This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft File: hhIZKNm0AeMdansgbrAWLThuBHI.mft (raw, json) Hash identifier: eGQm4Q0jJeHIJgUyiipC1JiTO2AZ16MaDKdbr7+Eroc= Subject key identifier: F7:B7:D8:16:73:77:FE:B1:17:43:40:3D:40:FF:1F:5F:0B:6B:4A:8A Authority key identifier: 86:12:19:28:D9:B4:01:E3:1D:6A:7B:20:6E:B0:16:2D:38:6E:04:72 Certificate issuer: /CN=A91B8C6C/serialNumber=86121928D9B401E31D6A7B206EB0162D386E0472 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft Manifest number: 19 Signing time: Sat 24 Jan 2026 15:01:33 +0000 Manifest this update: Sat 24 Jan 2026 15:01:32 +0000 Manifest next update: Sat 31 Jan 2026 15:01:32 +0000 Files and hashes: 1: hhIZKNm0AeMdansgbrAWLThuBHI.crl (hash: 1C3IX9wLRQYVbPgb9W/HqPVZaRf4d4xTLKSemEmAtoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.crl rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C6C, serialNumber=86121928D9B401E31D6A7B206EB0162D386E0472 Validity Not Before: Jan 24 15:01:32 2026 GMT Not After : Jan 31 15:01:32 2026 GMT Subject: CN=6974decd-f7c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d4:c7:3d:9d:4d:59:1d:ca:65:92:aa:72:96: bd:f2:c6:e5:ac:50:52:aa:de:01:bc:7a:9c:28:06: 8e:e0:df:33:a5:08:ea:e3:27:40:e9:73:17:24:a5: 8d:6a:42:c2:be:05:67:e0:c5:66:ae:22:b7:c1:6e: d7:f8:84:2b:18:f7:4a:01:75:14:2c:22:69:a9:73: 72:59:ab:9b:70:d5:e8:97:14:df:ef:e0:09:56:a4: d7:b9:1e:a6:e2:b9:6f:ee:9c:e8:e1:1d:cd:30:cd: bd:3e:2c:f6:4e:e4:dc:ff:9a:7a:ec:24:3c:02:41: 50:fd:8f:a1:87:ea:1f:6d:c6:32:e8:c0:31:47:e2: 84:8c:12:97:8f:b8:74:9c:11:4c:5f:92:fe:fc:e7: 56:18:a7:fa:6c:4a:bb:c9:e9:e0:4a:fd:df:a9:09: 42:01:68:5f:1a:68:2d:0e:13:12:8b:e8:ef:ac:c6: d6:1d:60:3f:a2:94:70:c7:bb:a9:d7:6b:41:3f:db: 79:93:83:29:75:4b:e5:a8:5b:0e:f6:7b:a6:fd:1c: 28:ab:89:e2:0f:1a:af:9f:c5:b4:28:2b:e8:0f:40: 22:49:c5:9e:f5:eb:16:38:b1:5a:c0:96:4e:28:78: f9:b4:2d:44:0a:83:53:39:c4:76:28:93:9c:05:10: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B7:D8:16:73:77:FE:B1:17:43:40:3D:40:FF:1F:5F:0B:6B:4A:8A X509v3 Authority Key Identifier: keyid:86:12:19:28:D9:B4:01:E3:1D:6A:7B:20:6E:B0:16:2D:38:6E:04:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c5:41:1d:d0:71:64:2f:c2:f9:4a:1c:d7:23:37:97:6d:e2: d5:62:44:e8:69:ac:b4:bc:60:82:59:54:93:b5:d1:f0:1f:ca: