This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: T7L7/RoF5NKXvDGKRHKIguyTc5PDBBJQYMn3zUnQdBI= Subject key identifier: 00:35:D1:4D:5C:AC:74:51:5B:0C:FF:C5:8A:E6:3E:B9:58:47:A6:95 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 0715 Signing time: Sat 24 Jan 2026 21:10:13 +0000 Manifest this update: Sat 24 Jan 2026 21:10:12 +0000 Manifest next update: Sat 31 Jan 2026 21:10:12 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: 1I+sMzkj8cYR+QXa8gJdj1NSXzt0NE+KBUj/YfALdz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Jan 24 21:10:12 2026 GMT Not After : Jan 31 21:10:12 2026 GMT Subject: CN=69753535-552e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:67:77:1e:20:98:6c:fc:71:eb:18:0b:d6:8d: 4a:b4:95:97:e9:5f:86:25:d3:3a:1f:2d:47:a8:14: ef:c7:5e:be:77:1a:64:fb:44:74:36:31:41:6d:2b: 10:47:b3:72:05:62:15:11:d1:a0:fd:8a:a0:fe:37: 5f:44:7f:f7:dd:0a:ce:d6:27:d8:60:98:a4:ea:d9: 02:78:ff:a1:d7:6c:24:b2:61:d0:6b:9c:f8:d7:ee: cc:30:86:76:cd:07:b7:c5:c1:2d:10:af:b2:9c:04: 63:25:41:9e:b6:20:66:29:02:ce:5e:f9:a2:2d:ee: 77:99:6f:fb:19:c0:28:af:76:d9:7c:b6:35:4e:47: 11:ac:40:31:ff:ef:ec:8e:2c:7a:80:79:30:86:45: 8d:a3:b6:84:31:3d:f2:d7:0b:26:f3:1e:f6:5f:91: 12:49:4b:27:0f:cc:15:50:52:66:96:b0:84:e9:a9: 71:8c:00:33:79:5e:1c:b0:19:16:18:a8:c3:95:95: 73:4f:0f:48:cf:7f:55:c4:75:b2:dd:03:aa:90:71: d9:43:18:95:5e:4a:cc:59:a3:63:8f:99:5c:06:a1: d4:3a:e4:7b:55:0a:99:95:c8:31:18:56:93:02:a6: 89:a8:56:85:33:72:2a:71:b0:e0:38:04:90:68:18: c9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:35:D1:4D:5C:AC:74:51:5B:0C:FF:C5:8A:E6:3E:B9:58:47:A6:95 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d0:1d:1d:5e:6d:5e:e3:d3:3e:f5:94:b9:0e:5d:ef:45:42: a3:fb:ad:bd:e0:b3:f2:70:3f:0a:0b:66:96:cf:5a:64:4d:39: 77:7e:72:4b:41:53:b6:2d:fa:99:ea:48:24:bc:05:94:2c:36: 18:ad:33:43:86:20:13:ab:9a:72:81:e3:37:50:96:18:27:83: 55:93:17:23:6e:eb:d1:23:dc:0d:ff:c6:8b:96:6a:bb:9a:e8: 2d:64:1e:08:ab:7e:bc:b5:c0:66:0a:fb:5e:ad:9b:86:c4:8f: 3d:64:f2:11:43:3a:6f:9b:8a:2a:94:ac:82:f2:c8:be:b1:24: fb:80:ed:7e:73:c2:2f:3f:91:c1:b3:71:aa:1a:4b:a5:e9:5c: ee:78:fc:f8:14:91:bc:7c:c8:bb:66:a7:1e:f4:8e:66:60:96: 39:27:fc:a6:17:67:47:7f:db:3b:0e:35:81:05:80:73:dc:69: da:dc:ae:73:42:93:fe:47:36:64:fb:d7:ae:4f:4a:8d:e4:8d: c8:7a:09:e8:60:e6:5a:b0:e8:e0:5d:e5:dc:d1:f6:0d:83:5e: f9:41:25:5f:9d:91:e3:1b:32:62:e5:48:7c:53:64:f1:86:f7: 07:e2:24:03:9f:7f:d0:83:ab:27:f8:fa:c2:e8:33:11:67:fd: 18:67:d8:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjYwMTI0MjExMDEyWhcNMjYwMTMxMjExMDEyWjAYMRYwFAYD VQQDDA02OTc1MzUzNS01NTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGd3HiCYbPxx6xgL1o1KtJWX6V+GJdM6Hy1HqBTvx16+dxpk+0R0NjFBbSsQ R7NyBWIVEdGg/Yqg/jdfRH/33QrO1ifYYJik6tkCeP+h12wksmHQa5z41+7MMIZ2 zQe3xcEtEK+ynARjJUGetiBmKQLOXvmiLe53mW/7GcAor3bZfLY1TkcRrEAx/+/s jix6gHkwhkWNo7aEMT3y1wsm8x72X5ESSUsnD8wVUFJmlrCE6alxjAAzeV4csBkW GKjDlZVzTw9Iz39VxHWy3QOqkHHZQxiVXkrMWaNjj5lcBqHUOuR7VQqZlcgxGFaT AqaJqFaFM3IqcbDgOASQaBjJoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAA10U1c rHRRWwz/xYrmPrlYR6aVMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN0B0dXm1e49M+9ZS5Dl3vRUKj+6294LPycD8KC2aWz1pkTTl3fnJL QVO2LfqZ6kgkvAWULDYYrTNDhiATq5pygeM3UJYYJ4NVkxcjbuvRI9wN/8aLlmq7 mugtZB4Iq368tcBmCvterZuGxI89ZPIRQzpvm4oqlKyC8si+sST7gO1+c8IvP5HB s3GqGkul6VzuePz4FJG8fMi7Zqce9I5mYJY5J/ymF2dHf9s7DjWBBYBz3Gna3K5z QpP+RzZk+9euT0qN5I3IegnoYOZasOjgXeXc0fYNg175QSVfnZHjGzJi5Uh8U2Tx hvcH4iQDn3/Qg6sn+PrC6DMRZ/0YZ9gN -----END CERTIFICATE-----Generated at Sun Jan 25 04:36:23 2026 by rpki-client