This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: xVDWmJrZJ8Q34SGmMVwlVfPnh5xmbzJ20NPLGvPRRHQ= Subject key identifier: 50:F0:6B:F9:B9:A5:B1:61:AF:42:40:DD:EB:93:62:01:F7:63:FA:C7 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A62 Signing time: Sat 10 Jan 2026 19:06:51 +0000 Manifest this update: Sat 10 Jan 2026 19:06:51 +0000 Manifest next update: Sat 17 Jan 2026 19:06:51 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: fMs/WnMDE4j7tjeAdqTkgmZ+I+uF473BVR9afvWrx9s=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 19:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2669 (0xa6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Jan 10 19:06:51 2026 GMT Not After : Jan 17 19:06:51 2026 GMT Subject: CN=6962a34b-40ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:ea:c2:92:f6:3c:59:2c:8a:54:5e:14:69:18: 94:8a:38:2d:47:32:62:87:5c:6c:b1:27:bb:48:0a: 5c:76:3c:6c:1f:16:05:83:e9:c6:1a:2e:60:4b:57: 8f:bc:4e:a5:10:10:93:dc:0c:9b:40:cd:6d:55:e3: 8e:3b:f6:7d:93:8d:19:9a:ad:2c:3a:cd:6b:8d:c9: 15:a8:06:a1:30:7f:ce:9e:4e:92:3c:e7:a3:6a:45: bf:8e:ff:11:bb:d6:92:0b:24:e8:25:87:3c:e7:9f: d6:57:45:9d:ef:25:42:49:8e:0a:0b:56:d7:ca:83: 3d:44:85:e9:57:d0:24:67:12:a2:94:3b:63:79:d6: 54:13:fa:2d:79:1a:4b:95:ef:d1:70:75:cb:b3:a5: 46:66:74:bd:85:a2:86:e6:ad:ac:59:bf:49:31:99: 82:22:a8:bd:51:89:c6:f8:4e:c2:3a:58:e7:95:7a: ee:8f:aa:8e:f1:81:f1:0a:ec:75:a0:b6:8b:50:9f: 1b:0d:68:d9:cb:ff:64:1c:4f:94:43:94:bb:0f:f5: df:f9:fc:9c:bf:f4:7b:5b:ed:1d:8e:32:27:b8:93: f2:36:ec:aa:cd:75:ad:1e:c9:93:1b:f6:c9:48:9a: 34:03:e6:a7:36:32:50:a6:fc:b0:ba:94:34:52:94: b3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F0:6B:F9:B9:A5:B1:61:AF:42:40:DD:EB:93:62:01:F7:63:FA:C7 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:1c:56:2c:e3:5c:37:ad:29:a1:eb:0a:16:96:02:51:fb:37: eb:d1:1a:8f:6b:1c:58:84:63:d9:61:14:60:d7:3c:67:8a:3c: e2:fd:9e:6d:ed:fe:ba:70:46:f3:4d:a9:bc:92:95:77:5f:36: a7:42:04:be:0a:af:0a:6c:1d:83:00:88:36:f9:e7:eb:ad:8f: 16:84:c7:f0:d5:19:ca:82:82:50:55:a9:9b:dd:e9:24:8d:12: ba:7e:56:aa:d5:8a:6d:ab:75:e5:68:76:fa:0d:60:a0:9a:9c: 95:40:3b:70:a3:64:76:d5:26:2c:3b:01:78:d6:67:f3:1f:d1: e3:df:0d:55:a8:90:0b:2e:65:d8:02:46:b3:29:4b:f5:07:77: 2a:21:8f:80:bb:9f:bb:2a:df:e3:c0:da:cd:cd:eb:26:cd:82: c2:7a:17:92:2c:5a:e6:a3:17:d7:f1:6b:94:b7:fa:9a:7a:6b: b2:f4:be:76:3c:c9:3d:bf:39:bb:72:ef:80:a9:3b:ec:b0:73: b0:bd:ec:79:c2:5f:83:a5:ed:a7:80:36:5d:ea:12:64:69:ca: 99:e5:92:24:50:50:fd:ec:af:f4:fd:34:c9:38:93:11:28:55: 7a:37:a6:b9:16:ed:9e:c8:8d:a7:24:48:d9:2c:9c:f9:03:07: 40:45:49:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjYwMTEwMTkwNjUxWhcNMjYwMTE3MTkwNjUxWjAYMRYwFAYD VQQDDA02OTYyYTM0Yi00MGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh+rCkvY8WSyKVF4UaRiUijgtRzJih1xssSe7SApcdjxsHxYFg+nGGi5gS1eP vE6lEBCT3AybQM1tVeOOO/Z9k40Zmq0sOs1rjckVqAahMH/Onk6SPOejakW/jv8R u9aSCyToJYc855/WV0Wd7yVCSY4KC1bXyoM9RIXpV9AkZxKilDtjedZUE/oteRpL le/RcHXLs6VGZnS9haKG5q2sWb9JMZmCIqi9UYnG+E7COljnlXruj6qO8YHxCux1 oLaLUJ8bDWjZy/9kHE+UQ5S7D/Xf+fycv/R7W+0djjInuJPyNuyqzXWtHsmTG/bJ SJo0A+anNjJQpvywupQ0UpSzQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDwa/m5 pbFhr0JA3euTYgH3Y/rHMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNHFYs41w3rSmh6woWlgJR+zfr0RqPaxxYhGPZYRRg1zxnijzi/Z5t 7f66cEbzTam8kpV3XzanQgS+Cq8KbB2DAIg2+efrrY8WhMfw1RnKgoJQVamb3ekk jRK6flaq1Yptq3XlaHb6DWCgmpyVQDtwo2R21SYsOwF41mfzH9Hj3w1VqJALLmXY AkazKUv1B3cqIY+Au5+7Kt/jwNrNzesmzYLCeheSLFrmoxfX8WuUt/qaemuy9L52 PMk9vzm7cu+AqTvssHOwvex5wl+Dpe2ngDZd6hJkacqZ5ZIkUFD97K/0/TTJOJMR KFV6N6a5Fu2eyI2nJEjZLJz5AwdARUma -----END CERTIFICATE-----Generated at Mon Jan 12 13:10:00 2026 by rpki-client