This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: PFvBIuYIct/OV+ZsGS8EKjPDFmVZC9uzUlvSLs2HQKQ= Subject key identifier: 6E:A6:19:5B:85:F7:61:02:C2:BA:CB:9C:8B:DF:1D:68:A4:7E:AB:C9 Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 1E Signing time: Sun 25 Jan 2026 07:01:28 +0000 Manifest this update: Sun 25 Jan 2026 07:01:28 +0000 Manifest next update: Sun 01 Feb 2026 07:01:28 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: EWIgabHOAvmOkbeqqZE91wVTKxAq0J3/fxKHS17SLlg=) 2: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: kv64gdqDO+n3oYtOR4jHJdnz6Xn1qAoETsl8i8elAO0=) 3: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: J2fCRULalKRbYKil4iTsnY5Key0JACfh7B4or/zK44Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 07:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Jan 25 07:01:28 2026 GMT Not After : Feb 1 07:01:28 2026 GMT Subject: CN=6975bfc8-c63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6e:b7:f9:40:b4:08:b0:50:27:c3:4b:11:f2: f8:19:03:5c:ef:26:9b:e6:8e:8f:d0:84:ea:ec:5c: 79:81:ba:b5:77:e3:34:65:2b:06:00:5b:49:2f:93: 09:23:f2:10:0a:a4:51:31:1a:22:ce:8c:ea:02:a8: 03:46:98:71:4a:79:df:56:30:e8:1d:31:04:ce:4c: e8:4e:d2:c9:e6:55:e6:d5:21:05:77:3a:b1:14:9f: 24:75:e4:7c:3a:04:7b:8f:7b:4d:a8:83:92:7a:ed: 1b:2a:68:ac:ce:09:32:52:08:33:bc:df:38:98:7e: ee:f5:58:11:4e:f7:be:3e:b2:68:64:88:1b:08:41: 2c:0b:82:01:7d:15:7d:f8:09:e8:f8:5f:33:58:98: 78:fb:14:2f:e6:47:59:01:ff:25:af:d2:16:30:b3: 1a:16:f2:07:7d:60:c8:4f:f1:73:84:84:8f:6a:dc: 7f:43:f1:20:9b:dc:36:ae:f3:2c:c7:d2:84:dc:b0: 7b:c4:15:6e:a2:8c:95:dd:bb:42:72:ac:47:2c:e6: 28:cd:35:e2:42:2a:1b:0b:a3:ff:ac:d5:74:c4:e6: 38:6e:c3:f6:03:89:da:53:67:6e:49:15:29:00:70: be:e6:9b:7d:5a:5d:5b:ec:2a:59:22:78:b7:5c:59: 6b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A6:19:5B:85:F7:61:02:C2:BA:CB:9C:8B:DF:1D:68:A4:7E:AB:C9 X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:f8:01:ff:7c:fb:a0:a6:dc:ad:49:cf:98:68:7d:a8:30:74: 3e:ca:7a:a3:fe:1e:b8:6d:7b:1b:21:ea:c6:55:31:26:7e:e8: d4:b5:e6:8a:1c:93:2e:3e:cb:90:5f:4a:38:15:72:89:30:71: 14:21:fd:b9:f4:30:19:3e:cd:1b:03:9e:b6:50:a1:5f:3e:1e: 0b:c9:68:fd:6b:05:d2:81:cf:4e:82:87:ab:cd:e5:36:e8:a7: ce:15:24:27:0a:29:aa:3d:48:05:f8:9c:36:4f:1b:4b:45:46: 2a:0b:01:a2:1e:26:3e:50:54:46:b4:2e:9e:6e:ce:4f:c6:84: d8:8d:9d:93:21:df:40:75:28:40:fe:5b:86:a7:c1:c6:5e:2f: 43:fa:50:7d:8a:0a:e3:af:d2:4a:c4:eb:87:74:2b:7f:8e:d9: 74:eb:18:a0:f9:5b:6c:f4:34:7b:b9:4c:8c:0e:ce:10:ad:02: 65:52:a4:3d:c6:97:9d:d5:c0:40:f1:3f:ff:f0:74:51:24:57: 4b:25:5a:40:0f:d0:2e:19:ed:2c:a7:b5:55:c9:a1:64:ab:34: 31:ef:c6:19:2c:64:34:02:e3:4f:ca:48:c6:a0:8d:8c:26:8f: 50:cb:2c:c4:af:c7:6b:7c:d8:2a:fb:9d:49:1a:84:a6:a9:e7: c1:09:45:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjAxMjUwNzAxMjhaFw0yNjAyMDEwNzAxMjhaMBgxFjAUBgNV BAMMDTY5NzViZmM4LWM2M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrbrf5QLQIsFAnw0sR8vgZA1zvJpvmjo/QhOrsXHmBurV34zRlKwYAW0kvkwkj 8hAKpFExGiLOjOoCqANGmHFKed9WMOgdMQTOTOhO0snmVebVIQV3OrEUnyR15Hw6 BHuPe02og5J67RsqaKzOCTJSCDO83ziYfu71WBFO974+smhkiBsIQSwLggF9FX34 Cej4XzNYmHj7FC/mR1kB/yWv0hYwsxoW8gd9YMhP8XOEhI9q3H9D8SCb3Dau8yzH 0oTcsHvEFW6ijJXdu0JyrEcs5ijNNeJCKhsLo/+s1XTE5jhuw/YDidpTZ25JFSkA cL7mm31aXVvsKlkieLdcWWvpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbqYZW4X3 YQLCusuci98daKR+q8kwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMb4Af98+6Cm3K1Jz5hofagwdD7KeqP+Hrhtexsh6sZVMSZ+6NS15ooc ky4+y5BfSjgVcokwcRQh/bn0MBk+zRsDnrZQoV8+HgvJaP1rBdKBz06Ch6vN5Tbo p84VJCcKKao9SAX4nDZPG0tFRioLAaIeJj5QVEa0Lp5uzk/GhNiNnZMh30B1KED+ W4anwcZeL0P6UH2KCuOv0krE64d0K3+O2XTrGKD5W2z0NHu5TIwOzhCtAmVSpD3G l53VwEDxP//wdFEkV0slWkAP0C4Z7SyntVXJoWSrNDHvxhksZDQC40/KSMagjYwm j1DLLMSvx2t82Cr7nUkahKap58EJRfI= -----END CERTIFICATE-----Generated at Sun Jan 25 16:11:56 2026 by rpki-client