This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: /i9TWdeDuHIr339nYU7Ryj4L3XdFV0JxxstsLqAfT44= Subject key identifier: 88:AC:19:58:73:B7:2D:0B:6F:57:71:C9:F9:C2:5B:E5:CD:CA:16:96 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03B7 Signing time: Wed 28 Jan 2026 23:53:04 +0000 Manifest this update: Wed 28 Jan 2026 23:53:03 +0000 Manifest next update: Wed 04 Feb 2026 23:53:03 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: D9WXDPh0rAy32L14t4ZKeOBel9WaTkHRzi85ZbOUq38=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 23:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jan 28 23:53:03 2026 GMT Not After : Feb 4 23:53:03 2026 GMT Subject: CN=697aa160-234c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f0:8b:6b:d5:94:78:b8:15:41:70:fd:e3:e9: d2:36:6c:ea:73:a8:f5:19:96:0b:dc:0c:53:d0:d4: c5:a7:32:5e:a8:c1:41:30:4b:ea:d1:61:f7:de:3f: 96:1f:8e:92:50:f4:88:02:18:43:2a:0e:10:f8:b7: ff:6f:77:c0:e7:00:b1:ec:c6:6a:6b:5d:17:cb:ab: 7c:1a:5e:57:21:72:8a:e1:c9:78:8f:f2:80:dd:ef: 0b:e0:0b:08:15:15:96:e3:92:ef:66:3c:b6:24:45: 86:7e:bc:1a:bc:8c:50:ec:11:31:db:11:d9:14:d3: 7f:c4:c7:b4:60:98:6e:a1:2d:ee:54:e8:77:eb:82: 20:e9:7c:c2:84:3e:31:54:3d:98:d4:be:7d:f9:65: fd:78:10:09:23:d8:f1:f1:1f:4b:43:13:21:74:26: a3:ec:cc:90:34:b9:d3:5d:b8:94:7e:1c:05:a5:80: c8:ba:c8:db:77:f5:5e:e3:b9:a9:a1:e2:68:9f:bb: e4:48:49:57:5f:60:be:2b:88:2c:ee:3b:fd:74:e9: 05:ae:8c:68:43:f8:5b:e7:c0:a2:00:8f:3f:76:25: d4:de:a0:c3:ce:e5:ce:79:c2:c7:e2:76:5e:8d:4a: 3e:db:df:7b:55:28:cc:3d:9d:96:a9:3f:1f:89:bd: 32:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AC:19:58:73:B7:2D:0B:6F:57:71:C9:F9:C2:5B:E5:CD:CA:16:96 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:25:6d:22:b4:91:c6:7d:03:22:cc:f9:2a:9d:ec:09:a9:42: 85:b2:68:a5:e5:4b:16:02:30:11:d7:29:ad:ed:4f:49:07:65: 0a:be:bf:d9:9e:4f:3d:72:4a:f7:b1:99:38:9b:87:ac:28:4f: 60:f5:86:6d:ab:c1:94:5b:db:f5:06:3b:53:5e:c9:79:21:0d: f2:e1:a8:8c:fe:e5:7a:89:5d:cc:da:11:34:f5:94:d1:17:02: 85:28:4f:4d:20:aa:a3:d4:f6:98:f9:57:d1:ca:e4:01:e6:e4: e5:a3:fd:27:18:a6:18:93:87:5d:92:83:a7:be:27:6f:09:8e: 07:ac:dc:6a:46:02:a7:ee:9e:65:14:20:39:4d:0d:a6:8f:e9: c2:49:b8:d7:c3:72:a5:4b:7c:c9:8e:7b:86:fa:ba:e3:57:6f: 4c:5c:5d:a8:06:f5:7b:e1:2f:d7:af:c9:d6:d7:e4:39:50:b4: eb:34:e5:1e:76:e1:eb:e6:fd:96:ec:65:a6:28:4b:c2:95:1b: 13:22:62:f2:35:5e:d6:51:57:61:48:ef:9f:94:c2:1f:fa:87: 26:59:26:f3:98:ba:3e:db:2f:49:45:de:e0:f4:22:55:41:f9: 11:16:62:de:c5:26:84:29:64:61:1d:d5:8d:71:18:c4:f6:e8: 34:5d:e6:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwMTI4MjM1MzAzWhcNMjYwMjA0MjM1MzAzWjAYMRYwFAYD VQQDDA02OTdhYTE2MC0yMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfCLa9WUeLgVQXD94+nSNmzqc6j1GZYL3AxT0NTFpzJeqMFBMEvq0WH33j+W H46SUPSIAhhDKg4Q+Lf/b3fA5wCx7MZqa10Xy6t8Gl5XIXKK4cl4j/KA3e8L4AsI FRWW45LvZjy2JEWGfrwavIxQ7BEx2xHZFNN/xMe0YJhuoS3uVOh364Ig6XzChD4x VD2Y1L59+WX9eBAJI9jx8R9LQxMhdCaj7MyQNLnTXbiUfhwFpYDIusjbd/Ve47mp oeJon7vkSElXX2C+K4gs7jv9dOkFroxoQ/hb58CiAI8/diXU3qDDzuXOecLH4nZe jUo+2997VSjMPZ2WqT8fib0yvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIisGVhz ty0Lb1dxyfnCW+XNyhaWMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9JW0itJHGfQMizPkqnewJqUKFsmil5UsWAjAR1ymt7U9JB2UKvr/Z nk89ckr3sZk4m4esKE9g9YZtq8GUW9v1BjtTXsl5IQ3y4aiM/uV6iV3M2hE09ZTR FwKFKE9NIKqj1PaY+VfRyuQB5uTlo/0nGKYYk4ddkoOnvidvCY4HrNxqRgKn7p5l FCA5TQ2mj+nCSbjXw3KlS3zJjnuG+rrjV29MXF2oBvV74S/Xr8nW1+Q5ULTrNOUe duHr5v2W7GWmKEvClRsTImLyNV7WUVdhSO+flMIf+ocmWSbzmLo+2y9JRd7g9CJV QfkRFmLexSaEKWRhHdWNcRjE9ug0Xeb8 -----END CERTIFICATE-----Generated at Fri Jan 30 01:25:41 2026 by rpki-client