This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: MicQ1B6x/XKQc58JPSsyEmgcke1VcmjYlT2AVcOFovg= Subject key identifier: E3:4A:6F:5E:B5:29:12:70:D6:5F:C0:6A:65:C3:4C:E8:62:87:CC:BE Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: F3 Signing time: Sun 25 Jan 2026 04:26:09 +0000 Manifest this update: Sun 25 Jan 2026 04:26:08 +0000 Manifest next update: Sun 01 Feb 2026 04:26:08 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: FbV0ZYxekTYrwkCn2Oc8rJydAaFj0ZHhlt3H13GaZ/k=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: DBuT5pVIx5+DapGoOy/MWoVxejvGW3jQONX5f21P15c=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: mFg/4qdLeiQ8AjEap32HrO7ldoixpAZaZ3NegxVi38A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jan 25 04:26:08 2026 GMT Not After : Feb 1 04:26:08 2026 GMT Subject: CN=69759b61-1bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:00:7b:3b:18:cf:de:89:95:70:3f:ba:69:cc: 64:99:0f:e2:84:00:44:96:b3:13:6f:e3:a9:75:0c: 33:6d:4e:f7:c7:db:e2:82:ca:a2:57:79:6e:ea:7b: 09:0f:f5:c7:6c:b3:b2:42:b4:bb:82:27:61:05:ae: 85:9b:56:21:e8:0d:2c:65:5b:a4:58:18:f8:16:43: ab:9f:e5:07:23:f3:f1:37:f3:93:6b:8a:e3:c4:88: d3:f8:74:1c:2c:df:09:ea:36:f6:7d:eb:5b:14:0f: 67:06:e1:c5:52:80:1d:3c:e0:42:1d:19:a1:22:49: 8b:d8:88:57:86:9a:ae:49:69:f0:11:5b:3a:12:6a: 42:d7:ee:c4:2a:7e:f9:9a:c5:93:f2:42:94:4a:94: e4:a0:9b:93:37:f1:c6:ef:4f:54:43:92:8a:60:0f: 2b:b4:89:63:b6:69:5e:96:b5:3d:e1:01:94:db:cc: 82:34:b5:17:2c:2a:49:44:ca:bb:87:8a:85:a7:be: ab:5a:dc:f0:93:ef:dd:42:7d:c5:1b:6a:8e:de:49: be:8f:8a:dc:d9:4a:08:9f:44:0e:ec:8b:78:a9:aa: 21:34:f9:ec:a7:ca:13:6b:aa:6a:a7:bf:4e:fe:a4: 96:4a:2d:e0:45:04:dc:a6:e1:7f:1c:d1:1f:58:f6: 7c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4A:6F:5E:B5:29:12:70:D6:5F:C0:6A:65:C3:4C:E8:62:87:CC:BE X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:de:a7:b7:63:76:4b:ac:b7:45:4f:94:de:a8:bb:85:35:0d: e4:38:47:eb:b8:47:df:18:ef:4f:6a:6d:c1:9e:33:56:45:64: a2:d0:0a:36:94:38:d9:8e:44:55:4e:95:b1:52:c0:52:59:cd: 81:e7:50:e7:09:fd:41:8b:23:e1:06:21:e5:fb:41:29:d2:6f: 45:1f:28:6f:5b:fc:8c:a9:5e:4b:5c:0b:a8:95:dc:a5:6d:4e: b2:25:5e:94:ca:e8:74:b6:05:b4:5c:06:a7:10:10:74:cf:e0: 06:90:75:a7:64:c1:56:bb:b4:55:64:b7:46:09:08:a2:6f:bc: 67:2f:7a:62:15:44:28:68:76:41:dc:49:2b:c9:ce:10:63:85: 91:47:43:36:cc:b8:5f:4b:81:d3:b5:a2:51:df:ce:f0:2f:08: 52:85:9d:7e:7c:5e:53:76:95:25:dd:2e:01:8b:b4:b0:dc:ce: b9:ce:07:c1:ec:d7:c0:8c:35:01:aa:d0:1b:4d:f2:77:d4:f3: 73:3e:58:8e:8b:18:a6:2f:6b:a4:d6:e4:7b:79:9b:69:a2:e5: d3:61:b2:8f:da:27:7a:8c:4f:ce:fd:db:e2:d7:d4:d5:58:bf: c3:6c:5b:3f:14:85:4f:6b:99:d7:e3:47:0d:bd:7c:9a:58:cf: 99:92:58:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwMTI1MDQyNjA4WhcNMjYwMjAxMDQyNjA4WjAYMRYwFAYD VQQDDA02OTc1OWI2MS0xYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gB7OxjP3omVcD+6acxkmQ/ihABElrMTb+OpdQwzbU73x9vigsqiV3lu6nsJ D/XHbLOyQrS7gidhBa6Fm1Yh6A0sZVukWBj4FkOrn+UHI/PxN/OTa4rjxIjT+HQc LN8J6jb2fetbFA9nBuHFUoAdPOBCHRmhIkmL2IhXhpquSWnwEVs6EmpC1+7EKn75 msWT8kKUSpTkoJuTN/HG709UQ5KKYA8rtIljtmlelrU94QGU28yCNLUXLCpJRMq7 h4qFp76rWtzwk+/dQn3FG2qO3km+j4rc2UoIn0QO7It4qaohNPnsp8oTa6pqp79O /qSWSi3gRQTcpuF/HNEfWPZ8mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONKb161 KRJw1l/AamXDTOhih8y+MB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi3qe3Y3ZLrLdFT5TeqLuFNQ3kOEfruEffGO9Pam3BnjNWRWSi0Ao2 lDjZjkRVTpWxUsBSWc2B51DnCf1BiyPhBiHl+0Ep0m9FHyhvW/yMqV5LXAuoldyl bU6yJV6Uyuh0tgW0XAanEBB0z+AGkHWnZMFWu7RVZLdGCQiib7xnL3piFUQoaHZB 3Ekryc4QY4WRR0M2zLhfS4HTtaJR387wLwhShZ1+fF5TdpUl3S4Bi7Sw3M65zgfB 7NfAjDUBqtAbTfJ31PNzPliOiximL2uk1uR7eZtpouXTYbKP2id6jE/O/dvi19TV WL/DbFs/FIVPa5nX40cNvXyaWM+ZklgN -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:17 2026 by rpki-client