This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: PoIdE26EeR5YsQ/gqCe9qu0h9uIMnAj2vJ7jESD/6Xs= Subject key identifier: 2F:01:07:0F:A9:72:32:92:61:40:F0:DE:BC:4A:68:B2:09:14:5B:F2 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 01F3 Signing time: Sun 25 Jan 2026 01:50:34 +0000 Manifest this update: Sun 25 Jan 2026 01:50:33 +0000 Manifest next update: Sun 01 Feb 2026 01:50:33 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: 8E+kdq52ijwRX0REQDv/9zxAsBWYSlE6PcHSllJ6XyE=) 2: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) 3: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Jan 25 01:50:33 2026 GMT Not After : Feb 1 01:50:33 2026 GMT Subject: CN=697576ea-1820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:47:86:00:91:d4:30:66:56:3c:c3:bc:ab:e3: e1:d9:a6:3a:8c:39:b4:3b:27:1d:d5:a2:c8:e3:2c: cb:d7:f7:1b:80:10:2d:ec:4d:66:34:dc:2f:e4:38: ba:4a:de:6d:96:b9:5e:36:ca:d1:23:4e:d7:a2:26: b7:02:2b:11:61:73:8a:4e:22:8f:0c:b4:5b:03:7c: ff:d1:0a:7b:a5:91:f8:ba:2f:e8:a1:9a:c3:27:20: 22:6f:fb:b1:9b:2b:ea:f2:44:5b:38:0e:eb:b5:03: b4:c5:80:ca:7b:17:e8:0f:f1:02:0f:e2:d8:48:74: ad:4f:55:fc:cc:e6:a9:e1:9e:ec:69:ff:2e:cc:df: 87:2f:80:fd:38:00:5c:3e:3c:34:a0:c0:6a:1b:ca: 00:73:f6:9a:11:6b:5e:76:ba:6a:a8:3c:7b:3e:5e: 89:c4:44:dd:95:7f:66:92:9f:e2:8d:ae:2a:ac:4e: 47:95:c5:7d:cc:58:af:0c:9d:1c:3a:14:6a:cd:2c: 7e:43:fc:8f:71:e6:ba:87:3a:d4:71:e2:3d:0d:d5: dd:b9:cb:c6:88:7a:86:5f:da:ce:be:af:b4:59:ba: 6a:76:fa:f2:82:8e:17:a1:0a:cf:fa:af:65:f8:fa: 86:50:b2:c5:9c:c9:4d:fe:11:33:f1:7c:68:6e:ce: 03:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:01:07:0F:A9:72:32:92:61:40:F0:DE:BC:4A:68:B2:09:14:5B:F2 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d4:cc:41:e2:0d:ef:4c:51:b8:da:8f:77:9f:99:e1:1e:83: 3a:12:7d:07:03:b4:0d:a1:1c:6f:c9:27:8f:bd:33:06:70:02: 3b:ce:29:2b:f2:0c:39:e2:bf:f4:70:ee:29:95:b5:b0:de:88: 28:41:6c:3d:77:39:16:23:24:38:10:43:e5:c0:12:6c:55:46: 66:34:d6:8e:ab:9e:7d:a9:e8:ca:01:7b:92:d3:f8:88:24:a9: a5:4e:4f:b0:10:36:e8:aa:3c:96:22:a5:bf:32:ed:f7:90:9d: 49:2e:8f:bd:d8:80:59:b2:ca:66:41:8a:ea:70:95:db:89:b9: 2c:81:22:b7:07:b3:ea:68:ec:82:9b:61:69:fe:db:52:8d:19: 05:c0:3c:05:bf:85:1c:ba:30:85:17:ba:77:b5:22:f9:fe:58: 34:64:29:a9:3a:60:7e:2d:19:37:7b:4f:f6:78:ae:68:47:e1: fd:ab:1e:aa:88:95:0c:9d:f5:53:34:75:7d:83:4d:6f:f5:9b: 27:b6:4d:33:13:87:c7:9f:fb:0a:c1:84:10:cc:c0:2a:76:fe: 4d:7d:d3:a3:b2:6f:40:f7:a4:93:55:03:10:a6:8c:1c:3a:ca: 0f:9d:f0:da:51:7c:16:c1:d9:17:29:c7:a3:08:bf:36:f4:45: 03:9b:0a:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjYwMTI1MDE1MDMzWhcNMjYwMjAxMDE1MDMzWjAYMRYwFAYD VQQDDA02OTc1NzZlYS0xODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2keGAJHUMGZWPMO8q+Ph2aY6jDm0Oycd1aLI4yzL1/cbgBAt7E1mNNwv5Di6 St5tlrleNsrRI07Xoia3AisRYXOKTiKPDLRbA3z/0Qp7pZH4ui/ooZrDJyAib/ux myvq8kRbOA7rtQO0xYDKexfoD/ECD+LYSHStT1X8zOap4Z7saf8uzN+HL4D9OABc Pjw0oMBqG8oAc/aaEWtedrpqqDx7Pl6JxETdlX9mkp/ija4qrE5HlcV9zFivDJ0c OhRqzSx+Q/yPcea6hzrUceI9DdXducvGiHqGX9rOvq+0Wbpqdvrygo4XoQrP+q9l +PqGULLFnMlN/hEz8Xxobs4DvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8BBw+p cjKSYUDw3rxKaLIJFFvyMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq1MxB4g3vTFG42o93n5nhHoM6En0HA7QNoRxvySePvTMGcAI7zikr 8gw54r/0cO4plbWw3ogoQWw9dzkWIyQ4EEPlwBJsVUZmNNaOq559qejKAXuS0/iI JKmlTk+wEDboqjyWIqW/Mu33kJ1JLo+92IBZsspmQYrqcJXbibksgSK3B7PqaOyC m2Fp/ttSjRkFwDwFv4UcujCFF7p3tSL5/lg0ZCmpOmB+LRk3e0/2eK5oR+H9qx6q iJUMnfVTNHV9g01v9Zsntk0zE4fHn/sKwYQQzMAqdv5NfdOjsm9A96STVQMQpowc OsoPnfDaUXwWwdkXKcejCL829EUDmwqc -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:18 2026 by rpki-client