This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: J7fIxRq6cvkfCRASAUfPKDnLW7x/fvjv8cVyzjzgT1M= Subject key identifier: F7:F5:B8:A0:15:A2:88:57:3B:D0:A8:FF:8D:F5:4E:58:C4:82:17:6C Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 085A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 084A Signing time: Fri 06 Feb 2026 20:28:38 +0000 Manifest this update: Fri 06 Feb 2026 20:28:38 +0000 Manifest next update: Fri 13 Feb 2026 20:28:38 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: Ed72qkwFdog8o1oCJRq+v7vO7JHTuTAg4OcoKqkQTwg=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: +VXknte/mN+kJG0OMjeV9YUPJK6A2pn0gyb+jl0GEBE=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: rWjXWilCzwscxUrzYHy2y+RbO91zzbJS7wnbS9Z8TVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Feb 2026 20:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Feb 6 20:28:38 2026 GMT Not After : Feb 13 20:28:38 2026 GMT Subject: CN=69864ef6-b7dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:54:e1:f0:ce:d1:e3:f4:fd:56:1d:0c:f4:30: 27:d7:d8:15:6b:37:b4:f5:1d:f6:04:fd:cf:55:f2: c0:c6:11:e9:c4:33:8c:e1:55:86:71:a2:2a:05:9a: 61:93:46:b3:61:a5:c3:0d:1a:7a:09:07:d2:55:d3: 81:d0:b8:bf:f6:d7:58:12:a8:c5:f8:6f:cc:21:cb: e7:13:4f:fd:e8:fe:f0:c0:b7:2e:95:3d:70:85:43: c4:d4:0f:eb:77:b4:40:59:e0:3d:79:76:88:3c:c5: d2:81:be:d4:77:61:ed:49:72:14:7f:04:78:b2:47: a8:e8:de:7f:f9:ab:07:06:5c:ef:fa:1f:a0:5d:d7: 22:10:8d:75:87:6e:e2:7b:89:e9:ea:3b:b7:da:20: c3:b9:20:07:7b:55:89:c2:ef:a4:97:cb:d9:9d:e1: bf:78:9b:58:0e:e3:39:07:7a:95:19:5f:e8:59:6a: 05:b0:91:23:bb:7a:25:3b:49:e2:7e:55:54:96:25: 94:ef:5c:91:4e:97:2d:7d:dc:b3:06:83:e4:eb:6a: 61:12:64:04:69:35:dd:c2:3b:fd:c6:35:e1:50:1f: 2f:20:dc:f2:c2:81:18:de:05:6c:fd:96:ba:58:ff: f9:06:22:ba:23:f7:d2:55:2b:0c:d4:b7:fb:e6:89: 3d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F5:B8:A0:15:A2:88:57:3B:D0:A8:FF:8D:F5:4E:58:C4:82:17:6C X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:41:4e:b4:ca:7a:1a:38:e8:7a:cf:8d:00:0a:bf:b7:bd:46: 97:be:df:bd:f5:fd:c7:4b:a1:18:d2:f7:53:c8:6a:73:92:f7: f4:da:12:12:19:f7:3e:b2:f5:62:51:71:77:54:88:e4:f6:43: b1:8f:a1:ab:8f:4e:0b:d6:32:12:04:b2:54:3b:28:a5:21:db: 1b:1d:43:e2:3f:b1:7a:d0:55:b6:c6:d5:93:d0:1a:ca:7b:1d: 2f:96:62:97:af:8d:28:83:e1:ca:91:47:93:0b:9f:a8:29:5b: 07:1d:ce:de:91:49:24:6c:57:a0:96:ec:5e:74:08:c2:b8:bc: e1:4f:93:f8:99:36:2f:57:80:d0:8e:3a:8d:90:42:79:e6:ca: 75:4a:04:9b:ae:13:a4:ba:d6:23:a4:25:1a:f4:b8:53:2b:e6: 9c:1a:62:9f:6c:9f:8a:90:3e:5d:dd:59:7c:c2:9c:5a:68:27: e3:bc:b8:78:31:06:ae:c8:a4:2e:9e:d4:7b:2e:63:91:35:44: 35:e3:68:4a:05:96:27:c9:75:be:c8:9e:19:91:f1:24:3a:f3: ca:26:73:f1:45:65:2e:ae:f9:8e:2b:ed:21:d8:22:aa:d5:db: d4:ec:85:78:b7:18:49:29:9a:84:c9:28:49:3f:95:00:d7:31: ca:9c:9d:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwMjA2MjAyODM4WhcNMjYwMjEzMjAyODM4WjAYMRYwFAYD VQQDDA02OTg2NGVmNi1iN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVTh8M7R4/T9Vh0M9DAn19gVaze09R32BP3PVfLAxhHpxDOM4VWGcaIqBZph k0azYaXDDRp6CQfSVdOB0Li/9tdYEqjF+G/MIcvnE0/96P7wwLculT1whUPE1A/r d7RAWeA9eXaIPMXSgb7Ud2HtSXIUfwR4skeo6N5/+asHBlzv+h+gXdciEI11h27i e4np6ju32iDDuSAHe1WJwu+kl8vZneG/eJtYDuM5B3qVGV/oWWoFsJEju3olO0ni flVUliWU71yRTpctfdyzBoPk62phEmQEaTXdwjv9xjXhUB8vINzywoEY3gVs/Za6 WP/5BiK6I/fSVSsM1Lf75ok94wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPf1uKAV oohXO9Co/431TljEghdsMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6QU60ynoaOOh6z40ACr+3vUaXvt+99f3HS6EY0vdTyGpzkvf02hIS Gfc+svViUXF3VIjk9kOxj6Grj04L1jISBLJUOyilIdsbHUPiP7F60FW2xtWT0BrK ex0vlmKXr40og+HKkUeTC5+oKVsHHc7ekUkkbFegluxedAjCuLzhT5P4mTYvV4DQ jjqNkEJ55sp1SgSbrhOkutYjpCUa9LhTK+acGmKfbJ+KkD5d3Vl8wpxaaCfjvLh4 MQauyKQuntR7LmORNUQ142hKBZYnyXW+yJ4ZkfEkOvPKJnPxRWUurvmOK+0h2CKq 1dvU7IV4txhJKZqEyShJP5UA1zHKnJ28 -----END CERTIFICATE-----Generated at Sun Feb 8 06:26:20 2026 by rpki-client