This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: 49WqjzunMiI08e+LVgUZa1y0FdHp37Im+ohHNi/MyFQ= Subject key identifier: 76:3D:06:75:96:B3:E5:2D:C7:0F:AA:9F:BC:18:6B:9F:26:D5:B3:B1 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C23 Signing time: Sat 24 Jan 2026 18:21:27 +0000 Manifest this update: Sat 24 Jan 2026 18:21:26 +0000 Manifest next update: Sat 31 Jan 2026 18:21:26 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: JxWvM6kW9v6j8Mk1L8QCisWT53dk6YRLccnnr0QpCAE=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Jan 24 18:21:26 2026 GMT Not After : Jan 31 18:21:26 2026 GMT Subject: CN=69750da6-86cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ad:a2:ec:5a:d8:43:55:3f:2f:d7:3c:a6:c2: a4:ef:84:be:da:cd:7c:e6:8d:b2:7f:d3:43:5e:30: 3c:d9:9e:0b:7e:8c:48:33:77:92:25:f0:46:7a:0b: f8:a2:9f:30:3f:7d:11:2e:f7:9e:2d:25:6f:7e:a1: fd:66:cf:24:61:c6:9c:6f:e6:e9:ba:19:db:e1:70: 7e:d8:f5:5a:0c:e1:ac:eb:f0:e8:25:8b:e3:68:ab: 3d:97:c3:59:9a:03:28:74:0a:58:1a:8e:f1:19:60: 26:81:33:13:f2:b3:3e:d7:7e:ae:2f:39:f2:e7:87: 02:3f:fc:05:e8:e6:47:78:6f:c9:08:ec:24:d4:39: b4:07:37:32:d1:9c:8b:c8:8d:4e:cf:5c:56:79:d2: c7:2f:7f:34:e4:fb:36:36:d4:d9:dd:6e:ad:c7:43: f1:78:d6:b0:10:82:f0:a4:c5:17:57:1f:8a:12:60: 16:7a:82:5a:6f:0e:12:23:4d:f7:bb:e6:83:b7:69: 74:31:27:b0:13:e3:09:a7:2f:6c:5c:62:40:8b:3f: e1:4c:72:01:88:9e:d6:1d:bd:f9:eb:99:6f:0a:e0: c3:05:ba:85:79:df:e4:c7:8c:3c:bc:07:06:fc:a4: 66:65:97:b3:9d:b8:95:19:91:58:a4:e9:6d:0c:8b: 17:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:3D:06:75:96:B3:E5:2D:C7:0F:AA:9F:BC:18:6B:9F:26:D5:B3:B1 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:52:4e:e6:a6:2f:d2:eb:04:16:e8:1f:fa:d5:b8:0b:45:b8: cc:06:59:9d:37:04:ed:2c:4f:3f:95:db:34:a0:fc:78:a2:6a: 8c:2e:bf:06:e7:61:2d:3d:f1:57:53:4c:a1:b6:e9:45:d3:41: 96:d3:ed:a3:10:86:d5:53:ff:5e:46:cf:cd:ef:ca:3b:ab:42: a8:fb:5f:bf:76:d8:6a:cc:25:94:ae:c3:f3:44:28:63:d5:ac: 9a:ec:db:2b:42:0a:0c:b3:23:21:41:3d:e5:07:a6:25:79:ba: 8b:9a:09:e6:14:a1:53:26:f8:8d:cf:71:6e:f7:2e:d0:5b:1c: 90:04:18:8f:6d:e7:92:89:22:35:56:5d:c5:f0:2a:b2:05:34: 45:f8:80:51:5a:8d:e1:0a:29:76:2f:88:76:6d:c0:42:65:72: fd:31:9a:5c:2e:75:5b:c0:56:68:46:b6:28:b5:0a:02:87:d8: 3b:b8:00:0e:d4:9d:4b:6c:9a:d8:ba:2a:ce:20:0f:6e:4b:67: 90:3f:da:b6:7f:53:24:2a:a0:7e:d5:f4:39:0b:5b:e5:26:6b: 6c:62:4a:52:30:68:7c:23:3d:14:f7:d7:5c:b6:20:4c:54:9e: c2:21:2a:0a:55:04:f8:eb:f5:17:fb:29:11:5b:fe:32:6f:90: 21:85:cf:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjYwMTI0MTgyMTI2WhcNMjYwMTMxMTgyMTI2WjAYMRYwFAYD VQQDDA02OTc1MGRhNi04NmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAma2i7FrYQ1U/L9c8psKk74S+2s185o2yf9NDXjA82Z4LfoxIM3eSJfBGegv4 op8wP30RLveeLSVvfqH9Zs8kYcacb+bpuhnb4XB+2PVaDOGs6/DoJYvjaKs9l8NZ mgModApYGo7xGWAmgTMT8rM+136uLzny54cCP/wF6OZHeG/JCOwk1Dm0Bzcy0ZyL yI1Oz1xWedLHL3805Ps2NtTZ3W6tx0PxeNawEILwpMUXVx+KEmAWeoJabw4SI033 u+aDt2l0MSewE+MJpy9sXGJAiz/hTHIBiJ7WHb3565lvCuDDBbqFed/kx4w8vAcG /KRmZZeznbiVGZFYpOltDIsXnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHY9BnWW s+Utxw+qn7wYa58m1bOxMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEUk7mpi/S6wQW6B/61bgLRbjMBlmdNwTtLE8/lds0oPx4omqMLr8G 52EtPfFXU0yhtulF00GW0+2jEIbVU/9eRs/N78o7q0Ko+1+/dthqzCWUrsPzRChj 1aya7NsrQgoMsyMhQT3lB6YlebqLmgnmFKFTJviNz3Fu9y7QWxyQBBiPbeeSiSI1 Vl3F8CqyBTRF+IBRWo3hCil2L4h2bcBCZXL9MZpcLnVbwFZoRrYotQoCh9g7uAAO 1J1LbJrYuirOIA9uS2eQP9q2f1MkKqB+1fQ5C1vlJmtsYkpSMGh8Iz0U99dctiBM VJ7CISoKVQT46/UX+ykRW/4yb5Ahhc8s -----END CERTIFICATE-----Generated at Sun Jan 25 17:02:17 2026 by rpki-client