This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: TRHZxdvCtlGvH05WABOOf3LhI8TgnovioSOKnhZbgwo= Subject key identifier: 67:18:75:8A:A9:BF:1E:5E:99:EA:14:3F:57:4D:49:52:BD:F2:C1:D8 Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 359D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 3554 Signing time: Sat 24 Jan 2026 14:37:00 +0000 Manifest this update: Sat 24 Jan 2026 14:36:59 +0000 Manifest next update: Sat 31 Jan 2026 14:36:59 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: bu/RmSguF/ONyIilrGMfiJ4UlHhFC9fWISNTGH9YO9E=) 2: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: Kgqe2j6IHwMDhGgmbFi5UiveUmKiCe0XXLEEC0ovFyU=) 3: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: o+SVOkw4B+Pgr5TLQfMcQYEp6f3Jn3P38kWJLEEf/tQ=) 4: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: HhPaW5eoa8YAXMCyUgrMCG4GBbrYuP09obNUWTvTJmo=) 5: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: qZJPfG2amv1YRehnUzdlHxLOWwvXz8+dMtqCKRYUJpM=) 6: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: uxN4zJEmGXmB/qpIp2ey6SpNrf4s6W/tukdRHW9gvLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13725 (0x359d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Jan 24 14:36:59 2026 GMT Not After : Jan 31 14:36:59 2026 GMT Subject: CN=6974d90c-6ad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8f:7b:dc:76:8e:a4:07:59:59:fa:c2:64:ee: 90:6a:02:1b:c7:0d:08:af:e0:cf:51:7b:df:30:3f: 11:58:ed:ff:55:d2:8f:cf:d3:7a:31:fa:ec:18:be: b1:7e:77:6e:41:54:e2:04:36:d1:a1:f7:d8:82:e0: e7:64:61:22:b5:1c:b7:b1:f4:6b:b3:a0:b1:47:aa: 94:5a:39:31:ae:f6:95:39:4e:f3:36:7b:35:1c:14: c1:fe:f3:9e:b7:12:48:41:39:60:39:0d:e5:8f:c3: 99:af:e3:36:89:1d:45:0e:ec:67:28:71:4b:0e:4a: 24:fc:d3:7d:86:8b:25:e5:10:0a:8a:3e:5f:67:04: fe:5a:72:56:aa:f1:17:ce:30:a4:71:a6:60:63:33: 1c:e9:f4:7e:d2:31:53:e6:f6:d2:c3:60:3a:1d:73: c2:d7:70:b0:6e:50:40:5c:a9:40:87:7c:4f:01:71: f5:8a:be:4f:7f:47:7f:69:b4:b1:23:47:46:d5:97: 74:07:4a:72:a6:92:b8:88:f1:44:6b:77:19:e4:79: b9:60:2a:87:0b:4b:87:b5:26:64:e9:be:dd:7e:99: 78:ed:54:cd:e6:43:00:73:6d:4e:ad:57:a5:ce:50: f7:b2:70:66:a5:f3:4f:c7:b9:16:cc:ac:f4:da:64: ed:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:18:75:8A:A9:BF:1E:5E:99:EA:14:3F:57:4D:49:52:BD:F2:C1:D8 X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:2d:d3:47:0c:ab:5b:ff:84:67:80:78:3e:7e:07:ea:87:9e: a8:d5:fc:82:30:e7:e6:b7:03:ef:05:f8:fb:bf:53:fc:2d:ce: c6:94:0a:f9:e0:12:cc:e9:47:e0:78:a2:bb:bd:f9:a1:b4:a6: 44:7c:a9:81:4b:97:5d:5e:d1:f7:a0:6b:e3:51:a6:49:17:cf: 48:0c:78:6e:53:d8:4d:7c:65:45:de:56:a3:94:1b:d4:32:10: cd:c4:d4:52:60:56:1f:1c:bc:c4:3e:ef:c5:37:d2:03:83:9e: 9c:de:12:a9:00:2d:86:f4:ed:b8:17:c4:3a:c0:13:19:9c:fe: a1:5f:bd:ad:fa:d0:2b:94:7d:25:90:d1:f2:44:af:7e:ef:3e: 24:51:d5:6e:b3:f8:db:d9:c9:e1:3b:a4:2f:2b:cc:2b:08:62: b6:d4:d7:e6:07:d6:4b:8b:59:e9:4f:ca:14:71:f3:83:63:2a: 8d:84:da:cb:30:39:f0:cc:a4:88:3d:f4:83:8f:c4:02:8e:ae: 7e:43:bb:12:ab:a1:25:19:a8:00:5b:34:8a:c3:00:74:19:1b: 40:5c:5e:79:6f:fd:09:a1:6d:b9:04:7a:c3:68:b6:d2:f6:04: a7:f8:b4:52:93:e8:0e:ed:2b:7c:1e:bd:8f:0a:a0:6b:de:e7: 66:86:19:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjYwMTI0MTQzNjU5WhcNMjYwMTMxMTQzNjU5WjAYMRYwFAYD VQQDDA02OTc0ZDkwYy02YWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqo973HaOpAdZWfrCZO6QagIbxw0Ir+DPUXvfMD8RWO3/VdKPz9N6MfrsGL6x fnduQVTiBDbRoffYguDnZGEitRy3sfRrs6CxR6qUWjkxrvaVOU7zNns1HBTB/vOe txJIQTlgOQ3lj8OZr+M2iR1FDuxnKHFLDkok/NN9hosl5RAKij5fZwT+WnJWqvEX zjCkcaZgYzMc6fR+0jFT5vbSw2A6HXPC13CwblBAXKlAh3xPAXH1ir5Pf0d/abSx I0dG1Zd0B0pyppK4iPFEa3cZ5Hm5YCqHC0uHtSZk6b7dfpl47VTN5kMAc21OrVel zlD3snBmpfNPx7kWzKz02mTt8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcYdYqp vx5emeoUP1dNSVK98sHYMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBLdNHDKtb/4RngHg+fgfqh56o1fyCMOfmtwPvBfj7v1P8Lc7GlAr5 4BLM6UfgeKK7vfmhtKZEfKmBS5ddXtH3oGvjUaZJF89IDHhuU9hNfGVF3lajlBvU MhDNxNRSYFYfHLzEPu/FN9IDg56c3hKpAC2G9O24F8Q6wBMZnP6hX72t+tArlH0l kNHyRK9+7z4kUdVus/jb2cnhO6QvK8wrCGK21NfmB9ZLi1npT8oUcfODYyqNhNrL MDnwzKSIPfSDj8QCjq5+Q7sSq6ElGagAWzSKwwB0GRtAXF55b/0JoW25BHrDaLbS 9gSn+LRSk+gO7St8Hr2PCqBr3udmhhmB -----END CERTIFICATE-----Generated at Sun Jan 25 11:16:26 2026 by rpki-client