This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft File: r_h3chh1NYXDiOm4HDkGa9ONtZI.mft (raw, json) Hash identifier: pQNbPlwwTAZ5LE7/ShFONc5cGK08CQ5DLZFWtduM/lA= Subject key identifier: D4:99:DA:41:A9:26:BF:EE:6E:6F:C9:F4:09:19:75:2F:87:A9:B6:F1 Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft Manifest number: 81 Signing time: Fri 23 Jan 2026 05:47:23 +0000 Manifest this update: Fri 23 Jan 2026 05:47:23 +0000 Manifest next update: Fri 30 Jan 2026 05:47:23 +0000 Files and hashes: 1: r_h3chh1NYXDiOm4HDkGa9ONtZI.crl (hash: lLwFbUeAAnPpzs9X8hzLHhlcUIYr79FUPag9oTyqfls=) 2: AFD61B9C36A311F08A82A258C4F9AE02.roa (hash: GbT2Xq8LMseiodZFptbEkKwR2JJrCaZJBMK5VYRS9TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: Jan 23 05:47:23 2026 GMT Not After : Jan 30 05:47:23 2026 GMT Subject: CN=69730b6b-ebcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5d:1d:a3:2e:39:70:70:e7:59:92:53:56:f7: 27:27:44:ee:eb:4e:ad:dd:80:db:bf:eb:c6:72:f4: 18:bf:67:da:a9:57:c7:5c:02:ea:a2:dc:64:5d:94: a3:4d:d2:9f:00:ed:75:32:db:f3:8f:4b:97:97:89: 9a:a3:6f:e7:bb:86:69:7c:d7:df:3c:35:ea:27:d0: e2:64:37:54:c4:e6:90:c9:8e:e4:75:e8:a2:94:6b: c0:4d:9c:b1:c9:2c:10:d8:9a:14:3e:ce:4e:94:47: 2e:a8:2d:4c:bd:56:9f:ce:ff:57:90:60:d3:92:c7: f3:10:a7:56:d9:1b:f6:af:e2:66:80:5f:2c:5c:59: df:ca:c2:e1:bb:8b:86:2b:ee:db:26:e4:a8:d7:7f: 66:a5:cd:56:c3:6f:43:9e:2a:84:50:74:4e:9e:1a: 31:eb:67:a5:aa:32:d7:09:79:64:95:37:af:e0:96: d2:cd:ba:70:5f:92:1d:37:4f:1f:0a:90:13:cf:86: 08:29:4b:fc:97:b2:b8:83:b7:27:7e:ae:b3:58:f9: 72:7c:c3:de:51:e3:02:08:3f:65:81:10:4d:2b:da: a0:b3:c6:9f:bf:b7:fe:cc:71:78:32:5b:0e:06:71: cb:5f:40:93:ce:2d:83:e4:82:f4:ef:c0:e9:2b:04: 14:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:99:DA:41:A9:26:BF:EE:6E:6F:C9:F4:09:19:75:2F:87:A9:B6:F1 X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:98:57:9e:3f:26:6a:8c:52:e1:4c:d3:aa:70:ca:a5:dc:fd: 4e:7c:9e:55:8d:a5:eb:c8:6c:b1:46:9a:c6:8c:1b:e5:a6:b6: d3:de:74:6f:52:ea:42:24:d0:1c:1f:2a:0f:11:a8:78:a8:19: 9f:79:b1:e0:57:f7:59:f1:74:60:6b:7a:2f:a2:f2:cf:ae:4d: c0:01:f1:1e:91:40:9e:82:8b:b0:b6:9c:cd:07:9b:07:4a:60: 05:f2:ec:d1:da:58:88:58:f6:84:6b:38:a6:75:ed:b1:30:7b: c5:59:30:39:7c:3b:be:0e:8b:70:af:92:98:8d:65:71:83:de: 24:fe:2b:6b:fb:c6:8a:4d:4c:a8:d2:a1:52:2b:f9:a7:f1:20: 9e:7c:01:64:80:bf:33:b7:cf:6f:5f:7d:5c:98:6d:1b:18:ca: ac:2a:76:de:eb:54:ed:23:f9:b6:78:d9:5f:ce:d8:49:6e:18: 04:f2:95:4d:e4:6b:2e:5a:aa:11:34:a6:d4:52:4d:24:c2:11: c4:44:da:2c:08:5c:61:e8:29:92:a1:30:09:91:e1:ad:8a:3b: 57:0d:9f:78:f9:92:26:25:cf:94:06:64:d8:70:e9:44:51:94: c3:45:78:0b:44:28:03:39:0a:fb:40:2b:f0:96:2d:f6:de:25: 4f:af:a8:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjYwMTIzMDU0NzIzWhcNMjYwMTMwMDU0NzIzWjAYMRYwFAYD VQQDDA02OTczMGI2Yi1lYmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0l0doy45cHDnWZJTVvcnJ0Tu606t3YDbv+vGcvQYv2faqVfHXALqotxkXZSj TdKfAO11Mtvzj0uXl4mao2/nu4ZpfNffPDXqJ9DiZDdUxOaQyY7kdeiilGvATZyx ySwQ2JoUPs5OlEcuqC1MvVafzv9XkGDTksfzEKdW2Rv2r+JmgF8sXFnfysLhu4uG K+7bJuSo139mpc1Ww29DniqEUHROnhox62elqjLXCXlklTev4JbSzbpwX5IdN08f CpATz4YIKUv8l7K4g7cnfq6zWPlyfMPeUeMCCD9lgRBNK9qgs8afv7f+zHF4MlsO BnHLX0CTzi2D5IL078DpKwQUCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSZ2kGp Jr/ubm/J9AkZdS+HqbbxMB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjNGRS8yQTU2ODc4MjM2QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5Z WERpT200SERrR2E5T050WkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3mFeePyZqjFLhTNOqcMql3P1OfJ5VjaXryGyxRprGjBvlprbT3nRv UupCJNAcHyoPEah4qBmfebHgV/dZ8XRga3ovovLPrk3AAfEekUCegouwtpzNB5sH SmAF8uzR2liIWPaEazimde2xMHvFWTA5fDu+Dotwr5KYjWVxg94k/itr+8aKTUyo 0qFSK/mn8SCefAFkgL8zt89vX31cmG0bGMqsKnbe61TtI/m2eNlfzthJbhgE8pVN 5GsuWqoRNKbUUk0kwhHERNosCFxh6CmSoTAJkeGtijtXDZ94+ZImJc+UBmTYcOlE UZTDRXgLRCgDOQr7QCvwli323iVPr6hE -----END CERTIFICATE-----Generated at Sun Jan 25 02:56:46 2026 by rpki-client