This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: R1zze0DHW2Xzcv5elakNb3xgpzpTBdsF3czWFRtwLJw= Subject key identifier: D5:AB:94:C8:A5:64:A3:FC:29:CE:62:96:12:C4:97:7A:E3:16:86:DD Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 3504 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 3504 Signing time: Sat 24 Jan 2026 14:36:01 +0000 Manifest this update: Sat 24 Jan 2026 14:36:00 +0000 Manifest next update: Sat 31 Jan 2026 14:36:00 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: QrvvbOid8RtWQUVJollTfrsSb3qskCs5+XvgbcY82ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13572 (0x3504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Jan 24 14:36:00 2026 GMT Not After : Jan 31 14:36:00 2026 GMT Subject: CN=6974d8d0-856c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:06:d8:04:22:f6:80:85:47:9f:82:c1:be:af: 1e:d4:e3:86:fe:a3:b6:8d:10:ac:f0:67:26:dd:d8: 0c:8a:fe:f6:88:b9:48:e0:15:f2:24:5b:4a:98:44: d0:fe:f7:dd:71:23:e7:8b:47:9e:89:fb:21:c7:65: 0f:fa:d4:3d:c1:b9:18:ac:7e:f4:1e:92:17:00:d9: 6a:90:dc:de:53:18:70:7f:69:5e:d2:ed:c5:c2:41: c4:4a:99:7b:69:8b:67:b4:c2:fa:b4:f8:18:c2:45: 5d:04:ee:5d:f1:0f:d5:6f:5a:0b:bf:71:ad:34:b4: d0:f1:26:d3:38:40:3a:bc:fd:1a:bb:0d:a3:25:95: 55:c3:b1:df:b8:46:05:26:fd:26:c3:6f:8f:ac:da: d9:9e:91:15:45:ce:72:73:96:20:77:a8:dd:51:f1: c0:aa:d3:4b:08:1a:42:67:15:97:49:f8:48:5a:07: 91:cc:a0:90:b9:a1:58:af:bf:3d:d2:55:b4:5a:1c: 93:93:c8:9c:13:d3:d3:90:76:3d:90:a2:29:c6:15: f9:38:00:d8:11:35:ac:60:30:e6:5a:68:55:ad:25: af:12:cf:28:f0:84:c3:2b:54:01:0b:ea:b3:d5:d4: 3e:b3:78:95:a1:89:89:4c:5a:9a:1c:06:bd:c7:58: b4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:AB:94:C8:A5:64:A3:FC:29:CE:62:96:12:C4:97:7A:E3:16:86:DD X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:f0:e2:ca:df:12:a1:aa:9f:64:db:9e:e3:a8:1a:99:e1:85: 28:67:58:ba:ef:5c:e0:16:93:22:6c:f3:10:0d:02:ea:36:bc: 7e:c1:ea:e3:ff:f3:69:16:2e:0d:b7:84:21:fc:08:2e:ee:eb: 3e:fd:c2:ee:9c:24:6b:9b:02:6a:61:16:10:df:59:17:b5:8b: 09:e7:8c:f9:2c:1e:5e:e6:c8:e3:bc:23:0b:0b:3b:48:fe:b0: c7:c2:11:23:d0:be:9e:a4:42:0d:42:bf:62:01:64:03:75:cb: da:6d:f1:f8:af:82:82:5b:20:55:41:a6:33:da:b6:3c:9d:0f: ae:b0:80:f0:64:92:29:b9:2b:51:30:fc:58:f5:fd:99:3c:31: 23:3d:e9:7d:8f:f7:a1:4a:cd:5d:35:fe:6b:79:b8:ed:ac:2e: 99:c9:93:a3:76:45:57:1f:7f:2c:4c:b8:8a:44:37:cc:31:b5: de:d9:e9:00:e1:19:e4:29:85:5e:32:98:d4:89:d7:34:68:23: 76:48:a4:9a:04:d7:38:c2:ba:70:89:22:e3:37:f4:aa:ff:a5: 43:70:92:08:12:ec:6f:75:e2:08:c3:dd:b2:a1:c1:72:fb:b3: c4:54:58:5e:4f:80:ce:d5:c4:35:2c:7d:25:d8:22:73:76:6f: 74:7f:a0:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjYwMTI0MTQzNjAwWhcNMjYwMTMxMTQzNjAwWjAYMRYwFAYD VQQDDA02OTc0ZDhkMC04NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/gbYBCL2gIVHn4LBvq8e1OOG/qO2jRCs8Gcm3dgMiv72iLlI4BXyJFtKmETQ /vfdcSPni0eeifshx2UP+tQ9wbkYrH70HpIXANlqkNzeUxhwf2le0u3FwkHESpl7 aYtntML6tPgYwkVdBO5d8Q/Vb1oLv3GtNLTQ8SbTOEA6vP0auw2jJZVVw7HfuEYF Jv0mw2+PrNrZnpEVRc5yc5Ygd6jdUfHAqtNLCBpCZxWXSfhIWgeRzKCQuaFYr789 0lW0WhyTk8icE9PTkHY9kKIpxhX5OADYETWsYDDmWmhVrSWvEs8o8ITDK1QBC+qz 1dQ+s3iVoYmJTFqaHAa9x1i0sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWrlMil ZKP8Kc5ilhLEl3rjFobdMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX8OLK3xKhqp9k257jqBqZ4YUoZ1i671zgFpMibPMQDQLqNrx+werj //NpFi4Nt4Qh/Agu7us+/cLunCRrmwJqYRYQ31kXtYsJ54z5LB5e5sjjvCMLCztI /rDHwhEj0L6epEINQr9iAWQDdcvabfH4r4KCWyBVQaYz2rY8nQ+usIDwZJIpuStR MPxY9f2ZPDEjPel9j/ehSs1dNf5rebjtrC6ZyZOjdkVXH38sTLiKRDfMMbXe2ekA 4RnkKYVeMpjUidc0aCN2SKSaBNc4wrpwiSLjN/Sq/6VDcJIIEuxvdeIIw92yocFy +7PEVFheT4DO1cQ1LH0l2CJzdm90f6Cg -----END CERTIFICATE-----Generated at Sun Jan 25 03:00:59 2026 by rpki-client