This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: sHkkI2vC0dI0VfPdBaLIw5lWJf4SNIiL9zrmym0xJYA= Subject key identifier: 71:99:9C:B6:23:99:9C:BC:63:00:97:E4:4A:0B:1B:70:9E:87:B9:96 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 13E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13BB Signing time: Sun 18 Jan 2026 16:43:13 +0000 Manifest this update: Sun 18 Jan 2026 16:43:13 +0000 Manifest next update: Sun 25 Jan 2026 16:43:13 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: 1Q4BT5p7gjcmgr3ZSDKalTp2Fo5/nqhp5GQnWDvVEsE=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: v/vVu2Ck1clpuN+sOYMa3jMR+jGXJh+lknEWkcCJ2TU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 16:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5094 (0x13e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Jan 18 16:43:13 2026 GMT Not After : Jan 25 16:43:13 2026 GMT Subject: CN=696d0da1-27b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:49:2d:1f:14:68:50:e1:13:67:7c:a4:b6:dc: 2a:11:64:06:fa:57:94:58:2e:29:a2:fe:e9:59:30: bf:68:2d:3b:89:4a:2f:64:1f:33:99:77:01:3b:00: fc:52:72:82:7f:e0:f1:be:a4:79:3f:cd:9d:36:d5: 48:3f:95:2b:71:82:23:31:0b:9d:81:1e:b0:66:c5: ea:d3:30:9c:81:71:8e:56:79:a9:15:76:50:2d:43: 1f:cf:5f:18:52:0c:af:1b:ba:24:1a:49:fe:95:ff: 37:a4:08:38:29:a8:ee:87:7a:a1:a8:60:93:1e:fd: a0:7d:9a:bb:13:fd:d7:31:b0:f8:54:9f:2d:a4:16: 85:a5:8d:e3:6c:fd:a5:71:9b:00:0c:f7:c4:6c:de: bb:d9:29:8d:29:04:3f:7c:42:d0:fc:32:fb:95:35: 0e:49:3a:54:97:c8:30:da:53:4e:00:a6:b8:5a:6a: d3:97:96:fe:c6:d4:89:dd:bd:a8:5e:f0:ef:e4:d9: 03:e4:e3:91:82:fc:5c:f3:ed:8c:63:4c:77:66:be: b9:6e:cd:cb:2e:0b:47:b7:08:13:46:81:65:77:3f: 7a:79:21:f3:3a:4e:91:5c:78:39:e2:29:60:04:a3: ff:30:8f:fd:6f:1a:51:60:6e:ab:db:29:3c:b0:84: c4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:99:9C:B6:23:99:9C:BC:63:00:97:E4:4A:0B:1B:70:9E:87:B9:96 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:25:2d:10:d5:4c:2c:1c:e5:ff:8b:d8:98:14:f5:1c:98:9e: a0:63:5c:52:84:b0:17:87:30:fc:70:ff:04:7d:4c:65:fa:a8: 51:14:36:72:41:f4:f1:fb:da:c4:20:e1:b1:f8:07:e2:d7:23: ab:c2:41:79:86:6e:62:ea:df:4f:30:b8:0c:22:6a:a0:a8:ae: f5:74:6d:d6:16:64:92:53:34:c2:ed:7b:9a:b5:db:3b:73:57: 16:c2:fa:81:59:c2:50:72:4e:2e:a8:e9:6f:fc:f9:03:58:8a: 27:fe:fc:fa:96:76:0c:a9:a7:d6:46:57:cb:22:e2:1f:a5:67: 3d:94:12:af:52:3c:93:7c:01:fc:f0:1e:a5:33:44:78:a8:a9: 56:e9:1b:1c:5d:0c:67:78:f2:3b:17:fa:06:9d:33:18:50:8c: eb:29:56:21:21:38:17:ac:2d:48:d4:f5:43:f8:fc:83:36:70: 8a:12:6e:fe:9a:a3:92:1c:5f:be:b6:8a:78:f8:28:d4:65:3b: e5:b0:da:3d:bd:d4:5e:78:99:7e:e2:6a:7d:f8:98:c5:4f:56: 4b:51:ad:f6:81:59:9f:9a:33:3a:1c:29:af:a3:40:27:a2:8a: 6d:c7:c8:59:e1:e6:27:ae:e7:34:f4:68:d1:b9:9c:4f:12:4e: a9:fe:77:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwMTE4MTY0MzEzWhcNMjYwMTI1MTY0MzEzWjAYMRYwFAYD VQQDDA02OTZkMGRhMS0yN2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEktHxRoUOETZ3ykttwqEWQG+leUWC4pov7pWTC/aC07iUovZB8zmXcBOwD8 UnKCf+DxvqR5P82dNtVIP5UrcYIjMQudgR6wZsXq0zCcgXGOVnmpFXZQLUMfz18Y UgyvG7okGkn+lf83pAg4Kajuh3qhqGCTHv2gfZq7E/3XMbD4VJ8tpBaFpY3jbP2l cZsADPfEbN672SmNKQQ/fELQ/DL7lTUOSTpUl8gw2lNOAKa4WmrTl5b+xtSJ3b2o XvDv5NkD5OORgvxc8+2MY0x3Zr65bs3LLgtHtwgTRoFldz96eSHzOk6RXHg54ilg BKP/MI/9bxpRYG6r2yk8sITEkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGZnLYj mZy8YwCX5EoLG3Ceh7mWMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnJS0Q1UwsHOX/i9iYFPUcmJ6gY1xShLAXhzD8cP8EfUxl+qhRFDZy QfTx+9rEIOGx+Afi1yOrwkF5hm5i6t9PMLgMImqgqK71dG3WFmSSUzTC7Xuatds7 c1cWwvqBWcJQck4uqOlv/PkDWIon/vz6lnYMqafWRlfLIuIfpWc9lBKvUjyTfAH8 8B6lM0R4qKlW6RscXQxnePI7F/oGnTMYUIzrKVYhITgXrC1I1PVD+PyDNnCKEm7+ mqOSHF++top4+CjUZTvlsNo9vdReeJl+4mp9+JjFT1ZLUa32gVmfmjM6HCmvo0An ooptx8hZ4eYnruc09GjRuZxPEk6p/nes -----END CERTIFICATE-----Generated at Tue Jan 20 15:38:24 2026 by rpki-client