This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: c8ScqjlRQJQoqnL1tkAc8HWNa1sGmOL82SY88XpOTd0= Subject key identifier: AB:AA:10:EB:32:D6:BE:59:19:F3:EF:F8:9A:11:48:5E:F5:03:DC:57 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 021B Signing time: Fri 23 Jan 2026 01:24:49 +0000 Manifest this update: Fri 23 Jan 2026 01:24:48 +0000 Manifest next update: Fri 30 Jan 2026 01:24:48 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: yaMeS/XODmflM316R0aDrr2UPvIxiWNyKWjXDHylLxY=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: 3TGDY4CM2CMzOV1+RJNcrteh6hh5/ooeIXNp6ZAdAUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 01:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Jan 23 01:24:48 2026 GMT Not After : Jan 30 01:24:48 2026 GMT Subject: CN=6972cde0-6683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f9:7a:66:26:9f:2a:96:1c:a6:84:b5:83:f1: 07:32:19:d1:66:cb:55:3a:8e:a8:bd:46:f5:ca:4f: a0:e2:ba:06:5b:6e:65:a9:90:02:1e:d0:f3:ad:f6: 7e:b9:89:60:bc:54:3e:fc:78:8d:62:28:4e:02:3c: 1f:0a:67:9c:97:bb:b8:96:08:bb:bf:4f:de:a1:79: 8f:25:71:1b:62:71:b9:8c:d0:7b:51:3d:84:ef:9a: 1c:79:55:83:92:de:08:19:bc:0e:4d:c2:b3:ea:40: 6b:d8:c9:ae:f9:3c:b1:aa:80:67:d4:d0:0b:86:ae: 7b:29:52:92:b5:ea:6d:f0:ad:f1:14:4e:47:b4:75: e4:85:8f:69:50:a8:90:c8:af:1d:a1:bb:28:a7:1a: d0:8d:8f:6d:87:a3:4f:b1:b8:5f:f3:5a:c8:ed:0f: de:dc:8f:79:21:70:1c:f9:ea:f3:b9:c8:88:87:d1: 7b:c0:ec:b1:50:87:21:78:dc:71:79:7f:45:89:c9: be:67:64:f0:da:fa:4c:11:18:70:bc:f8:31:e0:d1: d8:44:75:36:92:93:7a:39:14:8d:e6:e4:df:9a:c7: 71:8b:8f:5e:cf:49:38:d6:22:91:66:fe:14:58:75: e4:ba:6a:90:2a:92:fd:57:90:1a:19:2d:5b:c8:cd: 71:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AA:10:EB:32:D6:BE:59:19:F3:EF:F8:9A:11:48:5E:F5:03:DC:57 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d3:d2:8f:b1:f3:a6:ee:73:1b:d0:5e:40:5a:82:01:db:2f: 08:93:90:13:d9:c2:fd:a3:1c:37:04:02:01:f6:fe:4e:67:6e: b9:30:7f:76:ae:13:8a:11:ee:16:85:8a:16:c4:22:ad:12:09: 3f:ed:ae:b2:44:57:80:af:1c:48:40:08:b0:ac:62:94:27:97: f6:f5:57:f3:25:4c:d6:a3:5e:2d:d7:2c:67:35:eb:3d:70:a3: 69:26:3a:34:90:48:bb:80:db:e9:90:cc:82:4d:16:6b:c2:3a: 25:70:b5:68:97:5f:2c:75:f1:3a:ee:41:cb:8b:64:4c:42:47: 7f:af:cb:e1:86:57:19:e4:d6:d0:00:4c:44:4e:cc:7c:ed:72: 36:b2:88:36:16:a2:c8:bb:71:dc:d6:50:6c:48:48:a5:b3:60: ee:00:82:54:d0:ad:ef:31:7a:c9:61:ab:84:9b:fe:c7:da:5b: 80:18:95:3b:2b:38:f0:33:83:0f:cf:20:f3:49:8c:09:b9:2b: 67:30:d6:c5:d6:46:27:fb:a2:60:89:dc:69:64:bc:f5:db:6a: 9b:bb:80:7a:cc:5f:99:fb:f1:92:53:37:31:64:c4:41:eb:f8: ea:cf:aa:0a:59:a3:91:99:c1:ab:70:58:5c:76:5e:d4:4e:6b: ee:06:a2:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjYwMTIzMDEyNDQ4WhcNMjYwMTMwMDEyNDQ4WjAYMRYwFAYD VQQDDA02OTcyY2RlMC02NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/l6ZiafKpYcpoS1g/EHMhnRZstVOo6ovUb1yk+g4roGW25lqZACHtDzrfZ+ uYlgvFQ+/HiNYihOAjwfCmecl7u4lgi7v0/eoXmPJXEbYnG5jNB7UT2E75oceVWD kt4IGbwOTcKz6kBr2Mmu+TyxqoBn1NALhq57KVKStept8K3xFE5HtHXkhY9pUKiQ yK8dobsopxrQjY9th6NPsbhf81rI7Q/e3I95IXAc+erzuciIh9F7wOyxUIcheNxx eX9Ficm+Z2Tw2vpMERhwvPgx4NHYRHU2kpN6ORSN5uTfmsdxi49ez0k41iKRZv4U WHXkumqQKpL9V5AaGS1byM1xBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuqEOsy 1r5ZGfPv+JoRSF71A9xXMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ09KPsfOm7nMb0F5AWoIB2y8Ik5AT2cL9oxw3BAIB9v5OZ265MH92 rhOKEe4WhYoWxCKtEgk/7a6yRFeArxxIQAiwrGKUJ5f29VfzJUzWo14t1yxnNes9 cKNpJjo0kEi7gNvpkMyCTRZrwjolcLVol18sdfE67kHLi2RMQkd/r8vhhlcZ5NbQ AExETsx87XI2sog2FqLIu3Hc1lBsSEils2DuAIJU0K3vMXrJYauEm/7H2luAGJU7 KzjwM4MPzyDzSYwJuStnMNbF1kYn+6JgidxpZLz122qbu4B6zF+Z+/GSUzcxZMRB 6/jqz6oKWaORmcGrcFhcdl7UTmvuBqLm -----END CERTIFICATE-----Generated at Sun Jan 25 02:52:34 2026 by rpki-client