This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: zkcMywEQDVWU7Pg7xyKJhlFz+DpTD71nIHdSFVbiB2U= Subject key identifier: 3E:00:3C:BD:E4:56:CA:2D:17:5A:14:A3:74:D8:47:FC:16:C7:C2:FA Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 01A5 Signing time: Sun 25 Jan 2026 02:35:40 +0000 Manifest this update: Sun 25 Jan 2026 02:35:40 +0000 Manifest next update: Sun 01 Feb 2026 02:35:40 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: NC/vUtSiuSmnlYeg2ZuGhg4NxwHAV+nOQCJKXoYtUSk=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Jan 25 02:35:40 2026 GMT Not After : Feb 1 02:35:40 2026 GMT Subject: CN=6975817c-15c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:35:5a:70:3c:1a:21:70:4a:2e:04:31:00:01: fb:76:c3:9d:78:0b:e6:ba:ad:f6:d5:53:d7:2b:de: 9f:22:5b:62:03:90:b4:d3:c9:59:8e:be:95:12:74: 22:94:37:fe:1e:19:18:18:bb:12:69:c6:bd:ff:6d: 2e:0b:4a:cf:35:9a:9f:49:af:a3:93:7b:35:f3:a7: e4:6c:0d:8c:df:35:a9:d7:e8:d8:d1:93:31:5c:ee: fd:1d:f1:63:47:83:31:fd:45:be:6d:19:8b:9a:43: cf:96:d0:00:c0:18:e6:47:af:df:2b:52:ad:f0:13: 20:0f:87:36:dd:b6:9f:a4:80:09:c4:56:f7:64:bd: 93:87:e5:8b:f8:a0:a3:ce:dc:a4:0d:25:92:02:8e: ae:4e:4b:69:0d:fb:68:f7:d4:7e:a2:88:93:99:14: 49:22:85:e3:3e:93:9b:10:ba:d8:3c:22:fc:09:c3: d7:88:13:b1:9f:76:72:15:df:40:62:3a:48:8b:2c: 85:7f:1f:9c:3f:8e:85:98:f0:af:e4:80:43:0e:7a: 8e:ac:f1:ea:f1:c9:6f:84:e1:ed:db:11:13:f3:7d: 0e:f2:87:8d:a4:32:52:52:61:a5:a3:9e:14:99:0c: 8a:b4:df:9d:db:99:80:40:fc:45:e8:99:58:f2:7c: e2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:00:3C:BD:E4:56:CA:2D:17:5A:14:A3:74:D8:47:FC:16:C7:C2:FA X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:20:25:fe:24:17:3a:a5:c9:71:6c:e9:92:0f:4d:65:7b:14: 0d:46:dd:1d:6a:dc:5b:cd:23:0c:d7:b5:72:7b:c9:f2:34:94: 74:0b:eb:6d:37:18:d8:65:a4:87:08:6d:09:76:1b:38:1f:41: 85:18:fd:d2:c6:cf:ac:18:de:9a:d7:90:72:ee:d8:3a:40:2c: 46:05:75:f7:97:48:ff:42:b8:e1:a1:b7:2d:ba:a1:05:3c:f4: 58:9d:68:f8:c6:8f:9b:19:d5:90:0e:98:4f:1b:60:d8:ca:8e: 5f:d4:21:db:3c:94:8f:89:b2:93:d6:6f:fa:2b:09:2f:99:6f: 21:18:75:63:1c:a9:ed:7e:69:89:98:b8:10:a0:23:91:f3:7a: 62:21:32:1e:fa:64:e4:97:8f:c0:1d:be:31:bb:b5:9d:ce:56: a6:8b:ae:9a:25:d8:d0:0e:68:53:88:44:1f:43:0c:63:9e:c2: 89:6e:ac:78:df:0e:2d:b3:9d:c3:e4:f2:e8:4b:3b:f7:cf:fa: 5f:c4:ca:37:66:6e:e9:88:48:b6:5c:8c:b5:0a:06:0a:d5:8b: 4b:5e:50:70:4b:2b:4e:eb:ce:9d:e1:c3:32:c3:af:05:9c:b9: 38:e6:24:60:fa:29:5a:91:cb:e5:30:61:7f:46:e4:97:6c:aa: b3:1b:f8:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjYwMTI1MDIzNTQwWhcNMjYwMjAxMDIzNTQwWjAYMRYwFAYD VQQDDA02OTc1ODE3Yy0xNWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujVacDwaIXBKLgQxAAH7dsOdeAvmuq321VPXK96fIltiA5C008lZjr6VEnQi lDf+HhkYGLsSaca9/20uC0rPNZqfSa+jk3s186fkbA2M3zWp1+jY0ZMxXO79HfFj R4Mx/UW+bRmLmkPPltAAwBjmR6/fK1Kt8BMgD4c23bafpIAJxFb3ZL2Th+WL+KCj ztykDSWSAo6uTktpDfto99R+ooiTmRRJIoXjPpObELrYPCL8CcPXiBOxn3ZyFd9A YjpIiyyFfx+cP46FmPCv5IBDDnqOrPHq8clvhOHt2xET830O8oeNpDJSUmGlo54U mQyKtN+d25mAQPxF6JlY8nzi5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4APL3k VsotF1oUo3TYR/wWx8L6MB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPICX+JBc6pclxbOmSD01lexQNRt0datxbzSMM17Vye8nyNJR0C+tt NxjYZaSHCG0Jdhs4H0GFGP3Sxs+sGN6a15By7tg6QCxGBXX3l0j/QrjhobctuqEF PPRYnWj4xo+bGdWQDphPG2DYyo5f1CHbPJSPibKT1m/6KwkvmW8hGHVjHKntfmmJ mLgQoCOR83piITIe+mTkl4/AHb4xu7Wdzlami66aJdjQDmhTiEQfQwxjnsKJbqx4 3w4ts53D5PLoSzv3z/pfxMo3Zm7piEi2XIy1CgYK1YtLXlBwSytO686d4cMyw68F nLk45iRg+ilakcvlMGF/RuSXbKqzG/jo -----END CERTIFICATE-----Generated at Sun Jan 25 14:49:22 2026 by rpki-client