This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: FHZSGvz0yxmi8/8+WDqU636UmPl8EPcwucguL+Tsu8c= Subject key identifier: 44:4E:CC:71:30:08:39:EF:DD:53:D5:4E:E6:23:C6:4D:1C:50:5B:8E Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 0760 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 0924 Signing time: Sat 24 Jan 2026 20:58:48 +0000 Manifest this update: Sat 24 Jan 2026 20:58:47 +0000 Manifest next update: Sat 31 Jan 2026 20:58:47 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: cx+1qJH+FXq6J9xOxWahfAL9yd3+MQkoCE23fOEjxtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1888 (0x760) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: Jan 24 20:58:47 2026 GMT Not After : Jan 31 20:58:47 2026 GMT Subject: CN=69753287-5bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6b:66:ad:87:cf:e4:ce:75:00:e5:00:a8:9a: 80:53:f7:87:bc:a0:03:20:42:80:2e:4f:95:9b:d7: a1:6e:5d:9d:08:5d:e3:24:bf:0f:99:f8:25:69:cf: ac:d6:01:53:a2:2a:81:87:73:0c:7c:f2:22:d1:a3: bf:44:f7:be:68:15:97:7a:a8:68:ee:67:98:80:e4: 3c:ba:74:eb:9a:e7:4d:d8:d8:54:3c:5d:8a:aa:5c: 36:15:c3:a2:be:a0:1f:a1:8e:0a:cb:0a:b5:c6:da: 65:98:fd:dd:13:6f:c2:5d:63:6d:5f:3b:04:fb:0d: 9e:5a:14:2b:ed:ba:b5:21:b6:52:9d:29:84:58:d5: 1b:5a:c2:c2:70:cd:4b:ba:99:ef:56:49:4a:94:7d: 8a:98:b7:6e:f2:82:a3:c6:69:06:30:f1:31:6d:94: f1:e7:36:67:f7:b3:ac:36:98:6c:60:7c:9e:48:57: fc:d6:35:37:0d:7c:1e:54:07:3e:e2:98:5b:3a:1c: c1:5a:85:7e:fe:fd:38:53:56:a6:da:4a:f3:55:38: 90:95:2e:aa:2b:52:61:b6:b0:b5:d5:4b:e9:61:7d: 2b:2c:f5:a9:b0:48:4b:1a:b3:6a:54:dc:5d:b3:ad: 60:f7:15:26:39:ab:1e:68:30:b3:8e:b6:e4:62:20: b3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4E:CC:71:30:08:39:EF:DD:53:D5:4E:E6:23:C6:4D:1C:50:5B:8E X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:e9:d3:67:ec:2a:38:c0:90:d8:4b:4a:08:84:d3:87:31:18: 52:00:4c:3f:b0:16:13:0a:e8:42:20:48:76:53:3e:79:1c:f7: 85:d4:90:b3:ef:65:57:d5:75:2c:6a:40:68:97:9e:e5:4e:be: e1:14:5e:e0:f8:b2:f6:31:81:65:07:8d:19:58:03:7c:a8:9a: 3b:14:8d:a0:19:ad:0f:7f:5f:09:4a:f9:2b:da:d8:ee:ff:b7: b6:db:44:fc:08:ef:f4:33:b0:32:b2:a9:5e:8c:38:8c:1f:e8: 99:64:e1:3d:c7:eb:8e:ad:98:eb:4e:33:82:8a:59:9d:7c:7e: e2:fd:2a:f7:8f:eb:bc:43:29:b7:a9:b0:6b:08:13:77:4f:34: 75:74:c3:63:66:e7:63:ba:3c:e1:55:aa:20:e7:20:bb:e3:99: 0e:26:a1:4e:5b:53:5b:e4:14:35:c0:01:13:e0:30:c7:da:80: a0:55:62:30:88:b2:ca:ab:c8:e0:70:c8:eb:86:be:09:20:c9: 32:6c:27:51:d0:8e:e0:d2:29:f3:55:e6:f0:29:3d:22:e7:64: 1c:e5:56:58:c2:d9:f0:74:31:3c:1a:91:82:fc:91:41:1f:3a: 76:62:b1:ae:95:36:28:64:15:35:78:72:96:74:08:3b:f9:53: a9:2e:6d:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjYwMTI0MjA1ODQ3WhcNMjYwMTMxMjA1ODQ3WjAYMRYwFAYD VQQDDA02OTc1MzI4Ny01YmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GtmrYfP5M51AOUAqJqAU/eHvKADIEKALk+Vm9ehbl2dCF3jJL8Pmfglac+s 1gFToiqBh3MMfPIi0aO/RPe+aBWXeqho7meYgOQ8unTrmudN2NhUPF2Kqlw2FcOi vqAfoY4Kywq1xtplmP3dE2/CXWNtXzsE+w2eWhQr7bq1IbZSnSmEWNUbWsLCcM1L upnvVklKlH2KmLdu8oKjxmkGMPExbZTx5zZn97OsNphsYHyeSFf81jU3DXweVAc+ 4phbOhzBWoV+/v04U1am2krzVTiQlS6qK1JhtrC11UvpYX0rLPWpsEhLGrNqVNxd s61g9xUmOaseaDCzjrbkYiCzzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEROzHEw CDnv3VPVTuYjxk0cUFuOMB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/6dNn7Co4wJDYS0oIhNOHMRhSAEw/sBYTCuhCIEh2Uz55HPeF1JCz 72VX1XUsakBol57lTr7hFF7g+LL2MYFlB40ZWAN8qJo7FI2gGa0Pf18JSvkr2tju /7e220T8CO/0M7AysqlejDiMH+iZZOE9x+uOrZjrTjOCilmdfH7i/Sr3j+u8Qym3 qbBrCBN3TzR1dMNjZudjujzhVaog5yC745kOJqFOW1Nb5BQ1wAET4DDH2oCgVWIw iLLKq8jgcMjrhr4JIMkybCdR0I7g0inzVebwKT0i52Qc5VZYwtnwdDE8GpGC/JFB Hzp2YrGulTYoZBU1eHKWdAg7+VOpLm1E -----END CERTIFICATE-----Generated at Sun Jan 25 13:52:19 2026 by rpki-client