This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: baXqcTf8eHuWDbl+LvJZ5s/wE//eXaFgEJTOVurODe0= Subject key identifier: 1E:BA:38:7C:05:0E:09:0A:BF:98:85:59:48:A3:5C:28:2B:CF:CA:CB Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 13EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13C2 Signing time: Sat 24 Jan 2026 16:42:54 +0000 Manifest this update: Sat 24 Jan 2026 16:42:53 +0000 Manifest next update: Sat 31 Jan 2026 16:42:53 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: /dwF60219VKvvO5wcuXQYe2HYOv9QihBFq8Jql1bQUI=) 2: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 3: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 4: 999C6728F7FF11F08B2BFA086C6F56BC.roa (hash: JMYoiPgZ4D6d5svYKaLJAtarxSAlkwCtseQ1yoQUexc=) 5: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: Ffnj+zOGgq1oedlwlSd7SpvjdDFAQjYqDXo5P3GfYVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5103 (0x13ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Jan 24 16:42:53 2026 GMT Not After : Jan 31 16:42:53 2026 GMT Subject: CN=6974f68e-604c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:83:92:03:f3:1e:7a:c5:c1:06:e3:ce:a9:50: 82:ee:27:dc:63:83:cc:84:d2:56:e8:84:23:6b:43: 65:5b:cc:a2:ec:20:b9:4e:03:0f:aa:67:b6:42:a2: 6e:75:f3:63:26:61:ea:9c:5d:78:28:9f:f0:ff:b3: f8:f2:bc:e5:31:8a:c7:c5:66:1e:89:4a:48:fe:c7: f3:e7:37:63:44:23:21:ac:fa:45:9f:35:fe:e9:f3: 11:2a:3e:9a:b1:68:b7:50:9a:b4:33:b3:a1:18:28: 67:28:61:e2:20:f6:e0:57:3e:c4:97:94:57:6b:27: 5b:e8:83:46:7f:35:a3:37:80:b7:ab:82:a4:16:e7: 76:91:95:32:ba:09:36:e8:38:34:04:75:a6:87:76: 83:29:cb:da:29:dc:c1:5a:1e:6f:e7:c9:26:58:27: 57:04:e0:e7:e4:01:fb:19:52:6b:b9:30:59:d6:b9: a8:76:2d:31:20:75:81:1c:4e:f6:c4:ec:71:38:51: cd:c7:af:97:f2:2b:15:50:71:c1:e0:77:fe:f8:97: 38:6c:4e:f4:0d:2b:ca:aa:b8:5e:85:9c:d6:94:6a: dc:2d:70:45:d6:e2:8d:e2:5a:52:3d:f3:1a:22:bc: ac:d3:3a:f3:ef:77:20:55:16:d6:da:1c:8d:38:cf: ad:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BA:38:7C:05:0E:09:0A:BF:98:85:59:48:A3:5C:28:2B:CF:CA:CB X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:0e:12:d7:41:bf:5c:fb:49:f7:b5:17:13:f4:fe:27:c0:6f: 9a:3c:77:0f:9a:0f:09:5f:c4:72:17:e7:f2:c1:03:d0:dd:fb: cd:2f:f4:da:e2:c1:bf:a1:55:6d:eb:5c:8a:e4:fa:d2:e5:c4: 46:80:3a:9c:c2:d8:f4:a5:6a:7c:d8:46:99:ba:88:aa:57:20: 58:da:c0:af:77:41:95:c2:78:da:34:20:ab:34:25:8f:21:84: 79:cd:f3:46:e9:fa:4b:a2:f0:ef:99:da:7f:f7:f4:fd:ad:b3: 63:8f:4e:72:4e:55:6b:17:40:b7:06:9e:63:75:ca:7a:28:66: 49:3c:9a:ef:49:b7:bb:ba:9f:b8:1a:a0:8d:87:b7:2f:fc:5e: c5:20:18:47:7d:02:3d:6b:1d:2e:e5:6d:11:1a:06:a6:ca:b3: 96:40:d6:08:b2:5e:a8:af:81:fc:e2:1f:58:50:5d:db:3d:0b: 5d:fb:e0:18:a5:32:45:7f:fd:c4:54:0a:3e:ea:2a:4f:e6:cb: eb:09:d2:73:a7:8f:06:be:2e:8b:4b:dc:1a:27:60:1d:5d:e1: f3:66:f8:45:21:fb:1f:46:08:28:db:1f:16:2b:38:22:50:9a: bd:2b:c6:bd:e2:82:2c:c1:15:a5:cc:dc:2b:b1:ab:18:ba:5f: e2:61:a3:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwMTI0MTY0MjUzWhcNMjYwMTMxMTY0MjUzWjAYMRYwFAYD VQQDDA02OTc0ZjY4ZS02MDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54OSA/MeesXBBuPOqVCC7ifcY4PMhNJW6IQja0NlW8yi7CC5TgMPqme2QqJu dfNjJmHqnF14KJ/w/7P48rzlMYrHxWYeiUpI/sfz5zdjRCMhrPpFnzX+6fMRKj6a sWi3UJq0M7OhGChnKGHiIPbgVz7El5RXaydb6INGfzWjN4C3q4KkFud2kZUyugk2 6Dg0BHWmh3aDKcvaKdzBWh5v58kmWCdXBODn5AH7GVJruTBZ1rmodi0xIHWBHE72 xOxxOFHNx6+X8isVUHHB4Hf++Jc4bE70DSvKqrhehZzWlGrcLXBF1uKN4lpSPfMa Irys0zrz73cgVRbW2hyNOM+t7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB66OHwF DgkKv5iFWUijXCgrz8rLMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARDhLXQb9c+0n3tRcT9P4nwG+aPHcPmg8JX8RyF+fywQPQ3fvNL/Ta 4sG/oVVt61yK5PrS5cRGgDqcwtj0pWp82EaZuoiqVyBY2sCvd0GVwnjaNCCrNCWP IYR5zfNG6fpLovDvmdp/9/T9rbNjj05yTlVrF0C3Bp5jdcp6KGZJPJrvSbe7up+4 GqCNh7cv/F7FIBhHfQI9ax0u5W0RGgamyrOWQNYIsl6or4H84h9YUF3bPQtd++AY pTJFf/3EVAo+6ipP5svrCdJzp48Gvi6LS9waJ2AdXeHzZvhFIfsfRggo2x8WKzgi UJq9K8a94oIswRWlzNwrsasYul/iYaOZ -----END CERTIFICATE-----Generated at Sun Jan 25 10:33:28 2026 by rpki-client