This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: ppcGwRUkNzANTlcSe+9S2XrldZEpjGW0Cfcp9UUCl54= Subject key identifier: B5:B7:6F:E7:C5:20:7D:DF:FF:58:82:6E:14:0B:A8:80:65:A9:DD:AA Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 084B Signing time: Sat 24 Jan 2026 20:18:01 +0000 Manifest this update: Sat 24 Jan 2026 20:18:01 +0000 Manifest next update: Sat 31 Jan 2026 20:18:01 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: TPO8fQ/7HrSYyE2fBblWls0OnSXx3vNM8kgcHYwLmuk=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: bp4jWdbgFBJj7qXPWgiCGUliXYnrbIsNlkes3iQSxxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Jan 24 20:18:01 2026 GMT Not After : Jan 31 20:18:01 2026 GMT Subject: CN=697528f9-096b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:67:fa:a8:4d:da:07:de:ca:9c:f7:57:ab:ed: 64:2e:2c:f8:30:64:15:4c:43:f7:18:cd:db:76:30: ff:b5:c0:56:80:ff:3f:2a:6d:64:b5:fe:3b:46:7b: 2f:c1:d2:27:2f:c8:b2:70:36:ba:0d:43:f2:e0:af: 57:53:f0:8e:61:a5:85:87:2b:18:fa:9f:78:63:6b: 2b:26:c8:e8:09:e4:d0:c8:58:fa:1c:99:17:75:24: 54:ba:3e:cc:64:a6:5f:19:4a:71:36:24:c1:74:a1: 49:5b:fc:d0:07:14:09:f8:6b:2c:e6:69:de:72:6b: 21:bd:86:2a:4e:20:89:e4:fe:ea:ad:d1:f8:6b:49: ea:cf:0a:b7:a1:73:e0:3c:d6:62:22:58:ad:90:1f: 1f:8c:f2:e6:53:0f:22:55:a6:3c:cd:80:72:c0:09: 88:5f:a0:24:c8:bd:00:f4:60:12:d4:f3:7b:75:82: 9c:50:0f:c7:66:8f:26:72:56:b2:de:0d:a4:80:e7: 4f:31:f8:24:02:5b:3e:32:39:5d:5d:51:e6:ac:39: 6c:9e:93:1c:47:42:2f:14:1e:2d:6d:ce:cd:07:50: 3c:77:02:d6:50:77:52:bc:24:f3:2c:4b:32:9b:0b: 11:f0:a0:65:bf:ca:3a:d8:f9:9d:64:4a:58:d5:91: a0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B7:6F:E7:C5:20:7D:DF:FF:58:82:6E:14:0B:A8:80:65:A9:DD:AA X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:e6:7c:df:44:7a:5d:2f:c1:9d:b7:c1:44:a0:46:58:46:78: 4c:ee:87:34:e2:bb:b4:b8:b0:b8:14:f7:5f:38:0f:4a:e4:3f: 83:9c:64:16:74:34:2a:fe:f8:ff:88:c7:7b:59:cc:db:e1:5f: 79:b8:0f:46:57:b2:85:28:50:6f:b6:4e:54:b7:8e:37:16:43: 1c:a6:a3:cb:d0:c9:d4:60:e4:6a:c5:23:96:69:c5:e5:8c:35: ec:d6:57:1d:ba:ee:88:0f:44:eb:d4:f0:79:3c:27:68:e9:bf: 95:97:f9:6d:d3:e3:3c:25:79:b8:59:2a:e6:0d:0d:80:9d:3e: 27:63:8b:37:85:65:74:3a:59:e1:eb:d2:93:b4:3f:fa:4d:67: a9:42:11:50:63:99:bb:0e:ef:ae:39:ef:8e:c8:91:fa:8d:8a: 0b:bb:33:e0:77:40:cd:33:c2:44:ce:08:ba:bd:ce:f8:58:ad: 64:8f:2a:d7:02:46:9e:4d:98:3d:7f:1d:d5:fb:6d:38:42:f6: 2d:e3:bc:ea:84:2b:03:01:73:7e:46:97:b7:53:08:1a:1b:f2: 33:47:f6:4d:cc:9d:c8:81:b5:79:e2:36:15:e0:90:66:31:42: 8e:f0:da:ff:09:27:a9:09:fc:2a:5e:6b:34:a1:98:a2:ba:10: ba:c0:3a:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwMTI0MjAxODAxWhcNMjYwMTMxMjAxODAxWjAYMRYwFAYD VQQDDA02OTc1MjhmOS0wOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmf6qE3aB97KnPdXq+1kLiz4MGQVTEP3GM3bdjD/tcBWgP8/Km1ktf47Rnsv wdInL8iycDa6DUPy4K9XU/COYaWFhysY+p94Y2srJsjoCeTQyFj6HJkXdSRUuj7M ZKZfGUpxNiTBdKFJW/zQBxQJ+Gss5mnecmshvYYqTiCJ5P7qrdH4a0nqzwq3oXPg PNZiIlitkB8fjPLmUw8iVaY8zYBywAmIX6AkyL0A9GAS1PN7dYKcUA/HZo8mclay 3g2kgOdPMfgkAls+MjldXVHmrDlsnpMcR0IvFB4tbc7NB1A8dwLWUHdSvCTzLEsy mwsR8KBlv8o62PmdZEpY1ZGgQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLW3b+fF IH3f/1iCbhQLqIBlqd2qMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV5nzfRHpdL8Gdt8FEoEZYRnhM7oc04ru0uLC4FPdfOA9K5D+DnGQW dDQq/vj/iMd7Wczb4V95uA9GV7KFKFBvtk5Ut443FkMcpqPL0MnUYORqxSOWacXl jDXs1lcduu6ID0Tr1PB5PCdo6b+Vl/lt0+M8JXm4WSrmDQ2AnT4nY4s3hWV0Olnh 69KTtD/6TWepQhFQY5m7Du+uOe+OyJH6jYoLuzPgd0DNM8JEzgi6vc74WK1kjyrX AkaeTZg9fx3V+204QvYt47zqhCsDAXN+Rpe3UwgaG/IzR/ZNzJ3IgbV54jYV4JBm MUKO8Nr/CSepCfwqXms0oZiiuhC6wDpQ -----END CERTIFICATE-----Generated at Sun Jan 25 03:00:55 2026 by rpki-client