This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: N3MYanSoyy/uAi2+id/Gu9F1/eCb/B4stwaK47ttPgs= Subject key identifier: 96:95:79:E5:13:F0:EE:DC:87:86:46:50:E3:6C:E3:C1:77:0E:A5:9E Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: 0133 Signing time: Tue 27 Jan 2026 03:45:01 +0000 Manifest this update: Tue 27 Jan 2026 03:45:00 +0000 Manifest next update: Tue 03 Feb 2026 03:45:00 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: GsmdMROyPjxsOWi3quvhMailYz2q+3WABg7yacYnSrs=) 2: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (hash: 7PT1hzEu8yFfZFQXURAd4+p59Mps1ow7oAQ1a2yeyaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 03:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Jan 27 03:45:00 2026 GMT Not After : Feb 3 03:45:00 2026 GMT Subject: CN=697834bd-e6fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:27:77:ab:8b:a9:dc:7c:b4:3e:d8:44:bf:f3: 0d:68:30:1e:56:e4:c5:56:c0:c0:5c:e2:9a:55:1a: fd:b1:9f:2a:71:26:fa:70:e6:c5:b2:06:aa:21:9c: d1:d7:d2:89:b7:a5:4c:a0:c9:db:d4:0d:f3:1e:61: f7:6a:83:0e:82:ea:90:9d:e4:32:25:1a:94:4f:0c: 80:b6:6d:c0:7f:99:d6:83:77:34:90:3f:49:00:a7: fa:c2:9e:a1:6e:c3:2f:90:cb:3d:97:c6:da:96:38: 84:bb:80:91:bd:bc:46:f2:20:9f:36:58:42:02:32: 75:e2:38:e5:1b:05:e0:c9:17:86:95:c5:77:ef:36: 33:5d:19:86:a5:b4:f5:c5:e0:f0:00:ae:1f:e3:7c: 7b:92:f1:bd:dd:52:14:64:ca:7a:a7:e9:b5:0b:17: f0:f4:74:85:d2:62:e6:79:8c:4a:c4:c8:20:7f:f7: 03:82:74:b2:7c:93:17:0e:1e:b7:0e:96:9a:03:66: 16:44:ba:37:45:97:d0:ac:5a:b8:e5:2d:5c:ca:65: 00:85:87:8d:ba:11:ab:e6:56:96:d0:fd:b0:0b:39: 80:c6:de:98:17:39:a6:78:bd:63:98:ab:4d:14:12: 94:8c:de:81:3b:64:1e:4a:c5:86:af:14:eb:36:dc: 6d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:95:79:E5:13:F0:EE:DC:87:86:46:50:E3:6C:E3:C1:77:0E:A5:9E X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ee:19:e6:e7:10:59:a3:f9:05:56:93:80:b2:cd:a2:81:41: 87:ac:92:2a:78:52:39:54:f7:be:f6:62:ce:97:8c:d4:19:13: 1e:8c:cb:de:39:15:46:7e:50:1b:0e:0a:78:32:7b:82:8e:1e: 12:e5:85:e0:e8:6f:23:41:31:b9:f5:ef:f8:f7:d5:57:96:d8: 39:40:a5:fa:c3:69:b8:d1:29:81:ae:49:0f:81:37:dd:56:aa: 34:a3:08:f3:cd:1f:84:29:e5:3d:28:3a:0b:a3:c7:2d:a3:16: 85:ce:b4:21:7d:16:bc:22:f8:4b:3c:39:fe:65:8b:6b:00:51: d1:9c:01:ad:c4:27:0a:81:c4:2f:c1:26:cd:0d:e9:37:b0:0c: d9:26:2b:34:97:d5:65:9c:92:4c:0e:21:c8:2d:6b:df:87:74: fa:1b:a8:61:af:7e:a5:0a:18:2e:e1:24:42:61:c9:f0:6f:81: ad:8a:15:15:81:2d:e7:d5:df:93:c6:c3:34:a2:fa:94:0e:75: 89:d4:c6:f7:1d:71:43:e7:db:5c:30:cb:55:27:e8:fc:bf:35: 68:87:03:00:5e:80:c3:c1:3d:58:6c:d9:a8:ea:f0:fd:fa:78: 1f:38:ee:3a:d5:de:4d:b8:67:fa:13:ed:7c:6e:0d:ce:d6:a8: fe:db:d3:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjYwMTI3MDM0NTAwWhcNMjYwMjAzMDM0NTAwWjAYMRYwFAYD VQQDDA02OTc4MzRiZC1lNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyd3q4up3Hy0PthEv/MNaDAeVuTFVsDAXOKaVRr9sZ8qcSb6cObFsgaqIZzR 19KJt6VMoMnb1A3zHmH3aoMOguqQneQyJRqUTwyAtm3Af5nWg3c0kD9JAKf6wp6h bsMvkMs9l8baljiEu4CRvbxG8iCfNlhCAjJ14jjlGwXgyReGlcV37zYzXRmGpbT1 xeDwAK4f43x7kvG93VIUZMp6p+m1Cxfw9HSF0mLmeYxKxMggf/cDgnSyfJMXDh63 DpaaA2YWRLo3RZfQrFq45S1cymUAhYeNuhGr5laW0P2wCzmAxt6YFzmmeL1jmKtN FBKUjN6BO2QeSsWGrxTrNtxtCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaVeeUT 8O7ch4ZGUONs48F3DqWeMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FNTM2MDhGMDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBp eFUxZTl5VEdzc0xKbzdhNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA7hnm5xBZo/kFVpOAss2igUGHrJIqeFI5VPe+9mLOl4zUGRMejMve ORVGflAbDgp4MnuCjh4S5YXg6G8jQTG59e/499VXltg5QKX6w2m40SmBrkkPgTfd Vqo0owjzzR+EKeU9KDoLo8ctoxaFzrQhfRa8IvhLPDn+ZYtrAFHRnAGtxCcKgcQv wSbNDek3sAzZJis0l9VlnJJMDiHILWvfh3T6G6hhr36lChgu4SRCYcnwb4GtihUV gS3n1d+TxsM0ovqUDnWJ1Mb3HXFD59tcMMtVJ+j8vzVohwMAXoDDwT1YbNmo6vD9 +ngfOO461d5NuGf6E+18bg3O1qj+29OV -----END CERTIFICATE-----Generated at Tue Jan 27 08:50:59 2026 by rpki-client