This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: 0p2Pg/ZZRCMQDBvHSVldAU6tWBIoGBdA4RlmjbvgZeY= Subject key identifier: 7E:27:9C:BC:B1:81:D5:D6:4D:D3:E9:B8:DB:BD:FC:59:F2:33:1F:88 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 7D Signing time: Sun 25 Jan 2026 05:53:27 +0000 Manifest this update: Sun 25 Jan 2026 05:53:27 +0000 Manifest next update: Sun 01 Feb 2026 05:53:27 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: e9zkFuzKJf9TR5TR4B0jKFJinrE+tydjjfRur9ewT14=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Jan 25 05:53:27 2026 GMT Not After : Feb 1 05:53:27 2026 GMT Subject: CN=6975afd7-8c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:36:65:46:a0:72:c6:2f:28:f1:ca:7c:44:af: ba:92:2f:d4:50:83:1a:b1:e4:0c:f8:48:6c:87:e6: 93:43:ad:59:09:9a:e8:0e:cf:99:27:10:b9:4e:68: 2c:81:fe:93:9c:f2:ea:47:65:d3:98:97:48:fe:55: 2d:9e:48:ef:09:ca:c6:b8:f8:4e:cd:c4:61:29:27: 5d:42:c7:db:5a:5f:15:67:35:76:a6:ce:21:05:ea: ea:fb:81:c3:09:e3:da:de:57:fc:c3:9f:9b:a4:96: 41:e7:da:59:65:91:09:b0:68:92:26:20:2e:82:99: 06:d2:08:9c:59:88:81:87:95:77:9f:fb:80:44:c8: 67:29:e4:3a:e4:09:cd:ad:9e:dd:09:af:35:23:aa: 01:76:43:13:23:06:fd:52:0f:ba:fc:1b:e5:48:01: ae:38:57:b0:1d:6e:df:ae:3c:2d:2f:63:53:d5:79: c2:82:0f:ca:bc:b0:8c:9c:d9:4d:32:e7:3b:e3:25: af:36:fe:65:41:3c:96:56:76:01:f9:e8:77:99:a3: 2d:82:17:c0:50:97:7b:61:2c:88:4a:1a:fc:86:cd: ce:60:c2:a4:e1:04:03:a9:b7:19:e7:57:37:e4:5c: ac:b0:3e:11:e5:5e:ed:34:51:50:0d:04:4c:eb:59: 7e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:27:9C:BC:B1:81:D5:D6:4D:D3:E9:B8:DB:BD:FC:59:F2:33:1F:88 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:d4:62:e4:72:3b:2e:bd:c5:e7:9f:8a:44:53:7e:34:1d:1f: 69:8c:ae:1c:2a:b8:c4:ca:57:bd:0c:da:c5:3f:42:42:b6:c0: 62:68:1c:76:70:8c:45:ba:36:85:78:9b:f4:44:b4:ef:a8:a9: 14:48:0e:94:67:84:7c:70:ac:7b:66:d0:3d:ac:8a:69:28:a8: fe:48:8e:0d:2b:c0:ac:7e:9b:ec:bc:49:b7:1f:72:ad:a3:91: 84:d5:f4:a3:65:94:ca:f5:e2:e9:d6:f0:de:d5:da:1b:bd:30: 4b:0f:2c:77:a5:05:f9:f1:17:9f:33:99:3a:54:83:a5:45:7d: a3:9f:da:a6:11:a2:ed:74:38:db:b3:5b:64:65:39:fe:f8:72: 6f:25:82:12:e9:ca:cc:84:ae:d2:13:96:63:7a:e1:25:04:94: 17:57:f2:e5:3a:e9:bd:44:3d:44:39:f8:d7:70:38:f6:76:ee: 4f:f0:0c:e8:71:82:a3:7a:6b:18:c6:0d:4f:4c:a9:b5:72:86: a8:87:fc:84:fb:d5:97:6f:c5:7b:9c:7f:6b:a2:eb:85:72:86: b5:7f:e5:6a:7f:03:b1:51:8f:fc:98:06:54:fb:22:9e:df:14: f8:35:69:c1:c6:0d:90:eb:dc:47:5a:d4:48:15:5f:1a:f9:bf: 32:ac:99:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNjAxMjUwNTUzMjdaFw0yNjAyMDEwNTUzMjdaMBgxFjAUBgNV BAMMDTY5NzVhZmQ3LThjODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVNmVGoHLGLyjxynxEr7qSL9RQgxqx5Az4SGyH5pNDrVkJmugOz5knELlOaCyB /pOc8upHZdOYl0j+VS2eSO8Jysa4+E7NxGEpJ11Cx9taXxVnNXamziEF6ur7gcMJ 49reV/zDn5uklkHn2lllkQmwaJImIC6CmQbSCJxZiIGHlXef+4BEyGcp5DrkCc2t nt0JrzUjqgF2QxMjBv1SD7r8G+VIAa44V7Adbt+uPC0vY1PVecKCD8q8sIyc2U0y 5zvjJa82/mVBPJZWdgH56HeZoy2CF8BQl3thLIhKGvyGzc5gwqThBAOptxnnVzfk XKywPhHlXu00UVANBEzrWX5HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfiecvLGB 1dZN0+m42738WfIzH4gwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHLUYuRyOy69xeefikRTfjQdH2mMrhwquMTKV70M2sU/QkK2wGJoHHZw jEW6NoV4m/REtO+oqRRIDpRnhHxwrHtm0D2simkoqP5Ijg0rwKx+m+y8Sbcfcq2j kYTV9KNllMr14unW8N7V2hu9MEsPLHelBfnxF58zmTpUg6VFfaOf2qYRou10ONuz W2RlOf74cm8lghLpysyErtITlmN64SUElBdX8uU66b1EPUQ5+NdwOPZ27k/wDOhx gqN6axjGDU9MqbVyhqiH/IT71ZdvxXucf2ui64VyhrV/5Wp/A7FRj/yYBlT7Ip7f FPg1acHGDZDr3Eda1EgVXxr5vzKsmVU= -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:15 2026 by rpki-client