This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: Bizvw/un7CiuAXxro2+Tmp9Ew7Jv9JW1v+n2sxTjgpQ= Subject key identifier: 33:D8:7F:1E:36:B0:3D:52:95:3B:86:93:67:FF:C8:39:1A:C0:1B:5E Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: A2 Signing time: Sun 11 Jan 2026 05:28:03 +0000 Manifest this update: Sun 11 Jan 2026 05:28:02 +0000 Manifest next update: Sun 18 Jan 2026 05:28:02 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: rHcl8Ur9ZNr1zoEV+kReu5vfVDfnnUdBt6R5IBvCfyo=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: iou6EnoDniALad6Yrel3h0kHQ1grK3uoWpHvIkBO8LI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 05:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Jan 11 05:28:02 2026 GMT Not After : Jan 18 05:28:02 2026 GMT Subject: CN=696334e3-041d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:2d:43:4b:c1:6e:91:fd:2d:22:4a:f3:8a: a2:53:2b:d2:18:20:bc:79:a2:4c:da:3b:24:1b:91: 42:b2:57:55:2b:f0:0b:56:c1:16:dd:44:f4:eb:b3: c2:9a:d8:08:20:6f:56:46:3e:6f:27:37:dc:3e:86: cb:ba:7a:da:29:32:42:f2:47:32:f7:4a:6b:54:97: 3d:f1:4d:c8:be:00:0f:62:bb:c6:a5:eb:c8:6a:a5: c1:56:14:81:0e:2d:b2:82:5f:e2:db:de:cf:bc:16: f2:06:6f:ac:05:78:db:db:a6:aa:1e:ca:c2:c2:55: 2a:a9:8c:59:34:a1:b3:10:b2:bd:fd:c5:77:0f:be: 83:3b:09:02:fc:d9:36:cd:56:bf:dd:39:eb:30:8d: f3:bf:84:41:9b:c1:c8:7e:79:cc:8d:28:17:f8:6f: e6:18:aa:d8:66:6a:40:9b:22:82:03:06:8e:59:49: 68:f9:ad:95:55:61:fa:67:73:e6:b3:cb:4e:88:b6: 87:a9:1b:3e:91:1c:00:b4:95:9d:15:ea:c8:8a:78: 4e:9f:c8:7f:8a:53:ed:33:96:48:2f:62:c0:18:13: 6e:69:c8:5e:6e:0f:fa:ed:36:00:b3:28:5e:20:e7: 04:19:8e:01:a5:65:de:23:ea:e0:46:87:3a:05:f9: 65:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D8:7F:1E:36:B0:3D:52:95:3B:86:93:67:FF:C8:39:1A:C0:1B:5E X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:f9:d7:f5:60:c9:2a:0d:1e:ac:64:dd:1a:49:17:30:10:1a: 40:cb:d9:89:d2:e1:7d:5b:29:d6:f9:89:be:7a:c0:19:76:82: 09:83:10:ca:07:3a:28:5d:58:64:ea:95:12:16:3f:96:58:5d: ba:0a:6d:63:a7:a3:e2:9c:f2:3e:73:92:ba:d9:1e:3d:f3:16: e8:b5:ff:95:40:53:0a:40:14:4a:5d:ff:e8:21:d2:14:23:10: 2a:a3:28:a1:ba:e9:f7:4a:31:90:35:cc:17:31:fa:f2:5a:3b: fd:7b:c3:0f:cc:3d:22:c4:37:0d:83:f5:6c:65:2c:78:0a:9c: d0:49:b5:93:42:be:92:85:9f:15:ef:be:2e:cc:f3:2a:7b:2a: 93:22:eb:38:87:0f:ed:ef:aa:c4:23:63:75:d2:65:b4:3c:d2: 20:6c:6b:f5:99:e0:16:ee:70:f7:29:5a:42:45:61:f3:f4:c6: cf:35:98:a2:75:4e:3f:18:c0:7a:ab:fc:d0:10:4b:03:b2:22: d5:1c:7e:6a:81:e3:cc:a1:05:90:72:b7:3a:7d:09:16:26:d0: 88:51:65:f8:39:45:5e:34:e7:cc:5c:f7:28:88:6b:29:48:05: 68:80:1e:ef:de:82:54:ac:88:ff:55:d6:48:a2:65:65:a2:74: cc:66:00:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0OTgxMTAvBgNVBAUTKDFDREUxMjQ0Q0JCQjk2NTQyRTZDOEIwOUEzREFDMUMx QjQ0MzY4RDcwHhcNMjYwMTExMDUyODAyWhcNMjYwMTE4MDUyODAyWjAYMRYwFAYD VQQDDA02OTYzMzRlMy0wNDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG8tQ0vBbpH9LSJK84qiUyvSGCC8eaJM2jskG5FCsldVK/ALVsEW3UT067PC mtgIIG9WRj5vJzfcPobLunraKTJC8kcy90prVJc98U3IvgAPYrvGpevIaqXBVhSB Di2ygl/i297PvBbyBm+sBXjb26aqHsrCwlUqqYxZNKGzELK9/cV3D76DOwkC/Nk2 zVa/3TnrMI3zv4RBm8HIfnnMjSgX+G/mGKrYZmpAmyKCAwaOWUlo+a2VVWH6Z3Pm s8tOiLaHqRs+kRwAtJWdFerIinhOn8h/ilPtM5ZIL2LAGBNuachebg/67TYAsyhe IOcEGY4BpWXeI+rgRoc6BflliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPYfx42 sD1SlTuGk2f/yDkawBteMB8GA1UdIwQYMBaAFBzeEkTLu5ZULmyLCaPawcG0Q2jX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ5OC9EMkRFRDM0NkY4 MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xsUXViSXNKbzlyQndiUkRh TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ5OC9EMkRFRDM0NkY4MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xs UXViSXNKbzlyQndiUkRhTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq+df1YMkqDR6sZN0aSRcwEBpAy9mJ0uF9WynW+Ym+esAZdoIJgxDK BzooXVhk6pUSFj+WWF26Cm1jp6PinPI+c5K62R498xbotf+VQFMKQBRKXf/oIdIU IxAqoyihuun3SjGQNcwXMfryWjv9e8MPzD0ixDcNg/VsZSx4CpzQSbWTQr6ShZ8V 774uzPMqeyqTIus4hw/t76rEI2N10mW0PNIgbGv1meAW7nD3KVpCRWHz9MbPNZii dU4/GMB6q/zQEEsDsiLVHH5qgePMoQWQcrc6fQkWJtCIUWX4OUVeNOfMXPcoiGsp SAVogB7v3oJUrIj/VdZIomVlonTMZgBJ -----END CERTIFICATE-----Generated at Mon Jan 12 02:56:22 2026 by rpki-client