This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: wfZoSlxJv1IZNmE1ytAZWTAdHigiRLh2mkySma2eXL0= Subject key identifier: E1:3C:C3:66:F7:FB:C5:5A:83:75:98:C9:A2:A8:BE:E0:9B:3A:31:B2 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2CFD Signing time: Sat 24 Jan 2026 16:31:00 +0000 Manifest this update: Sat 24 Jan 2026 16:31:00 +0000 Manifest next update: Sat 31 Jan 2026 16:31:00 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: 6/E5GBHu4eJkLw5KqMMdcr6PpbmkhH1zvswrEtlhlPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3965 (0xf7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Jan 24 16:31:00 2026 GMT Not After : Jan 31 16:31:00 2026 GMT Subject: CN=6974f3c4-17a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:87:04:74:4d:1e:af:ac:af:fe:43:8d:e2: 5d:6d:bf:0c:88:82:3f:87:b5:0e:fb:67:8c:65:3b: cf:6b:7e:db:c6:22:2c:79:43:7f:9f:34:d4:61:2d: 6d:04:79:6d:f7:ea:8b:7a:41:9a:4b:d2:e3:d7:cf: f2:7f:a6:fd:80:9d:8c:5a:a1:1b:4a:52:46:e9:8e: 9a:60:ef:a2:d9:79:5f:63:a7:6a:28:ee:8e:35:0b: a0:a6:04:2f:32:be:01:10:9b:0f:b0:72:97:b5:89: e9:fa:72:0f:b8:75:62:38:19:cc:17:8f:a9:1e:4c: 7f:41:e2:a8:57:8a:92:7b:a3:44:30:0a:87:00:dd: d3:b1:40:11:b0:2b:1a:eb:c5:a9:c4:6f:0d:0e:cd: 85:2b:16:d9:91:34:dc:26:5c:90:18:b3:9e:e7:99: 80:c8:0e:08:e5:ed:20:e2:f3:c4:84:e9:ad:42:60: 83:2f:e5:d5:9e:c0:1e:d7:39:90:2f:0c:c3:d2:10: 9e:2c:f6:2a:8a:81:de:f1:64:bf:c8:34:de:5e:02: 9e:25:5f:da:c8:36:7a:34:de:5c:0a:2e:25:12:4b: 33:80:d1:9d:75:d2:98:e5:2d:6c:1c:5b:5d:2a:2e: 5a:b1:f0:36:fa:c4:6b:e1:ee:7f:16:d4:fa:43:45: e2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:3C:C3:66:F7:FB:C5:5A:83:75:98:C9:A2:A8:BE:E0:9B:3A:31:B2 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:5b:19:2f:2f:17:6a:1a:3d:4b:90:13:d5:eb:cc:1f:1c:23: f9:30:83:15:ae:43:05:b7:a9:49:82:d3:2c:1f:61:81:33:04: ed:d4:49:3e:ad:e4:92:40:a5:da:62:61:e0:5d:18:cc:82:80: 57:ff:c6:56:ec:1d:31:30:cd:a2:4c:c2:53:f4:77:2e:a6:39: bd:cc:f2:e3:10:e0:34:34:6c:b5:ee:2f:cc:56:67:02:af:30: 90:dd:08:71:95:4c:8a:61:bf:e8:84:91:1e:84:fe:f1:50:bc: 87:51:4f:b3:7e:10:cd:8f:ba:68:ca:8c:f8:21:20:11:b0:2b: 8f:6d:e9:f3:fd:93:62:f2:a7:ca:7a:c0:27:af:9b:90:77:d8: 63:77:16:14:c4:0a:9d:62:6b:b1:3c:28:69:93:94:b5:d7:77: 95:34:f8:2d:e5:d8:9d:c9:bb:17:b4:35:6e:6e:f4:a0:11:19: 79:c8:33:2d:84:a5:54:0c:a8:4b:86:ca:62:b8:97:71:15:2a: a2:f0:84:4b:90:62:b9:91:2e:77:fb:91:78:8f:41:e4:10:b0: 30:b8:0d:8d:c5:7a:f9:00:ce:1b:c4:1d:35:db:f3:e8:81:57: 21:14:b1:d9:c6:8d:25:fc:08:5d:e6:ce:33:46:a5:5c:73:0e: 2a:37:df:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjYwMTI0MTYzMTAwWhcNMjYwMTMxMTYzMTAwWjAYMRYwFAYD VQQDDA02OTc0ZjNjNC0xN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAiHBHRNHq+sr/5DjeJdbb8MiII/h7UO+2eMZTvPa37bxiIseUN/nzTUYS1t BHlt9+qLekGaS9Lj18/yf6b9gJ2MWqEbSlJG6Y6aYO+i2XlfY6dqKO6ONQugpgQv Mr4BEJsPsHKXtYnp+nIPuHViOBnMF4+pHkx/QeKoV4qSe6NEMAqHAN3TsUARsCsa 68WpxG8NDs2FKxbZkTTcJlyQGLOe55mAyA4I5e0g4vPEhOmtQmCDL+XVnsAe1zmQ LwzD0hCeLPYqioHe8WS/yDTeXgKeJV/ayDZ6NN5cCi4lEkszgNGdddKY5S1sHFtd Ki5asfA2+sRr4e5/FtT6Q0XiswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOE8w2b3 +8Vag3WYyaKovuCbOjGyMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaWxkvLxdqGj1LkBPV68wfHCP5MIMVrkMFt6lJgtMsH2GBMwTt1Ek+ reSSQKXaYmHgXRjMgoBX/8ZW7B0xMM2iTMJT9Hcupjm9zPLjEOA0NGy17i/MVmcC rzCQ3QhxlUyKYb/ohJEehP7xULyHUU+zfhDNj7poyoz4ISARsCuPbenz/ZNi8qfK esAnr5uQd9hjdxYUxAqdYmuxPChpk5S113eVNPgt5didybsXtDVubvSgERl5yDMt hKVUDKhLhspiuJdxFSqi8IRLkGK5kS53+5F4j0HkELAwuA2NxXr5AM4bxB012/Po gVchFLHZxo0l/Ahd5s4zRqVccw4qN9+z -----END CERTIFICATE-----Generated at Sun Jan 25 07:59:45 2026 by rpki-client