This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: CVa4Hl0q3macnRLdrhsJE6KH0XgmIC6+MZ3d97dTQ44= Subject key identifier: 67:78:98:62:7B:76:91:48:E7:2F:6F:54:E3:61:AB:E7:38:34:45:F8 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: DC Signing time: Sat 17 Jan 2026 04:42:51 +0000 Manifest this update: Sat 17 Jan 2026 04:42:50 +0000 Manifest next update: Sat 24 Jan 2026 04:42:50 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: 70tDxB7vMKqotKAbvmKUE+JA9h4UD4o4Z4/UjIJi/UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Jan 17 04:42:50 2026 GMT Not After : Jan 24 04:42:50 2026 GMT Subject: CN=696b134b-6ee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:09:6b:e1:a4:c9:ea:ce:fb:c0:14:dd:b4:e7: b5:e5:f6:9b:3f:d7:c3:1f:8c:9f:9c:16:d3:da:0f: e6:f9:ec:7d:51:96:ae:10:93:6b:3f:97:c3:f6:d7: 27:42:f5:3e:1c:90:f9:69:df:40:29:53:34:33:5c: b9:db:42:e9:90:75:e2:75:97:22:d2:40:5b:7d:b4: 70:ee:71:f1:46:22:a0:90:6b:1c:67:10:bd:97:37: 26:23:ec:4f:f7:2b:46:75:cd:1b:01:c7:87:b7:e2: c5:de:50:c6:7c:11:a6:8a:17:e0:4e:6b:59:3e:e3: 61:73:a3:c7:6d:0c:be:5b:1d:7f:28:87:39:36:c4: 79:32:97:02:65:22:81:2b:1b:e9:a0:4c:f3:ff:1f: ba:60:ca:77:69:5b:af:ce:66:e6:14:46:a5:3c:e1: 86:34:d0:71:2a:61:ef:a5:ba:8a:c3:9b:e5:08:d1: 89:0b:47:09:53:ff:64:27:92:e0:d8:d6:96:a4:ad: 84:71:7a:ed:9c:f1:77:66:53:f4:f3:28:6e:08:f6: 2b:ee:60:21:68:a9:05:53:8d:e2:21:bc:f9:d3:0a: 83:8e:19:55:68:29:d5:0b:e3:0e:e5:83:c0:3d:98: a3:d1:bf:8c:e5:c7:a7:30:ef:fa:21:0a:7b:7a:b0: 55:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:78:98:62:7B:76:91:48:E7:2F:6F:54:E3:61:AB:E7:38:34:45:F8 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e9:5e:eb:03:0e:06:52:09:00:d7:00:83:45:7e:b6:6e:0f: 39:f3:d6:23:16:1e:b7:0a:31:eb:6f:0b:98:88:8d:09:2d:0f: be:9c:86:bc:3e:ce:9c:e7:b9:a5:2a:5d:4a:87:ea:a9:c9:cc: 28:f8:e5:09:23:a5:65:4f:fd:b9:45:f2:85:0f:b6:1d:a9:6e: f5:bd:3a:2b:d7:37:17:e4:f5:a9:e0:09:94:99:b8:cf:d8:9b: 37:3b:f7:65:3e:d3:29:d4:5e:bd:47:a2:53:64:cc:f8:7d:dc: 15:6b:be:02:13:30:f6:16:d1:26:c6:1c:de:09:90:b2:a9:d3: 7b:3b:7e:d2:e9:60:82:52:17:db:0b:0a:d7:bf:6b:0a:54:17: 93:2f:6b:2c:4c:17:71:79:fe:21:e3:5f:d1:54:05:65:ca:bc: 1c:08:e3:77:91:53:20:d9:7f:73:11:02:ce:a0:aa:68:93:25: 9d:81:57:6e:c6:b1:81:e7:6e:f4:ac:93:3b:a0:90:93:b1:60: 46:9a:2d:8b:31:14:cf:53:e1:85:c2:92:65:9f:1a:87:46:55: 43:47:ac:86:1e:d9:3d:dd:7b:25:2d:6a:09:c1:6b:24:33:ed: c9:e3:c5:74:b9:1e:ca:d8:45:d6:db:fa:cf:8b:32:9c:06:42: 6d:05:24:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjYwMTE3MDQ0MjUwWhcNMjYwMTI0MDQ0MjUwWjAYMRYwFAYD VQQDDA02OTZiMTM0Yi02ZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwglr4aTJ6s77wBTdtOe15fabP9fDH4yfnBbT2g/m+ex9UZauEJNrP5fD9tcn QvU+HJD5ad9AKVM0M1y520LpkHXidZci0kBbfbRw7nHxRiKgkGscZxC9lzcmI+xP 9ytGdc0bAceHt+LF3lDGfBGmihfgTmtZPuNhc6PHbQy+Wx1/KIc5NsR5MpcCZSKB KxvpoEzz/x+6YMp3aVuvzmbmFEalPOGGNNBxKmHvpbqKw5vlCNGJC0cJU/9kJ5Lg 2NaWpK2EcXrtnPF3ZlP08yhuCPYr7mAhaKkFU43iIbz50wqDjhlVaCnVC+MO5YPA PZij0b+M5cenMO/6IQp7erBVyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGd4mGJ7 dpFI5y9vVONhq+c4NEX4MB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+6V7rAw4GUgkA1wCDRX62bg8589YjFh63CjHrbwuYiI0JLQ++nIa8 Ps6c57mlKl1Kh+qpycwo+OUJI6VlT/25RfKFD7YdqW71vTor1zcX5PWp4AmUmbjP 2Js3O/dlPtMp1F69R6JTZMz4fdwVa74CEzD2FtEmxhzeCZCyqdN7O37S6WCCUhfb CwrXv2sKVBeTL2ssTBdxef4h41/RVAVlyrwcCON3kVMg2X9zEQLOoKpokyWdgVdu xrGB5270rJM7oJCTsWBGmi2LMRTPU+GFwpJlnxqHRlVDR6yGHtk93XslLWoJwWsk M+3J48V0uR7K2EXW2/rPizKcBkJtBSSp -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:32 2026 by rpki-client