This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: GW3c9qz6MGe5IAPNN0diNHqtAS+QE3EfPU+IVKBNYSA= Subject key identifier: 10:19:D2:69:A0:C1:B2:03:B9:A2:DB:15:A8:59:A6:64:DB:69:A8:3E Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: E8 Signing time: Fri 23 Jan 2026 04:35:38 +0000 Manifest this update: Fri 23 Jan 2026 04:35:37 +0000 Manifest next update: Fri 30 Jan 2026 04:35:37 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: hrWN2NoPDG/4DSioyWGKHhSxsGOJzmAFizabxfaghxI=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: Z1yPOrOVBAA0wAoiECPiJ9d5WH/bmXdgM8w0h3GaBUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Jan 23 04:35:37 2026 GMT Not After : Jan 30 04:35:37 2026 GMT Subject: CN=6972fa9a-c65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:34:14:92:a6:61:70:18:3d:2e:c5:6f:7f: 4b:dc:c6:ca:f0:e4:68:b9:52:63:d2:ba:ab:23:27: 53:c7:5e:5a:96:c0:cd:d8:53:83:3b:51:18:97:fe: ae:b7:a8:2b:ed:52:42:32:c3:e2:f0:4c:32:32:c5: 8e:62:be:a0:a6:cf:6e:15:35:1a:e7:dc:2a:91:9d: ac:88:e5:37:3a:57:9d:35:29:f8:4d:1c:e4:cf:73: 7a:1c:60:6f:9e:76:1f:ea:93:27:a3:e0:61:18:ed: bb:3a:fb:79:5d:17:69:49:68:17:c4:bc:fd:b8:27: 79:fe:a7:36:92:9c:cf:9a:8e:08:d7:52:83:29:4e: 88:a9:cd:49:ad:56:3a:df:82:cf:8a:db:94:9f:c8: 64:8e:88:4e:16:84:ec:75:c8:c6:84:cb:22:ab:e1: d6:9b:a0:4f:d2:71:ea:17:65:53:64:d8:85:68:f8: 45:02:18:e5:ce:ac:81:91:34:23:1a:34:e4:08:47: bd:bf:31:47:94:f5:dd:72:5f:3d:11:e0:5b:38:24: b3:d9:11:87:9c:2f:14:a1:03:ab:3c:53:a7:0d:cb: 5f:e3:80:be:07:71:47:8e:cf:10:08:3d:0a:94:b7: 57:45:ee:86:ba:dc:74:24:96:55:41:fe:dc:4d:40: a1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:19:D2:69:A0:C1:B2:03:B9:A2:DB:15:A8:59:A6:64:DB:69:A8:3E X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:b6:7f:c8:cc:ee:d3:c1:6c:a4:a1:83:92:34:0d:4b:eb:66: 3c:0c:9e:63:de:65:a8:cb:85:de:df:02:94:3c:14:95:8d:55: ae:60:98:1e:9e:bd:99:83:eb:75:c2:5b:d8:f8:84:16:55:5e: 6b:39:28:d3:b8:1f:89:d2:af:5a:8f:cc:a7:1a:fb:b4:eb:13: f0:af:bd:55:00:07:fd:ef:e8:fb:74:6b:43:56:64:65:99:44: a7:8e:f8:0f:e5:cf:fb:c0:78:51:c5:aa:da:d0:1c:40:46:f1: e9:78:b1:17:97:ce:1e:b2:14:99:73:17:15:c5:a5:fb:53:60: 21:95:ec:04:06:db:30:a9:bc:45:35:8c:71:07:ac:69:a2:14: 8a:2b:82:7e:72:1d:b5:08:83:c0:ab:30:3f:13:9a:78:26:a5: 96:ad:4c:be:53:c1:a7:b7:50:8f:7c:c9:48:4e:17:ae:d4:34: 5e:c3:12:61:6d:05:11:5a:8c:a7:24:b1:c5:c1:80:ab:0a:83: 43:1a:4c:db:0e:8a:bb:c5:c8:44:ed:8e:13:42:24:bd:ef:d9: 1d:d1:7b:e7:63:23:58:16:54:19:6c:a0:58:22:77:08:16:46: 37:3c:87:15:12:4f:5e:30:b7:eb:ee:00:e8:14:09:c6:75:ff: aa:49:3f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjYwMTIzMDQzNTM3WhcNMjYwMTMwMDQzNTM3WjAYMRYwFAYD VQQDDA02OTcyZmE5YS1jNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH00FJKmYXAYPS7Fb39L3MbK8ORouVJj0rqrIydTx15alsDN2FODO1EYl/6u t6gr7VJCMsPi8EwyMsWOYr6gps9uFTUa59wqkZ2siOU3OledNSn4TRzkz3N6HGBv nnYf6pMno+BhGO27Ovt5XRdpSWgXxLz9uCd5/qc2kpzPmo4I11KDKU6Iqc1JrVY6 34LPituUn8hkjohOFoTsdcjGhMsiq+HWm6BP0nHqF2VTZNiFaPhFAhjlzqyBkTQj GjTkCEe9vzFHlPXdcl89EeBbOCSz2RGHnC8UoQOrPFOnDctf44C+B3FHjs8QCD0K lLdXRe6Gutx0JJZVQf7cTUChjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAZ0mmg wbIDuaLbFahZpmTbaag+MB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEtn/IzO7TwWykoYOSNA1L62Y8DJ5j3mWoy4Xe3wKUPBSVjVWuYJge nr2Zg+t1wlvY+IQWVV5rOSjTuB+J0q9aj8ynGvu06xPwr71VAAf97+j7dGtDVmRl mUSnjvgP5c/7wHhRxara0BxARvHpeLEXl84eshSZcxcVxaX7U2AhlewEBtswqbxF NYxxB6xpohSKK4J+ch21CIPAqzA/E5p4JqWWrUy+U8Gnt1CPfMlITheu1DRewxJh bQURWoynJLHFwYCrCoNDGkzbDoq7xchE7Y4TQiS979kd0XvnYyNYFlQZbKBYIncI FkY3PIcVEk9eMLfr7gDoFAnGdf+qST9y -----END CERTIFICATE-----Generated at Sun Jan 25 06:14:55 2026 by rpki-client