This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: a+6hBUXW/2llFocKw3ARhFYdaDTQ70k0iGRYLoEavZE= Subject key identifier: FE:D3:1C:3D:AF:DB:34:1A:F7:38:B4:6F:9A:D0:63:06:62:B7:D7:31 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 215B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 2149 Signing time: Sat 10 Jan 2026 15:45:30 +0000 Manifest this update: Sat 10 Jan 2026 15:45:29 +0000 Manifest next update: Sat 17 Jan 2026 15:45:29 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: bsVGM+xUZzoCcgJbFPb165FZwhAvCweJ80jTdUfSdQ4=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 15:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8539 (0x215b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Jan 10 15:45:29 2026 GMT Not After : Jan 17 15:45:29 2026 GMT Subject: CN=6962741a-6927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c4:7f:13:48:8f:ac:20:e6:1a:e2:3f:23:bf: a7:64:83:0c:67:74:ac:fa:48:cc:bb:77:76:dd:ac: f0:ae:ab:dc:dc:15:9b:20:29:10:81:e1:54:01:2b: 1b:b1:6c:a8:3a:00:ca:b4:43:f5:1f:a3:20:c1:7b: 38:0b:10:36:99:8a:80:11:2f:d2:e9:cf:02:69:a0: 5d:c1:b2:ad:e6:ef:45:9c:93:b6:80:89:50:3c:3f: 18:c7:38:da:1b:db:45:08:86:46:5d:05:f1:e2:84: 3d:72:cf:3a:4b:6a:06:75:a0:7b:7a:f5:cd:58:dc: 6d:52:03:86:6f:6d:88:99:8c:2e:b1:65:b8:19:09: 24:62:b7:fd:0b:ed:29:45:47:9f:52:e8:4b:fa:e6: d3:db:de:24:7e:94:b1:f7:71:f1:7b:88:56:cf:84: d2:64:af:f8:0e:66:fd:c4:1d:b8:30:e4:59:3c:40: 89:69:cc:b0:82:ec:d6:e0:a3:72:4d:df:9c:99:5e: 14:a0:0e:a7:19:90:46:13:4c:24:56:9d:3a:62:25: 12:5f:34:e3:c7:cb:e1:7a:64:5b:e8:94:91:c4:3a: b1:09:93:fb:88:4b:eb:d1:f8:91:fc:25:fd:ca:51: ba:7f:02:33:eb:36:33:1e:1c:72:94:22:cd:ef:88: 3b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D3:1C:3D:AF:DB:34:1A:F7:38:B4:6F:9A:D0:63:06:62:B7:D7:31 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d1:ee:b8:a4:2a:bc:d0:b0:33:b1:88:04:09:46:0a:e8:b6: f3:7d:9d:45:60:e9:3a:db:7a:0b:a8:35:e6:44:e9:7c:20:34: 5b:35:ac:70:e3:71:04:bd:53:57:89:97:86:03:8d:e5:fc:fd: db:61:7b:34:fb:9d:10:54:45:00:07:b5:9a:e3:d8:f7:f3:d1: d0:f0:e7:87:94:47:fa:14:e0:cb:3a:e2:ed:06:2b:bf:de:e2: 99:a8:0b:60:8f:50:c4:33:c9:83:64:30:5c:c7:64:55:4b:8c: 47:30:86:b1:42:3d:38:a8:e6:e2:ba:3f:1c:72:9c:a4:05:51: f9:67:30:38:f2:6e:aa:bd:23:8f:88:ee:91:8e:ed:cd:4a:74: fa:97:a2:ee:b8:15:ef:a9:12:e7:f1:39:db:2c:7e:1e:d8:c7: 1a:cf:f6:2a:8d:17:6a:76:56:9d:d2:e4:ff:af:22:c8:31:ea: cf:84:47:32:f2:4d:c2:50:a9:24:e7:e8:e2:e2:cd:41:39:23: cf:4a:e8:0c:ac:6f:3a:de:8c:29:68:44:d1:8f:bb:c9:ec:f6: 41:da:34:01:41:27:9d:8c:f1:6b:42:92:48:63:12:8a:d5:a6: 2e:24:66:0a:16:62:cf:be:10:92:46:ae:33:1c:89:e8:05:fb: b9:2a:e3:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjYwMTEwMTU0NTI5WhcNMjYwMTE3MTU0NTI5WjAYMRYwFAYD VQQDDA02OTYyNzQxYS02OTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48R/E0iPrCDmGuI/I7+nZIMMZ3Ss+kjMu3d23azwrqvc3BWbICkQgeFUASsb sWyoOgDKtEP1H6MgwXs4CxA2mYqAES/S6c8CaaBdwbKt5u9FnJO2gIlQPD8Yxzja G9tFCIZGXQXx4oQ9cs86S2oGdaB7evXNWNxtUgOGb22ImYwusWW4GQkkYrf9C+0p RUefUuhL+ubT294kfpSx93Hxe4hWz4TSZK/4Dmb9xB24MORZPECJacywguzW4KNy Td+cmV4UoA6nGZBGE0wkVp06YiUSXzTjx8vhemRb6JSRxDqxCZP7iEvr0fiR/CX9 ylG6fwIz6zYzHhxylCLN74g73QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7THD2v 2zQa9zi0b5rQYwZit9cxMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI0e64pCq80LAzsYgECUYK6LbzfZ1FYOk623oLqDXmROl8IDRbNaxw 43EEvVNXiZeGA43l/P3bYXs0+50QVEUAB7Wa49j389HQ8OeHlEf6FODLOuLtBiu/ 3uKZqAtgj1DEM8mDZDBcx2RVS4xHMIaxQj04qObiuj8ccpykBVH5ZzA48m6qvSOP iO6Rju3NSnT6l6LuuBXvqRLn8TnbLH4e2Mcaz/YqjRdqdlad0uT/ryLIMerPhEcy 8k3CUKkk5+ji4s1BOSPPSugMrG863owpaETRj7vJ7PZB2jQBQSedjPFrQpJIYxKK 1aYuJGYKFmLPvhCSRq4zHInoBfu5KuPf -----END CERTIFICATE-----Generated at Mon Jan 12 00:52:08 2026 by rpki-client