This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: s19zsXpf4o56a6rFPOKReji8AAxEO9pnHGEi5cLuEwY= Subject key identifier: 65:5A:51:E9:5C:CD:71:00:8F:08:80:51:E1:BD:AA:1C:AA:72:E1:22 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1485 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 147C Signing time: Sat 24 Jan 2026 16:37:18 +0000 Manifest this update: Sat 24 Jan 2026 16:37:18 +0000 Manifest next update: Sat 31 Jan 2026 16:37:18 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: U+HN7h2leijFNcOVakzHRpr/g6kPgJ/887rTsbhtIGI=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5253 (0x1485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Jan 24 16:37:18 2026 GMT Not After : Jan 31 16:37:18 2026 GMT Subject: CN=6974f53e-9a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2a:7b:50:da:13:73:4b:52:16:c8:66:70:92: aa:49:aa:9e:9d:68:1a:e6:70:7a:d0:cd:00:d2:5b: 93:aa:df:74:e4:85:56:ee:fd:af:9a:36:d4:b0:eb: 5c:0f:7e:ce:cb:59:87:40:f1:dd:10:2c:76:f8:43: 7e:16:ac:1d:fe:c8:21:ac:ef:51:db:4d:34:30:c2: 7a:65:6c:a5:98:d2:de:c9:41:e8:27:a1:f5:2d:ba: 93:0a:b0:d4:a9:f6:8e:02:e5:77:4d:ab:a8:3d:62: a0:63:01:25:54:ad:a9:8b:08:a7:91:e3:8d:4f:04: d0:c8:a8:62:93:c8:b0:6e:5d:dd:ca:c8:9a:4a:8a: 33:53:74:da:a9:9d:f8:fe:02:21:52:f1:78:3a:2f: ba:17:94:f5:65:30:fe:88:f0:f2:0a:30:6c:92:9b: 18:06:5b:99:06:78:1b:66:40:5a:8e:b3:d3:dd:ea: 5f:88:c2:db:c5:60:55:f9:c1:88:7b:ac:fe:c5:02: 82:90:66:3f:1a:04:a3:0c:b4:00:28:b1:e9:16:43: 10:5c:b7:1e:fb:ad:f1:4c:77:ef:7e:83:79:b6:c6: 6d:6b:2b:ed:ec:c9:6c:3e:5d:56:97:79:00:46:0e: ba:1d:26:1e:cd:80:f3:64:cd:5e:89:d2:ec:43:43: 68:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5A:51:E9:5C:CD:71:00:8F:08:80:51:E1:BD:AA:1C:AA:72:E1:22 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:94:44:80:76:e5:30:77:7f:8a:13:18:29:c7:47:d6:bb:dc: 0b:87:4a:11:38:e5:69:7c:f5:32:ec:d6:7d:4f:5f:86:01:b8: 34:42:75:6c:31:b3:df:d9:02:41:e3:d4:55:ca:90:58:89:dc: fa:34:36:8a:0b:fc:2a:bc:4c:cd:22:a5:92:49:57:04:d9:96: cc:df:12:c6:d8:cc:cf:47:f4:a2:5e:8f:72:f2:f9:88:0f:5a: 11:22:d9:55:25:a4:e5:e5:1e:6d:2d:a3:2d:f4:3b:5c:1d:72: ff:e9:d5:b5:cf:6f:b6:d4:df:11:b0:a0:8d:a0:f3:72:dd:b5: 30:71:b9:e6:56:25:3a:f8:2f:b5:a5:19:2a:37:b5:b6:3a:5e: 4c:d6:be:ac:c0:7b:94:f1:4a:c1:96:ec:fa:1e:f8:70:d7:4a: 4e:20:ea:9c:c9:dc:df:4c:72:04:b3:a6:e4:91:2b:d8:85:9b: 7b:d3:12:db:b9:48:b8:65:bd:2f:f2:77:c7:f6:7b:a1:68:c8: eb:bc:1a:77:ea:fe:48:47:a0:e4:d0:dc:8d:ab:7b:be:51:47: 72:50:a7:18:e8:90:30:a4:bb:e0:04:ec:eb:99:b8:0f:6c:46: 2c:a7:5a:58:1a:f3:9b:bd:5d:8c:d9:8e:db:04:48:63:0f:d1: cc:d4:7a:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjYwMTI0MTYzNzE4WhcNMjYwMTMxMTYzNzE4WjAYMRYwFAYD VQQDDA02OTc0ZjUzZS05YTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmSp7UNoTc0tSFshmcJKqSaqenWga5nB60M0A0luTqt905IVW7v2vmjbUsOtc D37Oy1mHQPHdECx2+EN+Fqwd/sghrO9R2000MMJ6ZWylmNLeyUHoJ6H1LbqTCrDU qfaOAuV3TauoPWKgYwElVK2piwinkeONTwTQyKhik8iwbl3dysiaSoozU3TaqZ34 /gIhUvF4Oi+6F5T1ZTD+iPDyCjBskpsYBluZBngbZkBajrPT3epfiMLbxWBV+cGI e6z+xQKCkGY/GgSjDLQAKLHpFkMQXLce+63xTHfvfoN5tsZtayvt7MlsPl1Wl3kA Rg66HSYezYDzZM1eidLsQ0NoGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVaUelc zXEAjwiAUeG9qhyqcuEiMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6lESAduUwd3+KExgpx0fWu9wLh0oROOVpfPUy7NZ9T1+GAbg0QnVs MbPf2QJB49RVypBYidz6NDaKC/wqvEzNIqWSSVcE2ZbM3xLG2MzPR/SiXo9y8vmI D1oRItlVJaTl5R5tLaMt9DtcHXL/6dW1z2+21N8RsKCNoPNy3bUwcbnmViU6+C+1 pRkqN7W2Ol5M1r6swHuU8UrBluz6Hvhw10pOIOqcydzfTHIEs6bkkSvYhZt70xLb uUi4Zb0v8nfH9nuhaMjrvBp36v5IR6Dk0NyNq3u+UUdyUKcY6JAwpLvgBOzrmbgP bEYsp1pYGvObvV2M2Y7bBEhjD9HM1Hr1 -----END CERTIFICATE-----Generated at Sun Jan 25 22:06:50 2026 by rpki-client