This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft File: yAlz0WzMyeGME6aIAz3E0PDmHEo.mft (raw, json) Hash identifier: xnVtOdTbQ0E8PmfKd6FgzAw3BPGFni+psBWGKH53M3A= Subject key identifier: BF:7F:DD:5C:4C:A3:CF:75:83:C4:18:A1:1E:F6:60:A5:05:CC:D1:F8 Authority key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A Certificate issuer: /CN=A91657FE/serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft Manifest number: 73 Signing time: Sun 25 Jan 2026 05:59:18 +0000 Manifest this update: Sun 25 Jan 2026 05:59:17 +0000 Manifest next update: Sun 01 Feb 2026 05:59:17 +0000 Files and hashes: 1: yAlz0WzMyeGME6aIAz3E0PDmHEo.crl (hash: BH0XOqzyb5sRS7ZYD1FQFkuZyo3jwsYWB4PrqDWam6k=) 2: BFEE74284D9811F0930F6465C4F9AE02.roa (hash: utYcBcFgJK+aEaHZM9pNCTgsikhCHuFU4gRIhVACRLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Validity Not Before: Jan 25 05:59:17 2026 GMT Not After : Feb 1 05:59:17 2026 GMT Subject: CN=6975b136-83a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:46:85:2b:0c:8e:1e:6f:b2:4a:f7:78:d3: 3d:d1:bf:3d:48:dc:80:ca:3a:60:f8:20:41:86:10: 19:1c:14:4b:49:17:a4:f6:e5:8b:db:fa:89:b4:93: 0b:18:d6:70:e5:15:cb:e2:03:99:3a:77:91:4c:02: 95:85:8b:1a:e6:2c:cd:22:f4:f8:b0:50:21:bc:20: 72:d1:1b:3a:12:ef:f4:70:1a:71:99:7d:f3:4f:e1: 0c:d2:3d:24:b0:13:80:1b:6c:ae:ec:6e:dc:ce:12: 59:66:cc:47:2c:3a:4b:31:6c:e1:ea:7c:f3:4c:57: 86:1b:62:fd:55:76:aa:59:ff:29:12:b6:a7:aa:e6: 0c:e8:ac:19:13:0e:93:06:49:14:45:42:e3:0e:79: e1:63:10:0a:2d:44:4a:db:7c:83:e6:22:dd:0e:7f: a5:d7:4a:72:35:f5:4d:95:49:05:b4:b7:be:81:16: 3d:75:7a:18:2c:3b:4c:f9:1a:83:a6:4b:4c:81:39: 63:06:7a:13:e1:4e:49:a9:a3:f4:ab:18:6b:eb:13: cc:ae:e0:1c:ab:e3:54:83:03:f8:cc:e7:1f:de:f4: 7c:e9:fb:7c:e4:a2:f4:1a:83:6a:b2:aa:99:2e:aa: 7b:21:e3:b2:99:7b:7d:41:a7:f4:5e:82:d3:4a:69: 08:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7F:DD:5C:4C:A3:CF:75:83:C4:18:A1:1E:F6:60:A5:05:CC:D1:F8 X509v3 Authority Key Identifier: keyid:C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:0c:71:69:a0:c8:1b:4a:e8:ef:f4:59:c4:55:ef:62:6e:91: 48:b0:5c:cd:af:12:33:b4:e9:8c:ec:97:2f:eb:e8:fa:af:bf: 81:7e:c6:cc:96:91:b5:01:4a:92:da:2a:e4:58:e7:e3:29:b4: f5:88:30:ad:6d:c3:2c:e3:dd:7a:b9:bd:c3:8c:ca:24:06:16: d5:9a:20:f3:f2:46:06:ca:64:4c:30:b7:3e:fc:73:a1:e4:d7: c9:d9:f3:e8:d0:fb:3a:5c:4c:01:5b:eb:31:72:1a:5f:8b:1d: 6b:ba:91:02:e0:0a:a4:a7:45:ca:66:72:0a:6b:61:18:51:7f: 31:98:02:9f:10:0a:7a:9e:ab:99:e9:3c:64:81:0f:d4:93:61: b8:56:ae:dc:57:6b:30:64:e6:dd:5f:63:8a:06:93:f5:0c:b9: 1c:a5:37:09:40:45:d3:83:00:79:9f:b6:81:ab:f4:89:d6:14: d3:d4:a1:1a:bc:9b:b2:0b:dd:b8:97:42:b7:86:f6:49:0c:34: 1e:3d:e1:68:66:87:73:31:a4:ea:3e:f2:b7:4f:da:e1:49:93: 57:c4:e5:a9:ea:f1:95:15:2e:99:fb:a1:84:57:be:f8:a9:b5: 9b:ae:8c:0e:3b:6c:fb:6d:a0:a2:24:27:a9:8e:ac:18:a0:a3: d6:2d:75:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTdGRTExMC8GA1UEBRMoQzgwOTczRDE2Q0NDQzlFMThDMTNBNjg4MDMzREM0RDBG MEU2MUM0QTAeFw0yNjAxMjUwNTU5MTdaFw0yNjAyMDEwNTU5MTdaMBgxFjAUBgNV BAMMDTY5NzViMTM2LTgzYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLbEaFKwyOHm+ySvd40z3Rvz1I3IDKOmD4IEGGEBkcFEtJF6T25Yvb+om0kwsY 1nDlFcviA5k6d5FMApWFixrmLM0i9PiwUCG8IHLRGzoS7/RwGnGZffNP4QzSPSSw E4AbbK7sbtzOEllmzEcsOksxbOHqfPNMV4YbYv1VdqpZ/ykStqeq5gzorBkTDpMG SRRFQuMOeeFjEAotRErbfIPmIt0Of6XXSnI19U2VSQW0t76BFj11ehgsO0z5GoOm S0yBOWMGehPhTkmpo/SrGGvrE8yu4Byr41SDA/jM5x/e9Hzp+3zkovQag2qyqpku qnsh47KZe31Bp/RegtNKaQjzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv3/dXEyj z3WDxBihHvZgpQXM0fgwHwYDVR0jBBgwFoAUyAlz0WzMyeGME6aIAz3E0PDmHEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1N0ZFL0MwODc1NzIyNEQ4 QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVHTUU2YUlBejNFMFBEbUhF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUFsejBXek15ZUdNRTZhSUF6M0UwUERtSEVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 N0ZFL0MwODc1NzIyNEQ4QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVH TUU2YUlBejNFMFBEbUhFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQMcWmgyBtK6O/0WcRV72JukUiwXM2vEjO06Yzsly/r6Pqvv4F+xsyW kbUBSpLaKuRY5+MptPWIMK1twyzj3Xq5vcOMyiQGFtWaIPPyRgbKZEwwtz78c6Hk 18nZ8+jQ+zpcTAFb6zFyGl+LHWu6kQLgCqSnRcpmcgprYRhRfzGYAp8QCnqeq5np PGSBD9STYbhWrtxXazBk5t1fY4oGk/UMuRylNwlARdODAHmftoGr9InWFNPUoRq8 m7IL3biXQreG9kkMNB494Whmh3MxpOo+8rdP2uFJk1fE5anq8ZUVLpn7oYRXvvip tZuujA47bPttoKIkJ6mOrBigo9YtdQQ= -----END CERTIFICATE-----Generated at Sun Jan 25 14:00:43 2026 by rpki-client