This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: 0Yffq1TR/g9pb9Yxa7bcBZwN+h9tEIKHeM/MWhIjnMg= Subject key identifier: 11:3C:91:6C:4A:A1:96:0F:A1:A4:99:10:A4:6B:8A:6D:B7:7D:ED:82 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: CC Signing time: Sun 25 Jan 2026 05:01:53 +0000 Manifest this update: Sun 25 Jan 2026 05:01:52 +0000 Manifest next update: Sun 01 Feb 2026 05:01:52 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: zxkQChOsVvtg9CPupQeTJvPj10S/0qjnMGwFrnYsIvI=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: drd+idSshs98eOD0pXc/+ttH+udrA5TRp96UQZXHfUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Jan 25 05:01:52 2026 GMT Not After : Feb 1 05:01:52 2026 GMT Subject: CN=6975a3c1-40bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:67:97:cc:7e:6b:de:b5:ae:d3:76:e2:4f:7f: 3e:3e:c8:11:3a:59:6f:b8:1a:78:b8:57:07:3d:e0: 0f:09:28:0c:92:3a:3b:4b:cd:6d:98:15:6a:ee:0e: 20:7f:e6:91:ef:ef:39:1e:13:2a:7e:3a:7b:b3:d5: bd:fb:ff:a7:b9:a2:5f:63:12:81:85:7b:26:72:2d: 7c:1a:39:e9:25:8e:72:82:ef:46:44:b6:13:ca:16: c2:4f:4a:bd:b0:3f:d3:0a:c1:ad:4a:96:d9:52:3c: 0f:77:cd:c9:d0:b8:fc:50:67:f5:f4:79:7c:da:40: e9:20:1a:36:12:ad:c2:cb:e0:22:7c:91:12:15:b2: cb:12:4f:97:66:e4:35:ae:eb:f0:43:d1:48:66:46: 29:b1:a0:7a:e2:83:4a:8c:ab:4e:e6:84:f0:73:0f: d7:9c:d4:c0:71:6f:5a:ea:f9:5b:6f:7f:ce:c6:d8: cd:15:f4:fc:25:d9:02:53:21:5e:1b:0c:21:81:fc: 89:75:47:92:48:a1:4f:f4:08:18:a0:e6:72:3f:2d: 5f:79:cb:fc:9a:fd:2c:9e:cf:c7:02:1b:32:11:44: 70:4f:44:1b:52:c3:b4:e4:9b:5b:3d:4a:51:3a:49: 03:0c:43:6c:8c:74:c2:16:b4:3d:d7:79:83:e7:1f: ce:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3C:91:6C:4A:A1:96:0F:A1:A4:99:10:A4:6B:8A:6D:B7:7D:ED:82 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e3:f1:91:43:09:b3:15:74:2a:0a:c2:00:e6:6c:76:30:f1: 89:e1:b7:f1:c5:a9:67:95:01:03:8e:de:bf:a0:01:57:19:c3: 44:2e:69:63:fe:64:5f:03:c0:3d:90:1d:91:85:93:24:44:f1: c3:22:04:69:af:0a:02:7f:26:6e:ad:3f:e4:22:62:38:2f:63: e9:20:5a:4a:05:b1:20:40:0d:2a:da:01:38:30:2f:26:d3:9a: 6a:44:e7:b9:5c:8f:b5:55:17:e8:96:12:37:45:b8:a9:59:38: 3a:1e:71:fb:86:ff:82:24:84:9d:83:c4:52:29:20:43:57:6e: bd:b0:87:a0:7e:47:f0:6a:a5:bc:65:4f:21:f6:8a:cd:54:3c: c7:d2:58:fa:fb:db:af:6a:69:bd:9f:14:89:c1:7d:9d:a7:c7: 72:5a:6e:11:78:b2:95:d8:34:ed:93:77:2b:60:87:5b:63:af: cb:4a:52:fd:12:4b:16:11:b6:8a:a6:63:a6:c9:2b:f7:a8:23: b5:e8:b0:bb:ec:88:97:21:b1:c8:6e:dc:38:d7:6a:1f:bf:96: b2:28:2a:82:da:ac:b7:78:7b:3c:3c:aa:b6:26:3d:43:0d:6e: f6:9e:d3:0f:32:c6:51:36:a5:6e:f0:26:32:61:43:41:87:2a: 10:71:f3:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjYwMTI1MDUwMTUyWhcNMjYwMjAxMDUwMTUyWjAYMRYwFAYD VQQDDA02OTc1YTNjMS00MGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiGeXzH5r3rWu03biT38+PsgROllvuBp4uFcHPeAPCSgMkjo7S81tmBVq7g4g f+aR7+85HhMqfjp7s9W9+/+nuaJfYxKBhXsmci18GjnpJY5ygu9GRLYTyhbCT0q9 sD/TCsGtSpbZUjwPd83J0Lj8UGf19Hl82kDpIBo2Eq3Cy+AifJESFbLLEk+XZuQ1 ruvwQ9FIZkYpsaB64oNKjKtO5oTwcw/XnNTAcW9a6vlbb3/OxtjNFfT8JdkCUyFe GwwhgfyJdUeSSKFP9AgYoOZyPy1fecv8mv0sns/HAhsyEURwT0QbUsO05JtbPUpR OkkDDENsjHTCFrQ913mD5x/OqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBE8kWxK oZYPoaSZEKRrim23fe2CMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh4/GRQwmzFXQqCsIA5mx2MPGJ4bfxxalnlQEDjt6/oAFXGcNELmlj /mRfA8A9kB2RhZMkRPHDIgRprwoCfyZurT/kImI4L2PpIFpKBbEgQA0q2gE4MC8m 05pqROe5XI+1VRfolhI3RbipWTg6HnH7hv+CJISdg8RSKSBDV269sIegfkfwaqW8 ZU8h9orNVDzH0lj6+9uvamm9nxSJwX2dp8dyWm4ReLKV2DTtk3crYIdbY6/LSlL9 EksWEbaKpmOmySv3qCO16LC77IiXIbHIbtw412ofv5ayKCqC2qy3eHs8PKq2Jj1D DW72ntMPMsZRNqVu8CYyYUNBhyoQcfO3 -----END CERTIFICATE-----Generated at Sun Jan 25 15:32:52 2026 by rpki-client