This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: eqHATj7lIT189mB8cANy3gtdQqt3tcltMUuHH98x+vA= Subject key identifier: DA:48:A3:2B:54:72:DF:DD:7E:31:BA:EA:AB:FC:E6:58:83:49:4A:D8 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 34FE Signing time: Sat 24 Jan 2026 14:51:07 +0000 Manifest this update: Sat 24 Jan 2026 14:51:07 +0000 Manifest next update: Sat 31 Jan 2026 14:51:07 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: OXP0jJsj5/0spOR5SUU1X5/aOuPG6asK62Zph1/49R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: Jan 24 14:51:07 2026 GMT Not After : Jan 31 14:51:07 2026 GMT Subject: CN=6974dc5b-e145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:06:73:aa:44:62:98:2a:52:6e:8b:b3:d4:9d: 62:3a:d0:20:b4:7e:7c:ca:8a:aa:6e:18:3d:16:bb: ad:c7:1b:ff:e4:7d:74:92:0f:b7:e7:7f:f6:e5:d1: af:7a:74:9b:5a:31:8d:4a:e9:1a:67:f9:f7:bf:80: 32:2b:6a:97:ab:b4:01:c9:0c:0a:f5:00:fb:d5:25: ec:bb:25:08:e1:64:fd:3f:a8:55:31:88:0f:cb:92: fc:34:1a:ff:4d:f4:88:f1:c8:66:32:02:01:7e:9d: 6b:42:1d:ba:79:b5:86:c6:32:3c:55:b2:40:cb:11: 47:2f:2c:b4:75:fc:18:ad:f5:74:eb:31:86:8b:d3: fb:e1:b6:4a:40:57:fa:4d:f2:9c:5b:86:e5:d9:93: a0:e3:b9:a6:eb:72:8e:10:35:c2:ff:a4:7b:60:e4: 78:19:c3:2c:17:b5:c2:cf:e8:60:05:67:cf:cd:62: 6b:90:34:c7:d2:6c:62:95:89:87:36:29:7d:23:ba: 2d:b0:4d:00:36:c6:0f:bf:63:bb:f4:01:72:62:af: b1:09:17:88:92:77:83:76:f6:f2:bc:6b:a9:b5:89: d5:5b:2e:79:c3:96:e2:76:c1:df:54:5e:0a:5f:28: 39:46:53:f4:5a:0f:6e:e6:bb:d9:d0:a5:72:08:bb: c2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:48:A3:2B:54:72:DF:DD:7E:31:BA:EA:AB:FC:E6:58:83:49:4A:D8 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:96:bf:a4:14:a4:9b:15:c7:d6:1f:91:15:62:b4:ab:98:6a: d0:88:0d:40:5e:7b:a5:bb:e8:45:1b:1b:8b:d9:03:aa:6b:8b: 5d:25:bf:aa:b5:1b:4a:14:25:7d:64:fc:de:e4:e4:36:dd:32: 66:ee:bd:aa:54:c7:04:ab:b0:a2:7e:77:3a:37:c1:26:2f:3a: d7:79:55:28:de:7f:2f:96:7d:6f:05:e7:79:ab:a9:6d:ca:12: a9:fd:a9:39:d7:51:56:f8:f4:a6:3c:c9:ea:c0:a6:63:ea:56: ac:13:26:6b:8e:11:b3:1e:c5:1a:d5:bf:a1:d4:88:30:d5:b2: ed:d1:73:4e:52:0e:bb:76:ae:b0:76:0a:f6:ec:cb:c7:3f:fa: bb:9b:3f:d8:d2:b0:c2:1e:f0:d4:e8:b4:39:2c:12:3f:20:86: f8:f5:3f:22:77:af:94:c6:fc:11:65:cb:aa:26:50:ce:ab:b8: 88:f4:39:7c:ec:3f:4d:5b:00:7b:e8:82:c4:f0:cf:b1:8b:2b: 61:9c:d1:bc:d6:62:d7:5f:cd:c3:94:15:89:ec:58:25:5f:1f: b1:a7:8d:41:40:1b:0b:d9:9a:2b:0b:60:cd:2c:20:d8:91:74: a5:26:07:e2:cb:ac:2e:63:a5:37:6b:72:0b:21:81:60:75:51: 0c:74:fa:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjYwMTI0MTQ1MTA3WhcNMjYwMTMxMTQ1MTA3WjAYMRYwFAYD VQQDDA02OTc0ZGM1Yi1lMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygZzqkRimCpSbouz1J1iOtAgtH58yoqqbhg9Frutxxv/5H10kg+353/25dGv enSbWjGNSukaZ/n3v4AyK2qXq7QByQwK9QD71SXsuyUI4WT9P6hVMYgPy5L8NBr/ TfSI8chmMgIBfp1rQh26ebWGxjI8VbJAyxFHLyy0dfwYrfV06zGGi9P74bZKQFf6 TfKcW4bl2ZOg47mm63KOEDXC/6R7YOR4GcMsF7XCz+hgBWfPzWJrkDTH0mxilYmH Nil9I7otsE0ANsYPv2O79AFyYq+xCReIkneDdvbyvGuptYnVWy55w5bidsHfVF4K Xyg5RlP0Wg9u5rvZ0KVyCLvCzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpIoytU ct/dfjG66qv85liDSUrYMB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIlr+kFKSbFcfWH5EVYrSrmGrQiA1AXnulu+hFGxuL2QOqa4tdJb+q tRtKFCV9ZPze5OQ23TJm7r2qVMcEq7Cifnc6N8EmLzrXeVUo3n8vln1vBed5q6lt yhKp/ak511FW+PSmPMnqwKZj6lasEyZrjhGzHsUa1b+h1Igw1bLt0XNOUg67dq6w dgr27MvHP/q7mz/Y0rDCHvDU6LQ5LBI/IIb49T8id6+UxvwRZcuqJlDOq7iI9Dl8 7D9NWwB76ILE8M+xiythnNG81mLXX83DlBWJ7FglXx+xp41BQBsL2ZorC2DNLCDY kXSlJgfiy6wuY6U3a3ILIYFgdVEMdPqv -----END CERTIFICATE-----Generated at Sun Jan 25 04:34:11 2026 by rpki-client