This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: nPb3t7YRCVXu8jydASbGPCK1i3odmWoUUAEeVxuBJ1g= Subject key identifier: 18:54:D4:25:C4:E9:C8:3C:F1:31:C3:3F:1C:40:03:BD:EE:10:92:26 Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 023D Signing time: Sun 25 Jan 2026 01:11:10 +0000 Manifest this update: Sun 25 Jan 2026 01:11:09 +0000 Manifest next update: Sun 01 Feb 2026 01:11:09 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: vTmMvoOb+rXEGN9c1Ole82qC2TNqyzeBbhjTHWTRnT8=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: 7pCgR/cmZIc+p6bdyfOA8oW1wmow9QO2brSMHQOnEk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3, serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: Jan 25 01:11:09 2026 GMT Not After : Feb 1 01:11:09 2026 GMT Subject: CN=69756dad-f5be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3a:b2:e6:da:be:a1:6c:af:e9:31:1d:67:5e: e7:6f:18:5d:d5:8b:09:7f:5f:b3:a0:1d:40:45:fd: c5:0a:f1:81:4a:75:f6:ae:c3:00:0d:c0:98:79:93: 73:ed:fa:1e:7e:81:4e:51:fb:41:27:a0:2e:8f:d0: 77:5b:c5:62:2a:85:ed:1f:01:7f:e6:f2:41:a9:e5: dc:f2:51:5a:03:53:58:ca:01:16:c8:86:5e:41:b9: 06:6c:e5:08:84:14:11:a6:70:f9:f1:11:e8:c8:c8: 11:b0:4b:2f:1e:bb:e2:b8:bb:bb:61:45:57:78:96: dc:53:a0:c1:2e:7e:42:4e:c1:b5:d1:95:ab:e4:d9: 7d:97:c8:fd:d3:af:a4:f1:26:de:08:b7:a1:e9:6f: 17:ce:98:5b:74:dc:4d:b5:12:0c:f3:79:4f:8d:6f: de:4a:7b:8f:f7:4e:5e:7f:c6:32:23:d8:39:2e:4d: 08:c0:45:90:60:c5:55:a9:db:43:12:94:68:ca:ca: 4b:4f:9f:b6:7a:8e:c7:5d:17:88:7d:b2:e4:43:43: cc:35:fb:f0:f0:a9:51:f7:83:dc:6a:e0:96:c8:17: 98:ad:b6:fc:fe:81:96:e1:94:86:86:a6:f8:e9:26: 12:63:6f:7b:72:da:37:1e:94:ba:ee:bc:c2:aa:4f: 4a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:54:D4:25:C4:E9:C8:3C:F1:31:C3:3F:1C:40:03:BD:EE:10:92:26 X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:2c:5a:0d:14:0d:52:a1:45:a3:13:ab:67:02:f5:da:3b:84: bc:1a:29:d9:a0:0b:2b:69:ec:91:bb:d0:01:fd:fa:f6:4f:19: aa:2a:97:86:ae:f8:71:42:a2:c0:18:7a:2e:1d:54:90:a6:62: a1:d7:93:78:52:91:fe:e9:fa:a1:ca:a1:8f:57:81:9f:16:0f: 3b:05:b7:ea:79:53:26:33:23:6b:55:2c:8b:3b:02:48:80:9c: 9e:db:0b:e5:8b:9b:93:2a:9c:5f:8e:7d:17:b4:97:e3:87:c8: 86:c2:13:19:4d:79:6c:48:37:a9:94:af:7d:bb:e1:5c:5a:34: b8:9a:5a:86:3a:ca:fc:26:1f:78:05:bb:f7:19:af:c4:64:29: 03:7a:07:d4:4b:33:07:80:b9:dc:4f:4d:2d:28:1e:b8:c0:af: ed:ee:e3:8f:87:b3:f1:c7:d5:15:eb:6b:eb:45:4d:12:31:fd: 36:ce:7b:e8:00:47:07:c2:13:b1:bb:3e:f4:ad:65:24:9f:96: 7e:c6:97:74:be:49:64:71:df:a8:dc:d5:d3:36:0e:f9:1d:57: 43:f5:a4:ce:82:10:e3:eb:86:e7:82:dd:d5:89:c7:25:68:a7: e4:6a:2f:a9:f3:a1:33:14:d6:fa:7c:83:ca:16:40:6a:3f:17: a3:b9:73:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjYwMTI1MDExMTA5WhcNMjYwMjAxMDExMTA5WjAYMRYwFAYD VQQDDA02OTc1NmRhZC1mNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzqy5tq+oWyv6TEdZ17nbxhd1YsJf1+zoB1ARf3FCvGBSnX2rsMADcCYeZNz 7foefoFOUftBJ6Auj9B3W8ViKoXtHwF/5vJBqeXc8lFaA1NYygEWyIZeQbkGbOUI hBQRpnD58RHoyMgRsEsvHrviuLu7YUVXeJbcU6DBLn5CTsG10ZWr5Nl9l8j906+k 8SbeCLeh6W8XzphbdNxNtRIM83lPjW/eSnuP905ef8YyI9g5Lk0IwEWQYMVVqdtD EpRoyspLT5+2eo7HXReIfbLkQ0PMNfvw8KlR94PcauCWyBeYrbb8/oGW4ZSGhqb4 6SYSY297cto3HpS67rzCqk9KCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhU1CXE 6cg88THDPxxAA73uEJImMB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPLFoNFA1SoUWjE6tnAvXaO4S8GinZoAsraeyRu9AB/fr2TxmqKpeG rvhxQqLAGHouHVSQpmKh15N4UpH+6fqhyqGPV4GfFg87BbfqeVMmMyNrVSyLOwJI gJye2wvli5uTKpxfjn0XtJfjh8iGwhMZTXlsSDeplK99u+FcWjS4mlqGOsr8Jh94 Bbv3Ga/EZCkDegfUSzMHgLncT00tKB64wK/t7uOPh7Pxx9UV62vrRU0SMf02znvo AEcHwhOxuz70rWUkn5Z+xpd0vklkcd+o3NXTNg75HVdD9aTOghDj64bngt3Viccl aKfkai+p86EzFNb6fIPKFkBqPxejuXNw -----END CERTIFICATE-----Generated at Sun Jan 25 20:34:24 2026 by rpki-client