This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: AA+OOXkEctHN7d6i8wlkWOekug/ukDdUGstzvP/jP7c= Subject key identifier: B1:C8:FE:60:22:74:C5:09:1E:0B:73:6B:0A:F8:BC:B1:8E:C4:71:23 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 1401 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13EC Signing time: Sat 10 Jan 2026 16:40:51 +0000 Manifest this update: Sat 10 Jan 2026 16:40:51 +0000 Manifest next update: Sat 17 Jan 2026 16:40:51 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: ENVScM+FFRvRkWVNFBQSKAk1iJpKvRL1hnq/U3PlETA=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 16:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5121 (0x1401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Jan 10 16:40:51 2026 GMT Not After : Jan 17 16:40:51 2026 GMT Subject: CN=69628113-864f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:f0:02:1d:d5:0a:ba:60:98:d7:ac:15:cf: d9:47:4d:3f:eb:af:48:a5:ed:f9:71:f8:54:98:2f: a9:07:12:cb:d4:b5:57:a2:ca:71:30:5c:12:ce:64: e4:68:c4:70:17:bc:81:24:ae:0a:75:a0:8b:b0:35: 97:28:8a:db:60:be:ff:d5:bb:25:b1:2b:40:87:b5: 32:63:2f:56:e8:71:8c:75:26:c6:7b:b2:49:39:20: 68:09:ad:82:5c:f2:17:d0:b7:21:b2:75:1e:3a:d8: 45:d1:c8:7d:a2:63:b5:bd:36:b6:44:dd:6f:45:19: c2:23:c4:97:20:fa:3f:f3:95:4c:ae:77:0c:46:33: d1:1f:4e:37:d9:37:ce:9a:86:f7:a3:b4:c7:92:8e: a2:44:a2:57:ef:94:43:9e:44:da:3e:c0:09:ce:0e: f8:9e:3a:e3:2b:0d:c1:a4:b4:02:13:17:05:97:9f: f9:cf:b8:31:48:36:4f:46:63:e6:d0:c4:8d:35:d1: c5:60:ba:86:f0:e9:20:8c:b8:f3:19:88:db:01:44: 5a:9d:1b:03:b5:69:51:ea:a3:a3:00:99:47:38:5c: 03:45:96:83:fa:11:7d:d7:4c:c4:64:42:8b:47:38: ea:0d:e0:0e:1c:1d:7d:db:2c:c5:c6:e7:e9:7f:0e: 3a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C8:FE:60:22:74:C5:09:1E:0B:73:6B:0A:F8:BC:B1:8E:C4:71:23 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:77:37:5f:ea:d9:eb:63:b5:a5:b8:d1:13:2a:ae:aa:56:ab: 89:b2:2e:3d:51:12:70:cd:ab:83:5c:94:5c:3e:b1:2d:b7:c3: 2f:a2:4b:f2:9b:74:b2:0c:da:21:af:18:bf:ba:62:61:1d:15: bc:55:8d:09:ba:05:c6:d5:e4:be:c8:2d:9f:59:71:3a:5b:7b: 01:a4:39:56:fe:73:02:d1:c4:dc:85:2c:a5:78:8a:40:6a:41: af:2b:6c:52:87:05:5d:21:a2:13:2c:fa:7b:9d:2c:21:b9:10: 83:8c:3f:11:e7:b1:8f:dd:57:3a:02:6f:74:c7:90:dc:70:17: 39:05:96:3f:ff:cd:3c:bd:29:39:67:e2:88:24:18:11:61:72: cc:19:09:f5:8b:36:df:11:12:7a:f3:ab:34:40:73:f9:00:c0: 64:f2:33:f5:cf:af:56:95:4c:19:3a:03:5b:3b:bf:5d:3f:65: 52:44:aa:71:4d:8b:0c:69:e4:88:e4:aa:f0:bc:11:52:5a:9b: 8f:16:40:b1:5a:cc:69:d5:67:c8:b7:eb:bd:31:d8:be:88:60: 76:3c:f9:85:7f:f8:74:27:c9:cf:6c:c9:1c:35:9c:1b:0e:39: 65:fa:b3:52:7e:36:f1:54:f2:c4:af:85:84:89:96:1c:87:00: 14:dd:27:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjYwMTEwMTY0MDUxWhcNMjYwMTE3MTY0MDUxWjAYMRYwFAYD VQQDDA02OTYyODExMy04NjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEvwAh3VCrpgmNesFc/ZR00/669Ipe35cfhUmC+pBxLL1LVXospxMFwSzmTk aMRwF7yBJK4KdaCLsDWXKIrbYL7/1bslsStAh7UyYy9W6HGMdSbGe7JJOSBoCa2C XPIX0LchsnUeOthF0ch9omO1vTa2RN1vRRnCI8SXIPo/85VMrncMRjPRH0432TfO mob3o7THko6iRKJX75RDnkTaPsAJzg74njrjKw3BpLQCExcFl5/5z7gxSDZPRmPm 0MSNNdHFYLqG8OkgjLjzGYjbAURanRsDtWlR6qOjAJlHOFwDRZaD+hF910zEZEKL RzjqDeAOHB192yzFxufpfw46FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHI/mAi dMUJHgtzawr4vLGOxHEjMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRdzdf6tnrY7WluNETKq6qVquJsi49URJwzauDXJRcPrEtt8Mvokvy m3SyDNohrxi/umJhHRW8VY0JugXG1eS+yC2fWXE6W3sBpDlW/nMC0cTchSyleIpA akGvK2xShwVdIaITLPp7nSwhuRCDjD8R57GP3Vc6Am90x5DccBc5BZY//808vSk5 Z+KIJBgRYXLMGQn1izbfERJ686s0QHP5AMBk8jP1z69WlUwZOgNbO79dP2VSRKpx TYsMaeSI5KrwvBFSWpuPFkCxWsxp1WfIt+u9Mdi+iGB2PPmFf/h0J8nPbMkcNZwb Djll+rNSfjbxVPLEr4WEiZYchwAU3Se/ -----END CERTIFICATE-----Generated at Sun Jan 11 07:39:36 2026 by rpki-client