This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: 6o4jkFxzTadMK8tx4EqRwbqyoPodiOhRI8TgR/Oq9vY= Subject key identifier: 87:DA:A0:4C:6E:E8:D1:D1:19:1C:FF:2D:E4:F9:7D:71:FD:90:66:20 Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 40 Signing time: Sun 25 Jan 2026 06:29:35 +0000 Manifest this update: Sun 25 Jan 2026 06:29:34 +0000 Manifest next update: Sun 01 Feb 2026 06:29:34 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: 5dCmWVEC0wZ3B65ir/wl3VsNb/zyY0/GcI0SkVRMGPc=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lVwKB14i6OpwyRz8FsA7PbQdrXdHjD1P3S/SDqyzydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Jan 25 06:29:34 2026 GMT Not After : Feb 1 06:29:34 2026 GMT Subject: CN=6975b84e-1ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dc:96:b7:41:23:0c:f2:7f:7d:d9:8d:d6:5a: b3:0e:86:36:df:e5:80:f2:0f:0f:83:5f:27:47:34: 34:18:87:14:4b:9d:3d:4b:5d:34:ce:d4:ea:0a:1c: b5:ff:0f:59:39:50:1c:d6:20:56:17:a0:39:da:91: d7:40:b4:d0:d3:6e:42:75:76:c6:f0:e4:9b:cc:26: e9:48:07:af:f2:bc:60:ac:91:0b:a7:4f:82:3b:0b: bf:ac:57:50:95:ec:d8:01:5a:9f:bb:b0:9d:e1:79: 1e:20:5c:bc:91:4d:4d:bd:91:e5:fc:7c:f7:68:e0: 80:d4:52:cf:88:72:d7:9e:b4:72:b1:aa:4f:52:fa: f6:43:1b:43:71:70:b6:4c:ef:48:2b:6b:bb:e9:1f: 5c:d4:8b:fa:ed:57:ee:32:be:ff:28:3f:a5:d9:ed: 6e:7b:4f:66:07:62:39:57:9d:01:1c:e4:3c:fa:bf: 35:1b:17:b3:a5:b0:4d:d7:f7:11:4c:3e:f8:15:b1: 6d:7e:6a:64:d5:9d:07:b6:ee:1a:dd:12:c1:d7:57: 4a:aa:df:ab:18:35:2e:96:0c:c6:32:7a:9c:94:86: 5d:6f:b3:de:cf:d8:5d:f0:da:b2:d3:13:23:fd:21: 77:a5:81:25:2f:c6:0e:66:f4:96:30:ce:b3:95:31: fb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DA:A0:4C:6E:E8:D1:D1:19:1C:FF:2D:E4:F9:7D:71:FD:90:66:20 X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:68:20:a0:21:f5:3a:77:a5:56:0a:78:df:17:a6:8f:9c:74: 11:7e:83:15:2d:8a:72:73:96:14:62:6a:ff:9b:5f:e0:87:ef: 94:27:75:f5:4f:00:d1:ec:0e:30:9e:8d:c4:1d:44:d6:7b:51: 33:05:91:c4:e3:82:d5:01:e5:a4:c9:16:38:2f:6c:c5:0f:4d: 30:9b:a1:7c:8c:05:0f:2a:29:c2:2c:fb:2d:d1:31:6d:be:99: c4:18:75:ca:da:e8:42:0c:49:52:42:36:cb:f6:6d:7c:2b:59: 03:a6:9e:99:76:d9:b6:62:38:9d:bd:f3:2b:15:7d:3f:8b:81: 33:b8:c8:69:3a:ad:cd:46:05:8a:65:09:e4:12:f9:35:7a:71: df:2c:70:41:1c:d2:d1:73:3a:5f:9b:cc:4b:f7:ee:7f:5e:26: bd:22:86:65:65:ac:2f:d3:16:fd:d1:3b:e7:b7:6a:50:14:94: c0:42:3f:4f:a7:34:59:13:ea:fa:31:e5:ad:de:4a:fe:82:54: be:2e:bb:bc:4f:02:d8:f4:d0:06:e9:ff:5a:ca:79:f4:13:5b: e6:b3:85:f6:5f:87:e8:c9:d3:63:c0:1d:96:63:9b:4f:8a:c1: 39:7e:77:b2:72:65:0d:18:62:da:35:06:3a:f9:c6:e1:e1:7c: d4:d3:bd:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNjAxMjUwNjI5MzRaFw0yNjAyMDEwNjI5MzRaMBgxFjAUBgNV BAMMDTY5NzViODRlLTFhYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC13Ja3QSMM8n992Y3WWrMOhjbf5YDyDw+DXydHNDQYhxRLnT1LXTTO1OoKHLX/ D1k5UBzWIFYXoDnakddAtNDTbkJ1dsbw5JvMJulIB6/yvGCskQunT4I7C7+sV1CV 7NgBWp+7sJ3heR4gXLyRTU29keX8fPdo4IDUUs+IcteetHKxqk9S+vZDG0NxcLZM 70gra7vpH1zUi/rtV+4yvv8oP6XZ7W57T2YHYjlXnQEc5Dz6vzUbF7OlsE3X9xFM PvgVsW1+amTVnQe27hrdEsHXV0qq36sYNS6WDMYyepyUhl1vs97P2F3w2rLTEyP9 IXelgSUvxg5m9JYwzrOVMfvnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh9qgTG7o 0dEZHP8t5Pl9cf2QZiAwHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFRoIKAh9Tp3pVYKeN8Xpo+cdBF+gxUtinJzlhRiav+bX+CH75QndfVP ANHsDjCejcQdRNZ7UTMFkcTjgtUB5aTJFjgvbMUPTTCboXyMBQ8qKcIs+y3RMW2+ mcQYdcra6EIMSVJCNsv2bXwrWQOmnpl22bZiOJ298ysVfT+LgTO4yGk6rc1GBYpl CeQS+TV6cd8scEEc0tFzOl+bzEv37n9eJr0ihmVlrC/TFv3RO+e3alAUlMBCP0+n NFkT6vox5a3eSv6CVL4uu7xPAtj00Abp/1rKefQTW+azhfZfh+jJ02PAHZZjm0+K wTl+d7JyZQ0YYto1Bjr5xuHhfNTTvR8= -----END CERTIFICATE-----Generated at Mon Jan 26 05:37:22 2026 by rpki-client