This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: 2+nWFSrRahH4ApKxUdbcww9rPdmKSS5bCRRTa6CUg3I= Subject key identifier: 4D:C0:52:31:6A:E2:44:AB:65:87:E6:AB:AF:B5:96:CA:8C:E5:DC:EB Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 34FE Signing time: Sat 24 Jan 2026 14:35:16 +0000 Manifest this update: Sat 24 Jan 2026 14:35:16 +0000 Manifest next update: Sat 31 Jan 2026 14:35:16 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: A5uAMUbpxIsJ6XkwKUScqBqfNtR2aXZi+bRzZbhzA58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Jan 24 14:35:16 2026 GMT Not After : Jan 31 14:35:16 2026 GMT Subject: CN=6974d8a4-dac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:97:a6:37:0a:7c:8d:10:56:01:d2:9e:41:0c: 3b:d6:e8:b7:e4:03:69:5f:0c:9a:9b:2d:e7:07:e4: 54:a3:18:99:98:25:ef:95:83:71:c3:b3:f0:32:dd: ac:8a:e9:71:41:7c:41:ff:19:d3:e3:7c:db:3d:38: 1e:bd:97:2a:ee:09:ab:13:88:66:66:e7:71:79:62: 8e:13:b9:fb:da:71:da:cb:9c:44:3c:5e:6d:4c:a9: 86:35:7a:82:1c:79:ea:f5:a2:1b:d0:c6:1b:d1:40: 68:94:b2:40:c6:34:db:86:dd:07:23:bc:3c:b1:5a: 2f:93:e7:b2:b8:0a:45:89:5b:27:79:21:e4:9d:e0: f0:55:44:11:e0:25:f3:d7:32:2a:8f:68:7f:d4:72: 1a:9c:fb:5c:7b:5c:c7:58:2e:b3:32:4b:f1:bc:75: f0:6e:07:51:f8:9d:01:f7:5c:99:57:34:da:a8:cc: 78:fe:65:23:66:80:77:9f:87:29:33:fe:b4:be:0b: 7e:2a:f9:18:ac:87:17:90:26:b4:e5:64:c3:49:fc: 49:30:dc:b9:31:8a:37:e4:47:0c:94:48:1b:2b:40: 8b:9f:54:df:d5:5c:f9:41:3e:1e:4f:df:63:46:cd: 61:a0:0f:79:eb:2d:6f:80:18:99:c0:87:fb:72:c9: 20:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C0:52:31:6A:E2:44:AB:65:87:E6:AB:AF:B5:96:CA:8C:E5:DC:EB X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:bb:0a:79:22:29:bf:0d:5e:c2:fc:a6:64:9c:a7:30:9d:4f: 9d:4c:a0:d5:e8:49:70:de:e0:0d:cf:91:7a:1f:9a:f6:14:b1: aa:d5:88:6b:00:01:55:87:e2:12:de:2e:c6:86:e0:42:92:a2: 22:3d:a0:64:15:09:08:5e:0b:50:e9:84:49:cf:8c:60:30:af: 1c:e6:98:4a:e9:0e:44:53:cd:e1:76:c0:19:63:68:e1:cf:9b: 4d:70:ba:98:9e:32:31:86:96:42:c1:7e:3d:c2:8a:bf:40:3b: 3c:f9:8e:9b:73:a7:4d:e3:14:37:4e:26:9b:f9:1b:54:13:aa: 64:83:07:d7:65:47:7b:3e:01:6b:8b:ac:9e:cd:32:d2:c8:1c: db:44:8a:ee:6a:a6:88:dd:e9:15:e1:a9:d7:e2:c7:c5:3d:71: ad:d2:0a:b2:3c:88:53:53:c3:3d:bc:6e:f5:74:47:58:18:17: 36:cd:70:02:8c:e1:28:3e:b1:03:82:89:72:04:c7:b4:a4:d7: 04:07:96:c8:6b:8d:5c:1f:99:ed:a1:42:d1:6b:89:3c:ce:d4: 3d:31:d5:9d:4c:95:63:fb:c7:0e:b7:e4:12:f2:8a:56:98:da: f6:8f:3e:3d:80:b9:12:7e:8e:f4:dc:ca:ea:bf:c8:6b:5b:35: 88:ae:c6:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjYwMTI0MTQzNTE2WhcNMjYwMTMxMTQzNTE2WjAYMRYwFAYD VQQDDA02OTc0ZDhhNC1kYWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZemNwp8jRBWAdKeQQw71ui35ANpXwyamy3nB+RUoxiZmCXvlYNxw7PwMt2s iulxQXxB/xnT43zbPTgevZcq7gmrE4hmZudxeWKOE7n72nHay5xEPF5tTKmGNXqC HHnq9aIb0MYb0UBolLJAxjTbht0HI7w8sVovk+eyuApFiVsneSHkneDwVUQR4CXz 1zIqj2h/1HIanPtce1zHWC6zMkvxvHXwbgdR+J0B91yZVzTaqMx4/mUjZoB3n4cp M/60vgt+KvkYrIcXkCa05WTDSfxJMNy5MYo35EcMlEgbK0CLn1Tf1Vz5QT4eT99j Rs1hoA956y1vgBiZwIf7cskgLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3AUjFq 4kSrZYfmq6+1lsqM5dzrMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnuwp5Iim/DV7C/KZknKcwnU+dTKDV6Elw3uANz5F6H5r2FLGq1Yhr AAFVh+IS3i7GhuBCkqIiPaBkFQkIXgtQ6YRJz4xgMK8c5phK6Q5EU83hdsAZY2jh z5tNcLqYnjIxhpZCwX49woq/QDs8+Y6bc6dN4xQ3Tiab+RtUE6pkgwfXZUd7PgFr i6yezTLSyBzbRIruaqaI3ekV4anX4sfFPXGt0gqyPIhTU8M9vG71dEdYGBc2zXAC jOEoPrEDgolyBMe0pNcEB5bIa41cH5ntoULRa4k8ztQ9MdWdTJVj+8cOt+QS8opW mNr2jz49gLkSfo703Mrqv8hrWzWIrsaJ -----END CERTIFICATE-----Generated at Sun Jan 25 02:50:53 2026 by rpki-client