This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: U45pvuTKXcA/Od8ZFX9by21MSfrcGiWqA4LX2b8NFWg= Subject key identifier: A8:C8:57:9B:E9:9A:C7:B7:52:77:20:75:08:3A:39:79:CA:D1:9B:6D Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 02AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 028B Signing time: Sun 25 Jan 2026 00:52:45 +0000 Manifest this update: Sun 25 Jan 2026 00:52:45 +0000 Manifest next update: Sun 01 Feb 2026 00:52:45 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: ZPOzUL1zkzn4n9xvxrjaQvVR0EcF+dTJ/9BxCXvBbyA=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: Gu/kywKpuic7wgF2QL39qaRHTk8r7+a6HC5vsZOxOeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Jan 25 00:52:45 2026 GMT Not After : Feb 1 00:52:45 2026 GMT Subject: CN=6975695d-de9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5d:a5:87:5d:53:d1:6a:1d:16:82:60:bf:3c: cc:75:67:7f:06:45:d4:54:b1:8f:fe:a0:d7:2c:b4: d4:4a:0c:2f:08:c0:b0:24:b7:41:4a:dd:1d:96:c3: 69:a6:d8:b9:82:6f:78:3d:84:a9:19:8f:34:d3:9e: 16:da:8e:39:26:f2:a8:eb:97:ac:c6:d8:19:18:fd: fe:5c:3c:1c:70:d5:d6:bb:88:63:3f:96:f3:3f:fe: cb:9b:8e:62:84:d2:65:7f:53:b2:14:27:cc:f5:b5: 08:76:be:7e:59:19:db:aa:6c:82:1f:f2:8e:98:fb: df:aa:f9:f3:97:33:8b:ff:5b:be:b7:16:11:9d:3e: 32:e9:83:cf:aa:22:17:aa:9b:68:74:cc:2d:a3:4a: 48:f7:b9:7a:66:d7:49:5f:4a:89:7e:f4:f9:be:12: 71:22:eb:ca:8a:0d:16:2d:79:91:61:d2:84:8d:74: d0:f3:15:43:8e:5a:c3:c5:30:a1:21:83:6a:a4:e2: a4:a3:68:dd:16:c4:80:53:26:10:c2:04:17:fc:dc: 2e:42:20:55:df:a9:10:5f:78:1c:93:03:44:11:79: 04:a7:a9:e8:0f:ad:83:f9:97:a4:dc:55:3e:81:99: cf:67:6f:05:42:f7:c0:ed:1b:d7:37:18:fa:30:0e: 97:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C8:57:9B:E9:9A:C7:B7:52:77:20:75:08:3A:39:79:CA:D1:9B:6D X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:6e:b6:47:5d:1b:01:8d:a4:a2:b1:30:4d:ec:4c:30:f0:9b: 15:98:1c:28:4b:24:a8:82:bd:69:85:dc:ea:63:17:69:88:df: da:71:5d:01:29:5a:72:bf:fb:90:09:a7:cd:ef:e0:21:97:5a: 37:f5:e2:b7:40:0d:69:fe:f8:c7:a4:c7:a7:a5:9b:8b:05:64: de:f0:e4:37:2c:96:f4:5d:f5:b3:aa:5c:bc:7d:15:7f:d8:8e: 25:8e:01:ec:69:8b:76:28:02:10:2a:36:5c:68:e5:a7:eb:e3: 09:57:2f:9c:ad:0a:be:47:61:0b:bd:16:80:35:4c:88:d8:5e: 93:9d:2f:c6:f5:c7:5f:86:f0:5b:0e:1e:00:c0:0b:56:12:ae: 0c:e4:ec:79:63:59:0e:6a:a0:4a:28:5b:26:f0:d5:79:24:e5: f3:7f:0b:f9:d2:b6:ce:9b:0b:a2:62:c3:a2:34:ae:63:28:07: f5:f8:bb:58:71:8f:52:0f:7f:ea:72:f1:ab:d7:8d:ab:1d:12: 1f:b3:1b:97:f3:20:af:ac:2d:07:20:9a:6a:10:fe:9a:4b:5b: 33:46:e8:3f:22:42:9e:6e:f2:dd:20:2f:30:2b:46:b5:2a:79: f6:83:57:7c:1d:b0:76:9e:10:a1:7d:f1:3d:64:ea:83:aa:f7: 60:bf:2e:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjYwMTI1MDA1MjQ1WhcNMjYwMjAxMDA1MjQ1WjAYMRYwFAYD VQQDDA02OTc1Njk1ZC1kZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr12lh11T0WodFoJgvzzMdWd/BkXUVLGP/qDXLLTUSgwvCMCwJLdBSt0dlsNp pti5gm94PYSpGY80054W2o45JvKo65esxtgZGP3+XDwccNXWu4hjP5bzP/7Lm45i hNJlf1OyFCfM9bUIdr5+WRnbqmyCH/KOmPvfqvnzlzOL/1u+txYRnT4y6YPPqiIX qptodMwto0pI97l6ZtdJX0qJfvT5vhJxIuvKig0WLXmRYdKEjXTQ8xVDjlrDxTCh IYNqpOKko2jdFsSAUyYQwgQX/NwuQiBV36kQX3gckwNEEXkEp6noD62D+Zek3FU+ gZnPZ28FQvfA7RvXNxj6MA6XMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjIV5vp mse3UncgdQg6OXnK0ZttMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJbrZHXRsBjaSisTBN7Eww8JsVmBwoSySogr1phdzqYxdpiN/acV0B KVpyv/uQCafN7+Ahl1o39eK3QA1p/vjHpMenpZuLBWTe8OQ3LJb0XfWzqly8fRV/ 2I4ljgHsaYt2KAIQKjZcaOWn6+MJVy+crQq+R2ELvRaANUyI2F6TnS/G9cdfhvBb Dh4AwAtWEq4M5Ox5Y1kOaqBKKFsm8NV5JOXzfwv50rbOmwuiYsOiNK5jKAf1+LtY cY9SD3/qcvGr142rHRIfsxuX8yCvrC0HIJpqEP6aS1szRug/IkKebvLdIC8wK0a1 Knn2g1d8HbB2nhChffE9ZOqDqvdgvy5K -----END CERTIFICATE-----Generated at Sun Jan 25 06:16:28 2026 by rpki-client