This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: 8jUh6DBbhPf9eLv1lPGtbQIkaY0f3Vo7lS0y5rgRSZI= Subject key identifier: 99:C7:D0:4A:F8:16:F3:CA:00:C1:13:71:AD:80:78:00:A2:71:D0:BD Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 085F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 0844 Signing time: Sat 10 Jan 2026 20:18:53 +0000 Manifest this update: Sat 10 Jan 2026 20:18:52 +0000 Manifest next update: Sat 17 Jan 2026 20:18:52 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: vZwG71K7vcpFS1MSjF8519up1O1v3S/3xI5IH2KNsdU=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: bp4jWdbgFBJj7qXPWgiCGUliXYnrbIsNlkes3iQSxxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 20:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Jan 10 20:18:52 2026 GMT Not After : Jan 17 20:18:52 2026 GMT Subject: CN=6962b42d-00ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cf:65:dd:d4:6d:df:9e:cb:ae:f2:b1:ba:6a: 50:91:c9:1a:f0:dd:ae:51:10:b7:39:5c:26:b7:00: df:9c:a0:35:79:fd:f8:2e:b3:3e:0a:1d:02:46:56: 78:05:0d:17:ee:74:91:fa:04:45:60:af:e6:1d:26: 8c:04:c9:d8:37:22:1f:f7:6f:c8:8d:ad:39:b2:67: 2c:aa:f5:f8:1d:14:4f:6c:20:c4:8e:fd:da:b7:75: 8b:d8:65:d9:91:a8:81:ba:c0:1e:30:53:8c:2c:6e: fc:f4:0e:1e:91:8a:ce:3f:0e:6b:45:bc:8b:bc:db: 87:1f:a4:92:0f:4b:a6:99:8d:5c:59:55:8b:f3:c1: 3e:25:fa:12:4a:53:21:bf:7f:53:0a:65:00:34:ac: d5:9a:0c:d3:04:b7:f1:27:fe:38:2a:e6:a4:e1:d0: fd:f3:cf:f5:df:63:11:75:1f:48:92:b8:0f:26:c9: c5:fb:7a:91:67:3f:8a:0e:e0:21:ca:13:99:35:65: 68:3c:88:be:7f:c0:9f:8e:b3:b5:68:19:53:f1:f7: 47:a5:b8:70:21:6f:fa:06:2d:7f:4b:88:c2:66:90: 6d:17:66:1a:0b:a1:3e:50:40:8f:6c:9f:0f:f5:af: 23:91:33:29:9d:ef:0e:75:95:5d:35:56:35:b9:49: 92:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C7:D0:4A:F8:16:F3:CA:00:C1:13:71:AD:80:78:00:A2:71:D0:BD X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:b6:74:6a:13:82:5e:16:59:c9:67:79:d8:fe:6a:56:dd:ac: 26:a6:ee:80:0b:b7:d0:36:af:28:7d:db:41:48:c0:16:2e:8c: 75:4b:fd:72:64:05:da:da:80:d3:25:7f:31:53:ce:1c:93:b2: 38:44:a7:2e:68:03:d7:cd:99:ee:89:69:03:de:56:52:ad:0f: 23:4d:ac:e1:7e:ab:32:78:00:6d:ea:ce:8e:cc:c9:a3:b7:ff: 99:9b:1e:08:8a:c6:11:1d:8a:7e:bc:71:75:61:31:17:3b:39: f4:3f:f4:b4:52:2e:e9:7b:e3:8f:13:09:15:b2:8f:66:e3:92: f3:5a:8f:33:9a:32:a9:e1:1d:53:1f:c6:ae:61:d6:52:20:f8: b9:bf:1f:ad:7a:fd:4d:57:26:39:35:96:3e:d3:40:5f:ec:1b: b2:ec:f0:d7:d7:48:a4:11:1c:44:41:00:b1:82:62:30:89:7a: 08:e8:d1:29:e5:e0:a1:15:82:0d:cb:74:6e:61:e9:03:8c:d5: 65:38:a6:53:1f:94:e7:78:4d:d5:2d:ab:36:2d:a7:f6:9e:4e: b8:a6:9c:4b:06:bf:a0:9c:6e:f7:3a:75:4f:44:08:e7:30:c9: b8:92:ba:d2:3f:dc:2d:d8:5d:da:ca:94:25:85:6b:76:db:f9: 85:4f:21:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwMTEwMjAxODUyWhcNMjYwMTE3MjAxODUyWjAYMRYwFAYD VQQDDA02OTYyYjQyZC0wMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAos9l3dRt357LrvKxumpQkcka8N2uURC3OVwmtwDfnKA1ef34LrM+Ch0CRlZ4 BQ0X7nSR+gRFYK/mHSaMBMnYNyIf92/Ija05smcsqvX4HRRPbCDEjv3at3WL2GXZ kaiBusAeMFOMLG789A4ekYrOPw5rRbyLvNuHH6SSD0ummY1cWVWL88E+JfoSSlMh v39TCmUANKzVmgzTBLfxJ/44Kuak4dD988/132MRdR9IkrgPJsnF+3qRZz+KDuAh yhOZNWVoPIi+f8CfjrO1aBlT8fdHpbhwIW/6Bi1/S4jCZpBtF2YaC6E+UECPbJ8P 9a8jkTMpne8OdZVdNVY1uUmSBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnH0Er4 FvPKAMETca2AeACicdC9MB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUtnRqE4JeFlnJZ3nY/mpW3awmpu6AC7fQNq8ofdtBSMAWLox1S/1y ZAXa2oDTJX8xU84ck7I4RKcuaAPXzZnuiWkD3lZSrQ8jTazhfqsyeABt6s6OzMmj t/+Zmx4IisYRHYp+vHF1YTEXOzn0P/S0Ui7pe+OPEwkVso9m45LzWo8zmjKp4R1T H8auYdZSIPi5vx+tev1NVyY5NZY+00Bf7Buy7PDX10ikERxEQQCxgmIwiXoI6NEp 5eChFYINy3RuYekDjNVlOKZTH5TneE3VLas2Laf2nk64ppxLBr+gnG73OnVPRAjn MMm4krrSP9wt2F3aypQlhWt22/mFTyH7 -----END CERTIFICATE-----Generated at Sun Jan 11 20:42:01 2026 by rpki-client