This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: t2Cr5u7hlLb428ZuPSVgKFGJT6QUFVzv67XMcaYwlUU= Subject key identifier: AE:01:79:7C:6A:69:DE:83:85:30:65:FB:23:00:22:06:0D:FA:E7:B7 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 093E Signing time: Sat 10 Jan 2026 19:36:49 +0000 Manifest this update: Sat 10 Jan 2026 19:36:48 +0000 Manifest next update: Sat 17 Jan 2026 19:36:48 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: 0g7Klbx5nfzT90WvjACq00B5dUf5gUiy/AUQB/7AlPg=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 19:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Jan 10 19:36:48 2026 GMT Not After : Jan 17 19:36:48 2026 GMT Subject: CN=6962aa51-b204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:86:db:04:52:f1:63:74:6c:17:19:e4:f8:ad: a8:10:a1:3e:7d:26:b2:a9:70:33:4d:5b:ac:3e:a3: 63:ea:5a:e0:4f:72:ab:73:32:ac:d1:b5:4e:61:b1: 13:c9:22:a0:62:bf:58:00:c6:6e:f9:a7:77:ee:25: aa:e2:41:7c:04:71:3b:d7:d6:a2:f3:79:c6:3f:49: 31:2f:75:3d:9e:c9:82:5e:98:ab:68:e7:29:e9:98: 2d:14:d1:2e:94:70:30:b5:38:11:4f:b0:6e:1b:44: a6:18:2b:05:62:a9:0e:02:7c:86:1a:7d:87:00:97: 55:55:4e:5f:74:d5:5b:35:ec:80:11:b9:4c:e4:3e: 30:20:e8:a3:97:a6:e0:4b:92:ca:e6:52:ff:e1:7d: b9:a4:39:47:30:74:c5:3e:27:65:3d:7f:97:4f:16: 1b:b0:48:70:2d:64:0c:d1:83:70:da:df:b8:66:19: 19:8e:09:ce:95:5b:ea:bb:20:fe:79:63:6d:71:ba: c4:a6:09:2d:7c:bf:36:6f:79:e2:c7:eb:4f:fb:c1: 23:ae:cd:bb:7c:e9:44:2b:72:a5:59:1e:9d:46:e4: e8:fe:81:98:dd:19:b1:af:4f:52:9a:8f:9e:3c:ac: 9a:f8:b8:77:31:99:d5:4b:fd:49:ea:01:30:c5:99: 3a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:01:79:7C:6A:69:DE:83:85:30:65:FB:23:00:22:06:0D:FA:E7:B7 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:60:48:1b:2d:bf:55:5b:f4:28:34:fd:9a:84:c4:82:19:16: 14:7e:72:ef:7f:3e:ad:dd:39:01:8c:e2:97:d2:32:26:47:59: ad:64:9d:96:74:6b:d1:29:e9:c4:88:60:af:b1:1c:72:6d:8f: e8:1b:f4:74:3c:1e:02:ac:1d:7b:8a:58:6d:af:19:58:d2:bf: 33:15:cd:91:98:03:82:7d:e0:7b:b9:3a:97:62:fb:8c:64:e3: a0:5a:8b:11:3f:08:96:41:db:09:b7:5c:57:76:18:f5:f3:37: c0:d6:0c:1c:4b:5e:15:99:3a:bf:1d:08:e6:e8:f3:a8:c3:9d: e6:a7:4d:c3:7b:78:3b:a6:b7:76:65:12:ae:ea:a2:47:af:f4: e6:06:31:23:9c:de:0c:2c:8b:89:2d:d0:fa:cb:1d:e6:e8:8c: ef:9a:b0:f9:a6:74:e2:c6:f7:60:46:c5:63:a0:7e:43:4c:28: f2:79:0a:8f:72:53:12:e8:1d:0c:89:54:39:f7:44:2d:1d:2f: 02:c3:c3:c3:8e:4d:71:0d:e7:5b:1a:c9:f5:99:4d:a5:5c:1d: 35:3c:7b:cc:74:0c:f9:f8:b9:ce:c8:a2:8d:a5:f8:b5:85:85: fc:b9:fa:69:c3:5d:be:bf:9b:07:df:6d:09:25:5d:b3:63:ca: 69:e0:ba:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjYwMTEwMTkzNjQ4WhcNMjYwMTE3MTkzNjQ4WjAYMRYwFAYD VQQDDA02OTYyYWE1MS1iMjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuobbBFLxY3RsFxnk+K2oEKE+fSayqXAzTVusPqNj6lrgT3KrczKs0bVOYbET ySKgYr9YAMZu+ad37iWq4kF8BHE719ai83nGP0kxL3U9nsmCXpiraOcp6ZgtFNEu lHAwtTgRT7BuG0SmGCsFYqkOAnyGGn2HAJdVVU5fdNVbNeyAEblM5D4wIOijl6bg S5LK5lL/4X25pDlHMHTFPidlPX+XTxYbsEhwLWQM0YNw2t+4ZhkZjgnOlVvquyD+ eWNtcbrEpgktfL82b3nix+tP+8Ejrs27fOlEK3KlWR6dRuTo/oGY3Rmxr09Smo+e PKya+Lh3MZnVS/1J6gEwxZk6BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4BeXxq ad6DhTBl+yMAIgYN+ue3MB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqYEgbLb9VW/QoNP2ahMSCGRYUfnLvfz6t3TkBjOKX0jImR1mtZJ2W dGvRKenEiGCvsRxybY/oG/R0PB4CrB17ilhtrxlY0r8zFc2RmAOCfeB7uTqXYvuM ZOOgWosRPwiWQdsJt1xXdhj18zfA1gwcS14VmTq/HQjm6POow53mp03De3g7prd2 ZRKu6qJHr/TmBjEjnN4MLIuJLdD6yx3m6IzvmrD5pnTixvdgRsVjoH5DTCjyeQqP clMS6B0MiVQ590QtHS8Cw8PDjk1xDedbGsn1mU2lXB01PHvMdAz5+LnOyKKNpfi1 hYX8ufppw12+v5sH320JJV2zY8pp4Lpq -----END CERTIFICATE-----Generated at Mon Jan 12 01:25:42 2026 by rpki-client