79:4c: ae:59:22:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjYwMTIzMDQ1MjU5WhcNMjYwMTMwMDQ1MjU5WjAYMRYwFAYD VQQDDA02OTcyZmVhYi04OTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTcDSlwPNcCaoBkk/2ebwR5grWdKmcNOCwC4Bdc65yV56drjx6l+bx+rHaog Fj4/TY3pRyb16xS+7cwCrh2oFKg7QZ1Vw2EL6wQiZKKxhIsIWVaUaFdn6F96HIpu cnl9iGqmADQEybp4yry/tlY0yVSOczbqdAattKepo2C6DaL5XvaPzcb+QFG/rVft CQtRB9aWnWlIy5FYC09MnzptuGfDPweNUxuUfgrNNQUJTiZ+TRTAgJ8RQK1wvVUc +ziF3pit+75BBd5S90FsKNRAMmXwuCffRIWwd37u9dYYhAkNFGG6Wltqm+EHxHjk 9uoGhhnX+m5sjIadeYV7BqYZEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIorrFSy 8o0vxarjjMb+NMtiLTGOMB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNEpgMdhB4QlBBXcsr1vIM16rqNiypOTQHfw0BRkQYtUhwQCckPgdp YQAtDIBiK+VlzMP71h1u2NYPQaq+GMiwIVOzu2r7IECDgEkeyKtsyVMDS9Yczg2H xoYVGu/YS6iJ6CoZXfm+yUxdl466CTKB2+Gbc9HEEmgavdWa+EJxWEieDhde1Xv8 wDbAzUhk5v5fh3HUYEDEg+kZVrChHUTGNQXlGa/6/HuY6y7FAQa3e9hhyU1k9lWH /y/+iym0eXE3qF3VU2uF+l2En6V3VqG86WKNH81vt8zX96JiFyicNTp5UJL8GbOd /EwpTDJ6bAxAlNaBzHhVm1oneUyuWSKD -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:01 2026 by rpki-client