This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft File: BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json) Hash identifier: 0S/puZX/MmS6XIlqPWB5OeWe1XEPCg5SVav1mpOFSQs= Subject key identifier: E1:4D:CC:99:BB:1C:BE:60:38:7D:0A:37:9B:F1:3F:87:92:DF:7B:5A Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 0A13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft Manifest number: 0A04 Signing time: Sat 24 Jan 2026 16:58:33 +0000 Manifest this update: Sat 24 Jan 2026 16:58:33 +0000 Manifest next update: Sat 31 Jan 2026 16:58:33 +0000 Files and hashes: 1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: /hKtJ00jog52G2jV1Snz+axQY/j1cZcj3SaoscI5xQM=) 2: 7C4C4384CB6611F09E0E3B40C4F9AE02.roa (hash: Nv1ifUptgw8zNsdDdYCTgbUrGtv2q0szka3ov6j5kt8=) 3: 7B01065ECB6611F0911E3B40C4F9AE02.roa (hash: YieuAHHzYJ5baEXX21PBR2QHH93xrdjTpm19CxOM3R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Jan 24 16:58:33 2026 GMT Not After : Jan 31 16:58:33 2026 GMT Subject: CN=6974fa39-3ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9e:fc:03:d6:79:75:7f:c5:5f:a9:80:f4:27: 49:fa:99:2f:d8:58:fb:5f:87:ea:c7:c6:69:7c:90: c8:c1:49:79:84:2a:69:ff:7d:01:ac:68:c1:35:b7: 9c:c0:a0:e2:2c:4d:f0:d7:8e:3b:7f:21:8e:16:47: 12:55:41:23:c6:ec:eb:1c:7b:83:00:b6:d3:43:8b: 06:64:91:c9:20:43:df:27:25:61:5b:ae:2c:a3:b4: f0:20:80:9f:fd:e0:57:4d:85:04:e0:4e:68:a8:1d: 1d:a0:70:f9:9b:f9:60:41:ed:7f:40:8c:d3:f4:45: 3b:d3:79:1c:fb:9a:28:ac:32:5e:2b:3b:22:b3:ac: 7e:9c:f0:8d:be:b7:0e:56:85:b5:0e:8d:63:eb:c2: 87:81:fc:2c:89:3b:7f:d1:a4:3d:c5:4f:ba:ab:c3: 05:a7:b2:c0:00:af:57:ee:fb:69:9f:fb:29:76:93: 18:e0:6b:19:46:80:ce:8d:ea:ab:fb:5a:d8:46:af: e1:85:2c:d6:25:df:04:07:52:b0:1e:17:17:ae:37: 9b:97:f9:46:0a:11:28:b5:3a:f0:c5:f7:45:2f:2f: 75:70:d7:91:3c:5d:98:ce:9b:02:4a:f2:94:de:78: df:1a:5e:d0:6d:b8:14:aa:d9:7e:17:31:33:6d:54: ee:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4D:CC:99:BB:1C:BE:60:38:7D:0A:37:9B:F1:3F:87:92:DF:7B:5A X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:03:5d:12:bd:a6:9f:73:5f:66:3f:2b:19:5c:6c:d5:00:ae: 21:f1:83:34:e9:dc:0e:3a:03:7f:be:7e:7c:42:dd:e4:fa:17: f2:56:f7:03:82:d7:84:7c:8f:1a:89:4d:84:cd:c5:55:94:75: 24:e3:58:c5:9c:8e:bb:ea:1b:2c:21:8a:5a:80:26:db:ba:26: 40:6a:2b:56:ee:74:16:c1:12:d8:f5:dd:bc:26:79:1f:46:33: da:ee:cc:63:19:d0:25:e0:d8:b4:ea:42:4c:20:f6:c5:a4:c0: 24:5a:92:88:5b:47:2b:b6:19:ff:22:f5:92:a5:4a:9e:ab:16: fd:de:7b:71:44:3a:e6:80:c0:0e:83:65:cd:aa:14:32:4f:49: 37:d9:4d:ae:9b:36:57:49:09:06:b6:2e:cb:fb:7a:84:53:0d: 4a:77:7a:92:9f:92:7f:65:80:5a:d9:01:bd:93:35:39:b1:27: 5e:ff:fb:15:4e:74:27:c8:ef:42:5a:84:80:b8:bf:71:dd:f5: 02:40:73:e4:d1:22:82:f1:40:7e:ef:57:44:61:15:d8:48:16: f6:1a:8c:21:0c:b7:af:53:eb:95:e5:dd:be:16:27:42:a2:78: cb:3c:55:1b:8b:68:27:c2:4f:50:27:02:32:46:94:0e:98:cb: fc:88:ea:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjYwMTI0MTY1ODMzWhcNMjYwMTMxMTY1ODMzWjAYMRYwFAYD VQQDDA02OTc0ZmEzOS0zZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp578A9Z5dX/FX6mA9CdJ+pkv2Fj7X4fqx8ZpfJDIwUl5hCpp/30BrGjBNbec wKDiLE3w1447fyGOFkcSVUEjxuzrHHuDALbTQ4sGZJHJIEPfJyVhW64so7TwIICf /eBXTYUE4E5oqB0doHD5m/lgQe1/QIzT9EU703kc+5oorDJeKzsis6x+nPCNvrcO VoW1Do1j68KHgfwsiTt/0aQ9xU+6q8MFp7LAAK9X7vtpn/spdpMY4GsZRoDOjeqr +1rYRq/hhSzWJd8EB1KwHhcXrjebl/lGChEotTrwxfdFLy91cNeRPF2YzpsCSvKU 3njfGl7QbbgUqtl+FzEzbVTuWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFNzJm7 HL5gOH0KN5vxP4eS33taMB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGNy81RUFDNjE0NDhGQTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6 QkhQbHpGUmJvSzVkdWJUQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZA10Svaafc19mPysZXGzVAK4h8YM06dwOOgN/vn58Qt3k+hfyVvcD gteEfI8aiU2EzcVVlHUk41jFnI676hssIYpagCbbuiZAaitW7nQWwRLY9d28Jnkf RjPa7sxjGdAl4Ni06kJMIPbFpMAkWpKIW0crthn/IvWSpUqeqxb93ntxRDrmgMAO g2XNqhQyT0k32U2umzZXSQkGti7L+3qEUw1Kd3qSn5J/ZYBa2QG9kzU5sSde//sV TnQnyO9CWoSAuL9x3fUCQHPk0SKC8UB+71dEYRXYSBb2GowhDLevU+uV5d2+FidC onjLPFUbi2gnwk9QJwIyRpQOmMv8iOrv -----END CERTIFICATE-----Generated at Sun Jan 25 13:13:48 2026 by rpki-client