This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: B21xSuCG5dpSwZU4aWfQtD4KCno6Rci0H7I/97d4CiA= Subject key identifier: E9:04:A6:1A:8F:D1:27:6D:37:FC:27:8E:E2:BD:D9:60:A5:FE:3A:21 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 0921 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 0913 Signing time: Sat 24 Jan 2026 19:41:52 +0000 Manifest this update: Sat 24 Jan 2026 19:41:51 +0000 Manifest next update: Sat 31 Jan 2026 19:41:51 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: iwbpu1tQ4Qa5UZRleWj/28ezEQ5M0HxRBLzOlD8II7Q=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: +c2DPE0WaPr48QApZCLfEPaMsExO+TZ/BLuuQJmn+Mg=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: /qSqUUquW8P34EzhMbBxrdao9SE8qOtCjPceo9nPsLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2337 (0x921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: Jan 24 19:41:51 2026 GMT Not After : Jan 31 19:41:51 2026 GMT Subject: CN=6975207f-2a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:25:a9:12:32:8a:33:10:94:4c:e1:3e:78:9d: 09:33:fa:2a:45:5b:62:ba:81:35:bd:9a:50:1f:15: 28:88:a0:8b:8a:e3:ad:08:2d:f3:bf:73:7a:60:07: 86:50:ad:b6:12:93:a4:ca:78:af:2b:e9:da:c2:26: c4:17:1a:1a:28:50:0e:9f:49:4f:52:be:b8:71:cd: 5c:b5:be:05:fc:2d:b0:54:63:a7:c8:9d:3e:b1:a8: 73:3c:11:0f:46:38:d1:5d:c5:ae:bd:73:93:e7:e1: 32:ab:77:68:db:e3:5b:9b:25:53:ec:93:1f:65:27: e4:89:96:cf:45:01:7c:5a:17:d4:3b:07:11:2e:b7: 30:06:ca:f0:ce:a6:4a:24:0d:2d:14:5d:c2:6d:f2: 46:f0:36:65:4b:4e:39:0a:2e:e8:a8:d7:50:28:b1: 02:05:b6:0b:a2:ba:6d:f6:9b:27:8f:93:48:c7:1c: 8c:5f:49:d0:88:82:a8:d5:c7:33:00:c4:de:ae:46: f5:6b:18:03:90:00:84:9a:37:81:75:d2:76:f2:ab: 4c:a1:a5:25:6f:2b:57:18:fa:07:ad:28:fb:6e:7b: f9:2d:1b:b7:c2:d9:03:17:f0:5d:a1:bc:0d:e7:ba: 4b:ed:51:fe:ee:44:92:34:be:83:8c:66:0b:05:86: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:04:A6:1A:8F:D1:27:6D:37:FC:27:8E:E2:BD:D9:60:A5:FE:3A:21 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:85:40:e4:97:27:3d:3e:cb:74:ea:d2:77:97:71:06:e4:a4: f4:9f:e4:b3:87:6d:c6:a9:67:38:35:25:f9:ec:a8:9b:12:67: a2:e9:40:59:6e:7c:90:e0:dc:bb:a2:1b:89:48:cc:01:49:b1: 4a:c5:58:16:a3:cf:91:0b:ec:0a:bd:4b:cf:c1:e7:92:8c:4e: 2b:02:e3:c3:05:a1:d0:4a:19:18:b5:fb:03:56:7f:36:e1:b5: b2:2b:17:c4:e8:e4:60:f1:41:a4:73:e1:a7:1f:78:90:ea:2f: 71:9a:71:ef:fb:c2:2f:08:c1:cd:c3:54:e0:f9:90:86:3c:13: 09:04:f1:74:16:e6:1c:10:07:e1:d6:e4:8f:d4:3b:ec:0d:4d: db:51:b2:bf:db:29:18:6b:a4:80:8a:2c:b9:9d:7e:be:f3:c3: f0:8c:3d:1e:1b:f0:59:75:b7:47:52:b2:a8:5a:e9:5e:5c:94: 0b:4b:0f:7f:d8:16:a8:b0:d8:89:e2:e7:a6:6e:6d:3d:f7:e7: 66:f3:4e:65:14:6a:b6:a8:26:b3:29:d2:e3:61:e0:ae:51:76: 46:fd:f6:f3:78:55:e5:12:fe:70:12:c5:cf:90:6e:8c:e6:c7: d6:dc:cb:97:47:5e:2b:ed:26:96:fd:40:40:47:66:c3:90:b2: 90:36:61:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjYwMTI0MTk0MTUxWhcNMjYwMTMxMTk0MTUxWjAYMRYwFAYD VQQDDA02OTc1MjA3Zi0yYTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iWpEjKKMxCUTOE+eJ0JM/oqRVtiuoE1vZpQHxUoiKCLiuOtCC3zv3N6YAeG UK22EpOkynivK+nawibEFxoaKFAOn0lPUr64cc1ctb4F/C2wVGOnyJ0+sahzPBEP RjjRXcWuvXOT5+Eyq3do2+NbmyVT7JMfZSfkiZbPRQF8WhfUOwcRLrcwBsrwzqZK JA0tFF3CbfJG8DZlS045Ci7oqNdQKLECBbYLorpt9psnj5NIxxyMX0nQiIKo1ccz AMTerkb1axgDkACEmjeBddJ28qtMoaUlbytXGPoHrSj7bnv5LRu3wtkDF/BdobwN 57pL7VH+7kSSNL6DjGYLBYZJhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkEphqP 0SdtN/wnjuK92WCl/johMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABhUDklyc9Pst06tJ3l3EG5KT0n+Szh23GqWc4NSX57KibEmei6UBZ bnyQ4Ny7ohuJSMwBSbFKxVgWo8+RC+wKvUvPweeSjE4rAuPDBaHQShkYtfsDVn82 4bWyKxfE6ORg8UGkc+GnH3iQ6i9xmnHv+8IvCMHNw1Tg+ZCGPBMJBPF0FuYcEAfh 1uSP1DvsDU3bUbK/2ykYa6SAiiy5nX6+88PwjD0eG/BZdbdHUrKoWuleXJQLSw9/ 2BaosNiJ4uembm099+dm805lFGq2qCazKdLjYeCuUXZG/fbzeFXlEv5wEsXPkG6M 5sfW3MuXR14r7SaW/UBAR2bDkLKQNmFa -----END CERTIFICATE-----Generated at Sun Jan 25 20:07:37 2026 by rpki-client