This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: MJ8uZtjudYr5ZCFIfp/UHumTUAhPdjUsMNhQYArp/do= Subject key identifier: AA:B8:85:8D:D6:3A:31:CA:D9:72:B5:6F:F4:FE:9B:24:1D:DE:C9:19 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 01FB Signing time: Sun 25 Jan 2026 01:45:36 +0000 Manifest this update: Sun 25 Jan 2026 01:45:36 +0000 Manifest next update: Sun 01 Feb 2026 01:45:36 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: MQPKWLVBAsErsg0VYckOaVz5WNzQo/BKbY48cMtig1g=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Jan 25 01:45:36 2026 GMT Not After : Feb 1 01:45:36 2026 GMT Subject: CN=697575c0-0d1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:27:c2:1a:2d:0e:f5:a5:f9:4f:36:6a:9a:eb: f1:6e:09:b5:25:61:58:e1:c5:67:a0:02:04:ce:9f: bc:f4:63:78:99:11:00:52:a6:76:7e:cb:5e:49:d8: 40:fa:d6:a7:2a:91:89:a5:b2:3a:04:4a:22:bb:10: de:5d:6f:6b:e4:45:f5:b3:40:5f:df:05:3d:85:41: 45:c3:c9:69:03:ba:a4:88:cf:68:bd:47:c1:43:90: 45:bd:48:f5:7e:5b:c3:bf:3d:5e:65:56:77:ea:18: 94:88:89:a8:b5:f0:7f:a2:f9:46:85:b2:1e:5d:b6: 8c:d5:81:5a:4b:e9:3b:07:01:c2:14:b2:29:3d:bb: c1:a8:8d:d1:b7:78:86:55:79:31:7a:c8:3f:1d:5f: 29:ed:6c:f7:6f:d8:85:df:f8:9e:8c:0c:14:46:34: fb:85:62:47:7c:12:e3:bb:79:6f:df:c5:24:a1:02: 7a:7d:34:56:69:cd:6b:93:02:26:36:ca:30:93:64: fb:82:34:a5:91:21:f5:26:70:36:c9:f8:12:46:65: 9f:38:99:7e:78:91:3d:96:03:23:40:8d:dc:d1:c7: 9b:1d:bd:11:70:a1:51:8a:a9:d8:ac:61:65:e9:94: 8e:38:6f:5d:01:b9:51:68:61:0f:a3:f7:99:60:ef: 18:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B8:85:8D:D6:3A:31:CA:D9:72:B5:6F:F4:FE:9B:24:1D:DE:C9:19 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a2:84:f9:f4:fe:ed:b4:b7:14:49:22:29:31:a6:b5:4a:1b: 3c:d0:c1:ae:68:b5:c8:31:93:e2:d3:17:d4:50:e6:a8:80:35: 8b:15:63:59:2a:7a:ab:5e:41:c3:23:7e:a5:73:29:05:ce:bc: 22:c8:9c:3e:a9:52:af:c9:72:16:39:21:3c:33:d6:80:51:7c: 1d:42:93:40:f9:89:15:13:c4:d8:f9:24:41:88:ab:ab:1a:a9: 14:5d:83:16:f2:ad:35:53:13:e2:a0:fc:1d:7d:7a:c3:5c:a6: e5:59:f1:ee:8b:f1:89:8f:5b:c7:fa:c5:74:cd:53:1a:05:7b: a2:28:1e:f2:f3:38:76:23:3b:3a:cd:32:82:f4:52:05:88:cc: 73:02:09:6d:1c:33:60:29:ad:32:b3:8c:05:36:b0:7b:9b:b7: 94:17:87:f9:6a:e4:b6:7b:58:d2:43:a2:62:4d:53:e3:83:be: ac:d5:1b:08:02:7a:b6:5c:ae:6c:8d:f3:62:fb:91:2a:f1:35: 09:cc:c4:a0:a9:43:aa:47:53:68:36:60:ac:0d:ff:3b:44:1d: ea:29:b8:45:6a:dc:c9:a2:92:66:90:e4:8c:7c:49:09:00:a6: be:b8:40:59:06:3b:e3:48:e6:8b:e1:79:33:bc:90:e6:6f:5d: 63:b9:46:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjYwMTI1MDE0NTM2WhcNMjYwMjAxMDE0NTM2WjAYMRYwFAYD VQQDDA02OTc1NzVjMC0wZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyfCGi0O9aX5TzZqmuvxbgm1JWFY4cVnoAIEzp+89GN4mREAUqZ2fsteSdhA +tanKpGJpbI6BEoiuxDeXW9r5EX1s0Bf3wU9hUFFw8lpA7qkiM9ovUfBQ5BFvUj1 flvDvz1eZVZ36hiUiImotfB/ovlGhbIeXbaM1YFaS+k7BwHCFLIpPbvBqI3Rt3iG VXkxesg/HV8p7Wz3b9iF3/iejAwURjT7hWJHfBLju3lv38UkoQJ6fTRWac1rkwIm Nsowk2T7gjSlkSH1JnA2yfgSRmWfOJl+eJE9lgMjQI3c0cebHb0RcKFRiqnYrGFl 6ZSOOG9dAblRaGEPo/eZYO8YGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKq4hY3W OjHK2XK1b/T+myQd3skZMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRooT59P7ttLcUSSIpMaa1Shs80MGuaLXIMZPi0xfUUOaogDWLFWNZ KnqrXkHDI36lcykFzrwiyJw+qVKvyXIWOSE8M9aAUXwdQpNA+YkVE8TY+SRBiKur GqkUXYMW8q01UxPioPwdfXrDXKblWfHui/GJj1vH+sV0zVMaBXuiKB7y8zh2Izs6 zTKC9FIFiMxzAgltHDNgKa0ys4wFNrB7m7eUF4f5auS2e1jSQ6JiTVPjg76s1RsI Anq2XK5sjfNi+5Eq8TUJzMSgqUOqR1NoNmCsDf87RB3qKbhFatzJopJmkOSMfEkJ AKa+uEBZBjvjSOaL4XkzvJDmb11juUYj -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:18 2026 by rpki-client