This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: VwTrwpaWUF7F4huNsCIm/zNLqJXGEFo4dD5xtrz+Tns= Subject key identifier: 0D:E4:C2:D6:89:7C:D7:0E:FC:1E:21:3A:EA:88:2E:F0:EB:85:A9:0B Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B2D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B17 Signing time: Sat 24 Jan 2026 15:31:31 +0000 Manifest this update: Sat 24 Jan 2026 15:31:30 +0000 Manifest next update: Sat 31 Jan 2026 15:31:30 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: eeBijGW2SDgW1JK16RgeTT9Lud6MqyvM2n/UyFh5PKE=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: 0/HP0DwNYOfkRXXhvxhJ7qmLcNQDOwmKr3HHIF1F5nU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6957 (0x1b2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Jan 24 15:31:30 2026 GMT Not After : Jan 31 15:31:30 2026 GMT Subject: CN=6974e5d3-6185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:a6:5c:34:83:34:a8:9d:74:9d:98:8f:a1: da:03:fd:9d:df:71:6e:76:a3:8f:e8:2d:a0:ff:d1: 3d:ca:8e:b6:9f:ad:7c:61:eb:83:92:32:18:dd:cf: ab:0c:49:ce:b2:aa:ad:3a:64:43:48:93:b5:ba:81: a4:82:db:33:ca:c4:8f:62:f6:ac:3b:65:08:b6:63: fd:fe:a0:bf:b9:d2:ea:27:ec:40:a3:d5:d9:de:89: d8:b0:11:51:77:b0:b6:50:d5:43:1d:e9:5d:50:72: fc:45:9d:1c:3a:72:5a:73:f2:b0:ff:80:53:ab:e0: 44:8f:04:6e:5d:d2:35:58:b0:14:7a:28:c2:b4:39: ad:71:46:92:e3:6b:2d:d6:ff:38:95:fd:3f:67:d9: 1c:e5:44:ce:7c:c8:47:67:40:fc:1d:bc:a1:a7:f0: d7:69:13:cf:27:0a:47:56:e3:1f:1e:2a:14:04:0a: 5a:95:c4:71:c7:f2:cb:a9:49:06:ab:5a:ab:ec:53: 50:bd:f8:9e:ca:9b:7f:c2:e1:32:91:8c:75:ac:88: 9b:1e:ec:df:b6:e3:85:4f:93:ac:1c:29:f8:3c:83: 10:41:40:8f:04:a3:8a:fb:7b:63:53:4b:00:76:25: 96:30:ff:7f:96:d1:57:e0:e7:8b:b1:04:30:ba:da: 8e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E4:C2:D6:89:7C:D7:0E:FC:1E:21:3A:EA:88:2E:F0:EB:85:A9:0B X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a9:3d:f1:30:9b:bb:ef:1d:be:9c:05:95:7c:71:bc:05:f2: fb:6e:dc:c5:a1:7d:9e:94:b3:02:b4:43:84:d9:d4:04:0d:d2: 05:c1:e0:9c:27:e3:23:57:7f:5f:ce:b8:77:31:26:b6:05:e1: 89:17:7c:d5:c8:40:b3:8a:e5:fe:1f:49:79:e7:12:39:82:cd: 0f:f7:61:7a:e2:a3:ea:89:99:02:90:3b:9d:38:bb:73:e5:55: 8d:38:e2:a4:d5:d3:17:d7:ea:01:8b:c6:7d:47:1b:4a:43:0b: d5:58:67:86:1d:54:6a:83:35:de:ff:cf:31:3d:73:f7:63:e4: 72:9d:53:73:4b:97:f9:d9:17:11:57:0c:2f:09:4f:7b:34:c7: ee:e3:b0:3f:79:52:c5:ad:6a:e4:ee:96:96:3b:82:06:e3:1e: 74:69:67:76:0a:b8:03:bf:d8:d2:82:d6:f4:62:bc:7f:6a:db: a7:3c:29:05:29:63:a3:22:a6:24:17:31:61:36:33:05:b6:c8: 69:b0:53:dc:55:18:7c:5d:9e:2d:d8:39:9f:72:f9:be:7b:b1: c9:4a:21:66:c4:01:17:4a:09:95:61:0d:59:1f:3c:f1:68:e9: 31:e5:8b:10:e3:b5:c0:4a:98:47:5e:fe:05:f1:fa:67:3d:19: 58:1b:b1:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjYwMTI0MTUzMTMwWhcNMjYwMTMxMTUzMTMwWjAYMRYwFAYD VQQDDA02OTc0ZTVkMy02MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycSmXDSDNKiddJ2Yj6HaA/2d33FudqOP6C2g/9E9yo62n618YeuDkjIY3c+r DEnOsqqtOmRDSJO1uoGkgtszysSPYvasO2UItmP9/qC/udLqJ+xAo9XZ3onYsBFR d7C2UNVDHeldUHL8RZ0cOnJac/Kw/4BTq+BEjwRuXdI1WLAUeijCtDmtcUaS42st 1v84lf0/Z9kc5UTOfMhHZ0D8Hbyhp/DXaRPPJwpHVuMfHioUBApalcRxx/LLqUkG q1qr7FNQvfieypt/wuEykYx1rIibHuzftuOFT5OsHCn4PIMQQUCPBKOK+3tjU0sA diWWMP9/ltFX4OeLsQQwutqOfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3kwtaJ fNcO/B4hOuqILvDrhakLMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfqT3xMJu77x2+nAWVfHG8BfL7btzFoX2elLMCtEOE2dQEDdIFweCc J+MjV39fzrh3MSa2BeGJF3zVyECziuX+H0l55xI5gs0P92F64qPqiZkCkDudOLtz 5VWNOOKk1dMX1+oBi8Z9RxtKQwvVWGeGHVRqgzXe/88xPXP3Y+RynVNzS5f52RcR VwwvCU97NMfu47A/eVLFrWrk7paWO4IG4x50aWd2CrgDv9jSgtb0Yrx/atunPCkF KWOjIqYkFzFhNjMFtshpsFPcVRh8XZ4t2Dmfcvm+e7HJSiFmxAEXSgmVYQ1ZHzzx aOkx5YsQ47XASphHXv4F8fpnPRlYG7EE -----END CERTIFICATE-----Generated at Sun Jan 25 11:32:05 2026 by rpki-client