This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: fI32SoskLHcjCXx2+IEx6q2SRnHLhwhE0R0ApbvZXlA= Subject key identifier: 36:A4:41:28:3D:43:97:4D:9C:A8:74:94:21:90:14:38:A9:D6:48:8E Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 0303 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 0303 Signing time: Sun 25 Jan 2026 00:23:58 +0000 Manifest this update: Sun 25 Jan 2026 00:23:57 +0000 Manifest next update: Sun 01 Feb 2026 00:23:57 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: lwCRkiEGWXjQ/VMY1veRuaZDf6OXmjiYocGZIGysV8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 771 (0x303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Jan 25 00:23:57 2026 GMT Not After : Feb 1 00:23:57 2026 GMT Subject: CN=6975629e-4bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:27:7d:58:d3:5d:48:50:bf:c7:a2:2d:3f:af: 0b:56:b2:d9:c6:f1:75:15:10:19:d4:ad:3b:2a:4a: a6:4f:da:7a:58:ad:e8:2d:47:ec:7a:69:e6:94:cb: ed:73:0f:3c:41:6b:e1:95:37:a6:a6:5d:f4:81:cc: 77:54:69:04:b9:a8:0e:fa:2e:de:77:d1:3a:7b:23: 53:9a:f8:58:c1:d4:b2:ce:ff:0a:c4:f5:d5:95:fe: cc:68:e6:c9:59:58:82:2f:52:c5:2a:91:62:04:df: 11:66:ea:de:f2:fc:d9:9c:1f:57:c1:9a:08:11:a0: a9:08:d9:e6:6c:c7:16:0f:27:43:7f:c2:10:81:72: c8:12:b8:63:53:f1:e6:c6:a9:07:4f:d5:74:df:a3: 67:70:81:af:41:c4:42:3e:c5:7a:67:27:d4:4b:a2: 0b:33:7a:f0:c2:c0:61:88:8d:ea:7e:c3:3e:ed:4f: 6a:0d:b5:74:11:27:0d:92:e5:c0:ac:ec:1c:8e:46: 80:26:1d:20:08:fa:1b:14:3d:a1:53:ef:54:3b:01: b8:83:fa:39:9f:90:e3:d7:81:70:23:2b:1a:db:01: e7:a1:30:88:ef:fe:69:f9:ed:7a:29:3e:25:d8:1c: d0:a7:76:7f:99:32:6c:d4:b3:c9:5c:cf:31:89:c6: 9c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A4:41:28:3D:43:97:4D:9C:A8:74:94:21:90:14:38:A9:D6:48:8E X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:99:1f:44:fe:7f:13:52:22:35:a9:8c:cd:19:ee:42:57:6a: a5:8e:8a:90:58:86:ae:96:8e:c3:cb:37:d4:ec:d8:c7:73:ed: a1:89:d9:e8:e8:12:5d:72:ba:bc:04:2b:fe:7d:6a:60:78:fc: 47:4d:66:82:b1:df:a8:e9:e4:1f:64:f6:9b:c5:57:65:cb:65: 37:91:5e:db:d9:8f:cb:f9:b9:7b:83:de:75:3e:d7:9f:35:a4: b0:1b:85:72:d3:c1:9a:6b:6c:1b:63:93:25:16:27:0e:14:aa: 54:31:a3:a6:74:f1:ac:cb:09:f4:4f:db:45:13:9d:23:49:02: 53:52:ce:92:cf:f8:f4:ce:f7:e8:d0:79:4e:e2:4e:ec:6d:30: 16:13:71:58:32:08:6c:7a:42:37:72:f3:b8:b5:ec:45:f4:27: 99:97:23:02:1d:40:c6:a4:37:67:82:c7:4a:89:7a:d8:15:91: 42:b2:77:39:9e:38:36:f4:0a:34:b9:ac:65:36:4b:72:eb:bb: 14:00:0e:17:04:4f:4f:e4:b2:e5:69:ee:1e:a7:c7:43:1b:18: 73:de:f4:c7:9f:9f:bb:a4:45:c9:d8:20:57:13:25:71:67:9a: c8:5f:cc:e1:00:e1:7d:4f:d9:f3:39:84:30:c3:86:8a:ef:e7: 32:e6:30:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjYwMTI1MDAyMzU3WhcNMjYwMjAxMDAyMzU3WjAYMRYwFAYD VQQDDA02OTc1NjI5ZS00YmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyd9WNNdSFC/x6ItP68LVrLZxvF1FRAZ1K07KkqmT9p6WK3oLUfsemnmlMvt cw88QWvhlTempl30gcx3VGkEuagO+i7ed9E6eyNTmvhYwdSyzv8KxPXVlf7MaObJ WViCL1LFKpFiBN8RZure8vzZnB9XwZoIEaCpCNnmbMcWDydDf8IQgXLIErhjU/Hm xqkHT9V036NncIGvQcRCPsV6ZyfUS6ILM3rwwsBhiI3qfsM+7U9qDbV0EScNkuXA rOwcjkaAJh0gCPobFD2hU+9UOwG4g/o5n5Dj14FwIysa2wHnoTCI7/5p+e16KT4l 2BzQp3Z/mTJs1LPJXM8xicacSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDakQSg9 Q5dNnKh0lCGQFDip1kiOMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhmR9E/n8TUiI1qYzNGe5CV2qljoqQWIaulo7DyzfU7NjHc+2hidno 6BJdcrq8BCv+fWpgePxHTWaCsd+o6eQfZPabxVdly2U3kV7b2Y/L+bl7g951Ptef NaSwG4Vy08Gaa2wbY5MlFicOFKpUMaOmdPGsywn0T9tFE50jSQJTUs6Sz/j0zvfo 0HlO4k7sbTAWE3FYMghsekI3cvO4texF9CeZlyMCHUDGpDdngsdKiXrYFZFCsnc5 njg29Ao0uaxlNkty67sUAA4XBE9P5LLlae4ep8dDGxhz3vTHn5+7pEXJ2CBXEyVx Z5rIX8zhAOF9T9nzOYQww4aK7+cy5jB5 -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:58 2026 by rpki-client