This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: m0gaSQ9b6G+dJiR9lRxp263UAOtNrwTupmw8xb0Wy6o= Subject key identifier: AB:60:AB:03:75:CF:0D:CB:F8:19:42:2A:B3:18:16:F6:70:B8:9D:A3 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 203E Signing time: Sat 24 Jan 2026 15:51:59 +0000 Manifest this update: Sat 24 Jan 2026 15:51:59 +0000 Manifest next update: Sat 31 Jan 2026 15:51:59 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: sxIEtPlPc3Vzks1lv59zZWdJW9WqWjFXL8PLxmqCW8E=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: aFxmstcvEMQ/qqQO/m7uR2Alk5KmIeuyGi0FUw+S+g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Jan 24 15:51:59 2026 GMT Not After : Jan 31 15:51:59 2026 GMT Subject: CN=6974ea9f-0079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f6:f6:cc:e4:bb:60:71:bc:6c:a5:8e:a8:19: 01:08:e3:d5:f1:a2:85:25:3a:d5:8d:97:1e:aa:a3: 8e:49:29:2e:ea:d3:da:d2:b5:9c:8a:de:0f:61:4c: 3c:12:17:c8:7e:f9:30:b1:77:d5:4d:e3:ac:a2:cf: b9:5a:a9:d0:db:09:f9:f3:35:93:3d:b6:dd:85:9d: 28:9a:06:0a:a5:fe:f0:8d:d3:a8:f1:31:3a:f6:f6: ee:b4:f5:89:dd:b0:4a:40:90:97:bb:2a:2d:f8:9b: f8:f9:1d:06:bc:93:07:35:27:64:66:a4:f4:e9:40: 3c:cb:01:65:69:cd:16:30:4e:2d:29:ee:2b:81:24: 68:a7:bb:bd:25:49:2b:4e:6e:11:f4:dd:2f:60:57: f5:5e:f0:8d:b7:8e:28:7c:3c:b1:5c:84:90:12:f0: 95:9a:51:01:90:6d:54:07:87:7b:4b:8a:d0:06:74: 93:20:20:9b:2b:51:e2:94:d9:f5:02:f9:5e:f3:58: 1c:d1:3c:51:e2:4b:0c:6f:36:41:fe:3a:f4:87:78: e0:d5:d1:48:df:b9:a8:ff:ff:8f:05:47:b1:f1:b4: 6f:58:5f:41:af:8f:e2:46:40:74:a2:ac:36:6f:cb: 6e:ce:88:cf:ae:b9:21:2c:80:a0:07:a0:e3:b6:22: cf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:60:AB:03:75:CF:0D:CB:F8:19:42:2A:B3:18:16:F6:70:B8:9D:A3 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:28:47:ad:7e:ba:26:30:df:31:62:7d:ce:ab:47:78:b0:69: b0:1f:fd:2d:9c:e6:03:66:2c:59:0d:f8:e8:35:38:ac:0a:90: 86:1f:30:89:79:30:96:24:74:92:55:da:35:51:18:98:9a:41: 99:89:b2:91:ac:c7:90:53:f1:c9:eb:40:9a:0c:0e:38:a2:47: 6b:71:68:9b:43:10:5b:d7:90:fd:8e:ba:b3:55:89:dd:91:1d: a8:88:d2:29:3a:ed:a4:9f:70:2a:2f:db:b4:ab:20:08:05:8a: a0:b7:ef:22:31:7b:a6:cb:ae:27:89:af:9f:98:da:22:c0:cd: 5a:38:e2:6b:89:66:1b:a1:37:af:db:2f:dc:3d:52:f0:f4:58: 29:62:67:1b:ed:d0:d8:b8:1d:35:51:bf:e8:ba:84:5d:b7:99: ac:32:ce:8d:e0:24:8a:82:05:26:37:5c:e9:79:d4:1b:aa:b9: 01:b5:c7:30:52:a8:e8:d2:95:24:36:b3:fe:a5:77:e5:a0:13: b0:8c:80:98:d8:ea:a4:f4:0b:d6:14:2e:5b:b6:ab:10:44:8e: 9b:fb:a3:d0:3a:44:3f:47:c2:83:53:20:ea:bd:43:f5:ff:e9: 3f:a8:e3:d6:56:51:b2:74:2e:cd:6b:7a:46:1b:45:66:cf:be: 8e:58:64:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjYwMTI0MTU1MTU5WhcNMjYwMTMxMTU1MTU5WjAYMRYwFAYD VQQDDA02OTc0ZWE5Zi0wMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/b2zOS7YHG8bKWOqBkBCOPV8aKFJTrVjZceqqOOSSku6tPa0rWcit4PYUw8 EhfIfvkwsXfVTeOsos+5WqnQ2wn58zWTPbbdhZ0omgYKpf7wjdOo8TE69vbutPWJ 3bBKQJCXuyot+Jv4+R0GvJMHNSdkZqT06UA8ywFlac0WME4tKe4rgSRop7u9JUkr Tm4R9N0vYFf1XvCNt44ofDyxXISQEvCVmlEBkG1UB4d7S4rQBnSTICCbK1HilNn1 Avle81gc0TxR4ksMbzZB/jr0h3jg1dFI37mo//+PBUex8bRvWF9Br4/iRkB0oqw2 b8tuzojPrrkhLICgB6DjtiLPBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtgqwN1 zw3L+BlCKrMYFvZwuJ2jMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhKEetfromMN8xYn3Oq0d4sGmwH/0tnOYDZixZDfjoNTisCpCGHzCJ eTCWJHSSVdo1URiYmkGZibKRrMeQU/HJ60CaDA44okdrcWibQxBb15D9jrqzVYnd kR2oiNIpOu2kn3AqL9u0qyAIBYqgt+8iMXumy64nia+fmNoiwM1aOOJriWYboTev 2y/cPVLw9FgpYmcb7dDYuB01Ub/ouoRdt5msMs6N4CSKggUmN1zpedQbqrkBtccw Uqjo0pUkNrP+pXfloBOwjICY2Oqk9AvWFC5btqsQRI6b+6PQOkQ/R8KDUyDqvUP1 /+k/qOPWVlGydC7Na3pGG0Vmz76OWGRc -----END CERTIFICATE-----Generated at Sun Jan 25 09:43:13 2026 by rpki-client