This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: fom5NdalgykD1pf1Dy4y2KritGc+WMawMVb5dq+gD9o= Subject key identifier: 5F:D2:71:09:19:CD:17:6B:A6:6B:9A:AE:33:E7:12:C4:2B:06:13:11 Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0C39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0C29 Signing time: Sat 24 Jan 2026 18:20:52 +0000 Manifest this update: Sat 24 Jan 2026 18:20:52 +0000 Manifest next update: Sat 31 Jan 2026 18:20:52 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: oQZ1WnZZVXBYLxGudMH41onkz7e6Kwx0Deo4g2aGSsw=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3129 (0xc39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Jan 24 18:20:52 2026 GMT Not After : Jan 31 18:20:52 2026 GMT Subject: CN=69750d84-580a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:6d:38:f2:20:33:10:97:2a:f9:dc:1c:9d:25: 4b:2b:39:53:6b:78:f6:a4:c3:52:15:d8:9f:2e:22: 98:ef:0f:85:6c:1e:08:2e:7b:83:7e:7a:ec:2f:61: e0:c6:b1:7d:a9:f6:95:16:e4:40:e2:db:14:9f:81: 76:8e:e0:9b:cf:ae:96:56:34:e7:84:29:25:ab:ef: 2f:5b:a5:90:71:85:90:5a:86:42:ec:f8:07:5a:b2: 62:80:b2:6c:9a:e2:5e:29:59:65:d6:5c:84:04:ce: 5d:90:55:25:22:21:04:fa:3d:0c:c4:75:55:e1:bc: 4f:0e:92:c0:94:bb:5e:ae:ef:eb:54:c3:a5:4b:00: 13:2f:f6:4d:4d:9a:62:1d:99:0b:50:fd:a2:e5:ee: da:d5:e5:ef:83:af:62:3a:c3:87:fb:9f:b1:b5:a0: 36:64:f1:52:9c:f3:cd:6d:b7:c8:91:1e:50:6f:a4: 2f:f1:7f:d9:5a:22:02:ad:06:fe:2d:9b:0c:7a:11: 2e:cd:64:80:b9:0e:a7:14:c5:50:49:9a:88:81:a4: 01:5c:ba:f5:c7:1d:73:6b:a2:6d:b8:e6:bf:49:4b: 85:f9:7b:f2:ca:1b:a7:01:3b:df:a3:a1:62:30:66: 8d:d0:0b:82:55:d9:2e:59:7d:84:f2:9d:50:fb:c7: 31:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D2:71:09:19:CD:17:6B:A6:6B:9A:AE:33:E7:12:C4:2B:06:13:11 X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:d6:11:12:8d:f9:cf:a5:28:f9:c0:bf:5a:9d:76:76:c3:3d: 5e:99:62:79:13:02:90:54:3a:cd:13:46:3d:97:7b:6d:18:d8: dd:be:fe:06:59:bb:83:b1:25:93:00:8c:62:c9:62:8a:d6:52: 8e:f7:82:1b:67:99:90:67:6c:f6:85:87:7e:f4:ea:05:a9:08: 9e:75:7d:c1:0d:43:05:e7:bb:e6:48:a1:6f:9d:c3:28:13:0f: 18:0a:4e:4d:f1:b8:12:68:e7:a8:9d:db:bd:5e:47:3c:28:56: 0d:97:6c:b9:f5:ce:dc:69:55:04:82:41:d8:38:96:2d:d8:57: 24:c5:62:7d:41:e9:1b:96:16:a4:d1:9d:a0:98:47:0b:a6:7a: e7:04:63:e0:34:30:ab:74:08:87:61:6d:43:dd:3c:25:d1:f8: 47:0b:4e:35:cf:a1:aa:a8:3d:ef:42:0f:e5:a7:0c:9e:6c:69: ab:46:58:8d:cb:5a:37:ba:d9:5a:a9:b6:b4:49:ff:61:e9:5b: 4a:f7:8e:d6:0e:bc:17:84:de:e1:f2:32:6d:94:54:b4:c5:f7: cb:6d:96:d8:62:27:e2:f1:8b:85:bc:dd:32:d9:6b:e5:dd:eb: 0f:18:ea:df:2b:8e:95:7e:e2:77:ae:ad:fe:79:e6:a6:55:f1: e9:4a:4c:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjYwMTI0MTgyMDUyWhcNMjYwMTMxMTgyMDUyWjAYMRYwFAYD VQQDDA02OTc1MGQ4NC01ODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi2048iAzEJcq+dwcnSVLKzlTa3j2pMNSFdifLiKY7w+FbB4ILnuDfnrsL2Hg xrF9qfaVFuRA4tsUn4F2juCbz66WVjTnhCklq+8vW6WQcYWQWoZC7PgHWrJigLJs muJeKVll1lyEBM5dkFUlIiEE+j0MxHVV4bxPDpLAlLteru/rVMOlSwATL/ZNTZpi HZkLUP2i5e7a1eXvg69iOsOH+5+xtaA2ZPFSnPPNbbfIkR5Qb6Qv8X/ZWiICrQb+ LZsMehEuzWSAuQ6nFMVQSZqIgaQBXLr1xx1za6JtuOa/SUuF+XvyyhunATvfo6Fi MGaN0AuCVdkuWX2E8p1Q+8cxBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/ScQkZ zRdrpmuarjPnEsQrBhMRMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg1hESjfnPpSj5wL9anXZ2wz1emWJ5EwKQVDrNE0Y9l3ttGNjdvv4G WbuDsSWTAIxiyWKK1lKO94IbZ5mQZ2z2hYd+9OoFqQiedX3BDUMF57vmSKFvncMo Ew8YCk5N8bgSaOeondu9Xkc8KFYNl2y59c7caVUEgkHYOJYt2FckxWJ9Qekblhak 0Z2gmEcLpnrnBGPgNDCrdAiHYW1D3Twl0fhHC041z6GqqD3vQg/lpwyebGmrRliN y1o3utlaqba0Sf9h6VtK947WDrwXhN7h8jJtlFS0xffLbZbYYifi8YuFvN0y2Wvl 3esPGOrfK46VfuJ3rq3+eeamVfHpSkzi -----END CERTIFICATE-----Generated at Sun Jan 25 07:47:01 2026 by rpki-client