ca:a3:ca:26:d8:f3:11:12:d9:1c:4e:2f:1b:2a:7d:f7:d7:18: 45:96:d8:77:53:cf:50:c4:24:21:05:c8:b5:07:8e:e2:5d:c0: 7b:f2:ae:92:48:ed:8c:42:d9:a4:ec:41:c8:62:ee:28:87:df: 73:50:f9:e4:8d:fa:e1:8f:f1:f7:c8:a3:89:e6:40:d0:7e:fb: d5:5d:2d:81:c8:a0:2e:e3:78:8f:99:7a:21:5d:94:8b:fc:61: e4:ca:dd:5e:d5:f7:f3:ee:27:75:ab:74:77:2c:2e:ff:19:0e: af:d9:2f:1c:df:1b:77:27:8c:b5:de:73:41:31:38:1a:62:6e: 02:58:1e:0a:c0:4f:e1:eb:c6:1a:50:87:80:84:02:88:9d:e1: aa:80:f6:b5:58:a8:ed:0f:7e:9a:09:c2:70:25:8c:5d:83:69: 78:8f:a9:12:19:71:e7:6d:78:0a:6c:22:55:8b:a0:1a:ca:58: e5:2b:4e:53:df:18:df:39:ee:b1:25:c4:5b:93:1c:d2:52:cc: cf:0e:27:79:d4:97:cb:c6:c3:05:f3:5b:82:2a:f7:71:98:b5: f6:87:3f:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEM2QzExMC8GA1UEBRMoODYxMjE5MjhEOUI0MDFFMzFENkE3QjIwNkVCMDE2MkQz ODZFMDQ3MjAeFw0yNjAxMjQxNTAxMzJaFw0yNjAxMzExNTAxMzJaMBgxFjAUBgNV BAMMDTY5NzRkZWNkLWY3YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ1Mc9nU1ZHcplkqpylr3yxuWsUFKq3gG8epwoBo7g3zOlCOrjJ0DpcxckpY1q QsK+BWfgxWauIrfBbtf4hCsY90oBdRQsImmpc3JZq5tw1eiXFN/v4AlWpNe5Hqbi uW/unOjhHc0wzb0+LPZO5Nz/mnrsJDwCQVD9j6GH6h9txjLowDFH4oSMEpePuHSc EUxfkv7851YYp/psSrvJ6eBK/d+pCUIBaF8aaC0OExKL6O+sxtYdYD+ilHDHu6nX a0E/23mTgyl1S+WoWw72e6b9HCirieIPGq+fxbQoK+gPQCJJxZ716xY4sVrAlk4o ePm0LUQKg1M5xHYok5wFEJLZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU97fYFnN3 /rEXQ0A9QP8fXwtrSoowHwYDVR0jBBgwFoAUhhIZKNm0AeMdansgbrAWLThuBHIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QzZDLzMwQTU0RjZDRDY1 RjExRjBCMDZGRDhBMjBBQjQzRTEzL2hoSVpLTm0wQWVNZGFuc2dickFXTFRodUJI SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaGhJWktObTBBZU1kYW5zZ2JyQVdMVGh1QkhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QzZDLzMwQTU0RjZDRDY1RjExRjBCMDZGRDhBMjBBQjQzRTEzL2hoSVpLTm0wQWVN ZGFuc2dickFXTFRodUJISS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACvFQR3QcWQvwvlKHNcjN5dt4tViROhprLS8YIJZVJO10fAfysqjyibY 8xES2RxOLxsqfffXGEWW2HdTz1DEJCEFyLUHjuJdwHvyrpJI7YxC2aTsQchi7iiH 33NQ+eSN+uGP8ffIo4nmQNB++9VdLYHIoC7jeI+ZeiFdlIv8YeTK3V7V9/PuJ3Wr dHcsLv8ZDq/ZLxzfG3cnjLXec0ExOBpibgJYHgrAT+HrxhpQh4CEAoid4aqA9rVY qO0PfpoJwnAljF2DaXiPqRIZcedteApsIlWLoBrKWOUrTlPfGN857rElxFuTHNJS zM8OJ3nUl8vGwwXzW4Iq93GYtfaHP5o= -----END CERTIFICATE-----Generated at Sun Jan 25 13:00:38 2026 by rpki-client