This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: dyBYVqvhFy6Gnn01bIh0/uOQaJhRjHQHAItxiQ2X9u0= Subject key identifier: 7A:5B:1D:9A:61:3B:DA:83:E7:64:10:54:2B:A3:F1:EE:C9:67:9C:76 Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 35B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 3564 Signing time: Sat 24 Jan 2026 14:16:04 +0000 Manifest this update: Sat 24 Jan 2026 14:16:04 +0000 Manifest next update: Sat 31 Jan 2026 14:16:04 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: D4NFR8qq32BgqLnzLUM67X39ySuaarEOD79/Rp1RPeg=) 2: 0997A5828A1511F09F6EBD2BC4F9AE02.roa (hash: OnxDy/55jjMCiBnkBT8Gsibkcizt1adU0FH5L5R2Oyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13745 (0x35b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Jan 24 14:16:04 2026 GMT Not After : Jan 31 14:16:04 2026 GMT Subject: CN=6974d424-caf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:92:33:c1:09:24:c0:0c:00:35:52:25:f6:06: 11:68:2d:c2:bf:70:aa:07:51:bb:67:d7:d4:73:5e: b3:4a:88:45:c6:e9:cb:17:4c:a2:8d:76:6b:bb:e3: 1c:59:3a:5a:81:ac:13:8f:e0:72:62:6b:c9:b0:1e: 11:5f:38:81:d0:dd:ab:b0:a2:10:fb:dc:3f:be:9b: 5d:bd:e8:d0:b7:0e:16:a3:a3:9a:34:69:13:95:6f: 10:ea:25:f5:21:5b:5c:6d:03:28:79:64:1b:b6:a6: db:11:dd:32:3c:03:54:87:4f:90:01:91:71:e4:4a: 21:52:bb:80:b5:80:4d:9b:88:d9:59:0c:5e:d5:6f: b7:e7:bc:b3:68:df:0f:80:67:3c:ed:e9:c8:84:0c: 87:69:53:18:c9:90:fe:62:c7:59:a0:27:ad:6f:ac: 87:cc:62:86:84:5f:14:7b:fe:ff:a0:c3:9e:6b:5d: fb:a0:67:9c:16:2f:8e:6a:93:41:69:88:b3:4e:7e: b2:bd:19:10:b5:87:1c:7a:2a:bf:76:37:23:2d:21: 58:73:7e:70:1f:ab:6c:22:ff:b9:05:a8:be:ce:c4: 41:b6:c0:b5:ce:9f:95:75:0d:33:22:3a:41:89:da: 5a:7e:9d:fd:6d:a4:1f:0c:d2:bb:2b:ed:55:13:58: 6b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5B:1D:9A:61:3B:DA:83:E7:64:10:54:2B:A3:F1:EE:C9:67:9C:76 X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a5:7e:9e:f7:e3:75:43:67:ed:7a:61:78:0b:35:0f:ec:58: f4:b3:d2:b6:26:a4:da:fc:f0:b2:63:14:70:d2:3b:58:a4:61: 08:07:da:bc:e5:c9:a3:c6:14:9e:62:09:6d:99:09:4b:9d:61: f0:af:75:6a:ec:6a:65:3e:44:af:6d:12:e9:03:b5:e9:67:04: 68:8b:0b:1a:65:f8:f0:b6:9a:a8:22:26:5d:a6:bb:11:cd:02: 64:ff:77:5e:28:a9:d7:92:d4:0b:b7:c7:4f:b2:1e:6f:4e:95: 94:95:49:8a:65:6c:3a:69:78:f1:32:41:9a:01:89:5e:db:38: cd:74:7d:b8:36:53:fa:ff:a9:c2:29:ab:f1:c1:80:66:22:fb: 0e:50:47:e3:70:11:4d:47:cb:67:05:b7:5b:83:36:0a:db:36: 49:49:5a:fa:38:76:03:57:b8:04:91:17:63:99:f9:84:52:e3: a8:8a:f9:c6:a2:04:08:68:95:c1:d7:83:b3:64:44:4c:60:3e: a8:de:be:9c:7f:7e:20:77:62:50:f5:ca:ba:16:39:5f:ec:e7: 52:6d:d3:84:70:24:4b:6d:04:da:be:03:6c:c1:b2:b4:cf:7d: 3f:1d:aa:38:ad:bd:88:a3:bf:74:b3:25:8a:66:c4:95:d8:86: e4:2e:c1:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjYwMTI0MTQxNjA0WhcNMjYwMTMxMTQxNjA0WjAYMRYwFAYD VQQDDA02OTc0ZDQyNC1jYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpIzwQkkwAwANVIl9gYRaC3Cv3CqB1G7Z9fUc16zSohFxunLF0yijXZru+Mc WTpagawTj+ByYmvJsB4RXziB0N2rsKIQ+9w/vptdvejQtw4Wo6OaNGkTlW8Q6iX1 IVtcbQMoeWQbtqbbEd0yPANUh0+QAZFx5EohUruAtYBNm4jZWQxe1W+357yzaN8P gGc87enIhAyHaVMYyZD+YsdZoCetb6yHzGKGhF8Ue/7/oMOea137oGecFi+OapNB aYizTn6yvRkQtYcceiq/djcjLSFYc35wH6tsIv+5Bai+zsRBtsC1zp+VdQ0zIjpB idpafp39baQfDNK7K+1VE1hrrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpbHZph O9qD52QQVCuj8e7JZ5x2MB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgpX6e9+N1Q2ftemF4CzUP7Fj0s9K2JqTa/PCyYxRw0jtYpGEIB9q8 5cmjxhSeYgltmQlLnWHwr3Vq7GplPkSvbRLpA7XpZwRoiwsaZfjwtpqoIiZdprsR zQJk/3deKKnXktQLt8dPsh5vTpWUlUmKZWw6aXjxMkGaAYle2zjNdH24NlP6/6nC KavxwYBmIvsOUEfjcBFNR8tnBbdbgzYK2zZJSVr6OHYDV7gEkRdjmfmEUuOoivnG ogQIaJXB14OzZERMYD6o3r6cf34gd2JQ9cq6Fjlf7OdSbdOEcCRLbQTavgNswbK0 z30/Hao4rb2Io790syWKZsSV2IbkLsHP -----END CERTIFICATE-----Generated at Sun Jan 25 12:40:21 2026 by rpki-client