This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: YtsqXz6KUMmzNzSuN9iAjvH2msWE4O4HjLCUkPnwtoM= Subject key identifier: 1E:F3:15:A2:BA:DF:24:6F:8B:3F:77:00:06:D5:1E:77:D4:AA:58:22 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03B5 Signing time: Sat 24 Jan 2026 23:52:08 +0000 Manifest this update: Sat 24 Jan 2026 23:52:08 +0000 Manifest next update: Sat 31 Jan 2026 23:52:08 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: 6FBmo31TO3A+L1QsIF01SCM8a854ecSC7wckwHxxb+M=) 2: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 3: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jan 24 23:52:08 2026 GMT Not After : Jan 31 23:52:08 2026 GMT Subject: CN=69755b28-3912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:39:4b:5d:72:24:8d:7c:a0:c9:3f:a9:84:6b: ee:18:2c:30:fb:28:fc:76:86:36:bc:5b:ed:c8:f1: 26:07:7c:74:03:d0:c3:ec:cc:44:ee:3f:ae:b9:ec: bf:07:3c:b5:e5:fd:51:09:82:b5:61:d2:06:c6:d2: de:ca:f1:34:3d:dc:23:04:de:4a:5c:a8:fd:41:d6: 2c:74:45:11:75:ae:25:5b:a0:e7:8b:14:21:e9:d8: a4:13:e7:e2:88:26:9e:80:65:0b:ca:e6:b3:99:3c: 51:cc:d0:ed:44:44:90:aa:ff:32:82:a8:98:3b:3a: 7d:5e:01:a6:6d:f1:ec:7c:f5:70:65:1e:1a:8f:0f: 03:05:e7:ed:48:42:4e:42:cf:a2:ba:91:f8:42:bc: fb:71:ba:1e:6c:be:22:c5:9f:53:64:ad:53:b3:66: b4:87:85:73:f4:05:e6:0f:6a:bb:42:1c:96:99:70: 8c:be:be:57:2f:56:ea:81:98:b6:dd:47:81:c1:62: e8:9f:43:be:ea:86:b0:05:89:be:c0:42:bf:b7:db: 0e:c1:ae:cb:bd:03:f3:b1:80:ae:cc:ff:29:75:c8: c7:91:7c:48:f6:07:7e:4f:d8:6d:d7:14:c0:fc:21: 71:77:53:8e:41:6d:45:0a:ea:07:bd:bf:5c:6b:10: 03:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F3:15:A2:BA:DF:24:6F:8B:3F:77:00:06:D5:1E:77:D4:AA:58:22 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:49:14:5c:f7:61:8c:7d:31:17:da:e3:81:de:3a:a9:90:46: 5a:b9:53:68:20:8a:d5:eb:b8:00:a8:23:53:2a:30:7c:72:ed: f2:4b:0c:9c:b2:1b:73:fc:bc:35:59:ed:4b:59:57:c7:3f:c0: bf:79:39:b6:76:a0:39:ac:73:2a:35:a5:29:4d:1d:4d:bf:51: 08:77:33:27:4f:51:2c:d4:ef:6e:48:b7:45:ed:34:c7:d6:fc: b1:27:6b:f2:91:88:4b:34:37:63:a8:96:90:2d:1c:90:a8:a1: 75:47:f4:de:28:fc:92:1d:1e:c9:ef:8e:b8:65:13:c6:4d:1f: bf:13:a2:d5:b9:ba:52:bd:75:ac:91:ea:61:fe:59:16:b2:24: 4f:c7:d7:72:6b:23:08:d7:58:a4:11:f9:15:b3:95:29:c5:7a: e7:26:af:83:31:85:ab:c8:c1:59:8c:64:55:e4:9f:6c:ce:d8: b9:72:be:93:df:04:ac:ef:1c:f4:72:bf:90:35:3a:d9:42:32: be:11:fb:ad:87:03:22:04:ed:56:56:4b:bc:e0:b8:dc:58:b6: 23:43:80:a0:6c:12:d5:33:93:52:02:fe:bb:04:d5:be:23:ef: 6e:17:53:e3:62:bc:87:f0:98:a9:8c:5c:91:81:a2:22:51:47: e5:0b:a9:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwMTI0MjM1MjA4WhcNMjYwMTMxMjM1MjA4WjAYMRYwFAYD VQQDDA02OTc1NWIyOC0zOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zlLXXIkjXygyT+phGvuGCww+yj8doY2vFvtyPEmB3x0A9DD7MxE7j+uuey/ Bzy15f1RCYK1YdIGxtLeyvE0PdwjBN5KXKj9QdYsdEURda4lW6DnixQh6dikE+fi iCaegGULyuazmTxRzNDtRESQqv8ygqiYOzp9XgGmbfHsfPVwZR4ajw8DBeftSEJO Qs+iupH4Qrz7cboebL4ixZ9TZK1Ts2a0h4Vz9AXmD2q7QhyWmXCMvr5XL1bqgZi2 3UeBwWLon0O+6oawBYm+wEK/t9sOwa7LvQPzsYCuzP8pdcjHkXxI9gd+T9ht1xTA /CFxd1OOQW1FCuoHvb9caxADJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7zFaK6 3yRviz93AAbVHnfUqlgiMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoSRRc92GMfTEX2uOB3jqpkEZauVNoIIrV67gAqCNTKjB8cu3ySwyc shtz/Lw1We1LWVfHP8C/eTm2dqA5rHMqNaUpTR1Nv1EIdzMnT1Es1O9uSLdF7TTH 1vyxJ2vykYhLNDdjqJaQLRyQqKF1R/TeKPySHR7J7464ZRPGTR+/E6LVubpSvXWs keph/lkWsiRPx9dyayMI11ikEfkVs5UpxXrnJq+DMYWryMFZjGRV5J9szti5cr6T 3wSs7xz0cr+QNTrZQjK+EfuthwMiBO1WVku84LjcWLYjQ4CgbBLVM5NSAv67BNW+ I+9uF1PjYryH8JipjFyRgaIiUUflC6mk -----END CERTIFICATE-----Generated at Sun Jan 25 12:29:58 2026 by rpki-client