This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: za0Xi2+GAjX8J6BHkuhAEh/BaI2UC4QxEjZYIvYXA1g= Subject key identifier: 7A:B8:1B:9D:5D:A4:BB:16:A0:B6:A6:11:81:3A:06:18:4B:71:6F:B9 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 157F Signing time: Sat 24 Jan 2026 16:31:22 +0000 Manifest this update: Sat 24 Jan 2026 16:31:22 +0000 Manifest next update: Sat 31 Jan 2026 16:31:22 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: ZlLjZ054vegg6H1Bb1I4h66tHXOoBS9og/ka+5RuMn4=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5520 (0x1590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Jan 24 16:31:22 2026 GMT Not After : Jan 31 16:31:22 2026 GMT Subject: CN=6974f3da-b27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4d:a0:d9:31:38:4f:e2:d9:d9:44:19:21:27: 62:04:74:94:6b:5d:e3:bb:90:64:a2:4c:ae:0a:42: 55:3a:e4:70:a4:53:62:fa:46:67:71:fb:15:f8:61: 64:b7:ee:df:d1:2d:6b:5c:7b:f7:f5:89:a1:41:3d: 88:af:92:70:f1:a0:78:b7:30:4d:0e:e5:17:2e:8f: 76:ca:41:c9:59:02:91:81:8c:5f:f1:94:1c:72:58: c4:98:ae:38:8e:42:d5:bc:ee:f5:a4:ac:5c:8a:1f: e0:e0:6f:b4:f4:b1:80:34:ec:f1:56:06:85:05:d6: ae:1e:74:37:6d:e7:d7:e6:fb:e6:7a:f4:b8:ce:1b: be:32:4f:5f:4a:90:b5:fd:8a:6b:84:22:5d:9d:56: 9c:6f:19:d7:3c:8c:1c:4e:3d:23:ab:cb:54:29:c4: 3f:6c:f5:64:f9:77:23:13:c0:cc:43:24:6c:b1:8a: 35:ee:7f:9f:eb:e8:5f:44:2b:15:2b:30:20:c1:4a: fe:f6:d6:0f:f0:56:b7:43:8c:8e:90:82:c8:d9:7f: b9:c4:0d:5f:de:8c:d2:88:95:67:bc:00:c9:55:6d: cf:36:95:f6:7b:71:04:f2:b5:3f:bc:aa:22:2c:63: de:b4:f9:1d:29:63:1d:de:ce:1a:96:7b:83:70:1f: b0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B8:1B:9D:5D:A4:BB:16:A0:B6:A6:11:81:3A:06:18:4B:71:6F:B9 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:df:14:0d:47:07:51:43:0c:82:11:e3:05:62:ec:87:bb:5e: 33:e2:d9:11:4c:69:2b:31:99:46:05:35:ae:24:a4:d5:85:41: 2d:a4:83:84:65:95:0b:ab:85:d9:4d:55:71:04:6c:cd:4a:1e: 13:3c:c9:9f:34:9f:17:cb:09:63:89:51:4c:2d:54:4b:a3:a2: 68:31:40:90:b5:48:e2:f9:f0:5a:ad:a5:09:28:c8:75:ac:ca: da:1a:c9:0e:86:d1:cf:11:41:f3:b1:ba:49:8f:63:42:e1:18: f9:38:49:30:81:31:18:8b:3d:a0:7e:fe:7a:b5:8a:d6:f2:5b: 4e:17:d7:47:48:47:72:8e:7f:69:2a:31:44:d7:98:56:c7:a7: 63:bc:b8:e7:de:96:49:c4:68:28:20:dd:d6:53:b4:43:54:93: f1:bb:d9:ca:1f:34:90:e2:36:4e:ff:ba:e5:24:d5:cd:b7:3a: 72:80:a3:4e:29:b1:82:8b:20:e2:ea:bb:23:aa:2f:81:2f:9e: 5f:a7:0f:9b:a0:1e:6a:88:dc:07:f6:85:14:12:f6:f2:5a:65: 40:d1:7b:08:c5:11:9f:7b:0c:6a:2b:16:b1:68:d4:4c:cd:e0: 28:3e:c2:55:b6:e9:b1:25:61:77:a6:91:3f:ad:ab:26:18:59: 1d:0f:4b:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjYwMTI0MTYzMTIyWhcNMjYwMTMxMTYzMTIyWjAYMRYwFAYD VQQDDA02OTc0ZjNkYS1iMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk2g2TE4T+LZ2UQZISdiBHSUa13ju5BkokyuCkJVOuRwpFNi+kZncfsV+GFk t+7f0S1rXHv39YmhQT2Ir5Jw8aB4tzBNDuUXLo92ykHJWQKRgYxf8ZQccljEmK44 jkLVvO71pKxcih/g4G+09LGANOzxVgaFBdauHnQ3befX5vvmevS4zhu+Mk9fSpC1 /YprhCJdnVacbxnXPIwcTj0jq8tUKcQ/bPVk+XcjE8DMQyRssYo17n+f6+hfRCsV KzAgwUr+9tYP8Fa3Q4yOkILI2X+5xA1f3ozSiJVnvADJVW3PNpX2e3EE8rU/vKoi LGPetPkdKWMd3s4alnuDcB+wDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHq4G51d pLsWoLamEYE6BhhLcW+5MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc3xQNRwdRQwyCEeMFYuyHu14z4tkRTGkrMZlGBTWuJKTVhUEtpIOE ZZULq4XZTVVxBGzNSh4TPMmfNJ8XywljiVFMLVRLo6JoMUCQtUji+fBaraUJKMh1 rMraGskOhtHPEUHzsbpJj2NC4Rj5OEkwgTEYiz2gfv56tYrW8ltOF9dHSEdyjn9p KjFE15hWx6djvLjn3pZJxGgoIN3WU7RDVJPxu9nKHzSQ4jZO/7rlJNXNtzpygKNO KbGCiyDi6rsjqi+BL55fpw+boB5qiNwH9oUUEvbyWmVA0XsIxRGfewxqKxaxaNRM zeAoPsJVtumxJWF3ppE/rasmGFkdD0uT -----END CERTIFICATE-----Generated at Sun Jan 25 17:09:07 2026 by rpki-client