This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: CDxD9weNiHx22RPQPBjshL5XKp7KDsxRleb0T/KYTX4= Subject key identifier: FC:E6:5F:90:35:87:7E:34:B1:D8:C5:89:34:A6:B3:C7:38:C6:A2:1A Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 67 Signing time: Sun 25 Jan 2026 06:06:42 +0000 Manifest this update: Sun 25 Jan 2026 06:06:41 +0000 Manifest next update: Sun 01 Feb 2026 06:06:41 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: RPQKYal6o+7yu2ImV9AAhC0mk3ngZDUIR+nG9fvV1rM=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: yvTiS/oFSBojbCtB284WFEZBM+3n1uqQBo+L9aW7vLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Jan 25 06:06:41 2026 GMT Not After : Feb 1 06:06:41 2026 GMT Subject: CN=6975b2f1-3b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:79:1c:65:f5:79:40:05:16:e7:17:76:83: 74:78:09:3b:fc:12:3e:21:13:52:b0:10:72:d1:c3: 90:46:12:21:fa:9b:24:17:c0:27:be:6d:c6:ab:90: b9:f7:3f:55:7f:40:8b:63:61:48:9d:55:43:7c:9e: 5f:b5:a0:77:2d:05:99:be:6b:30:2e:d1:90:88:17: 36:c3:3d:df:94:ce:52:a7:c3:e9:ac:65:ce:bb:e1: 8f:28:78:95:fc:fd:27:b5:ed:9b:57:32:50:ee:7e: 8b:4c:65:b3:e0:67:5e:0d:32:f7:d6:be:4e:34:11: c0:b8:40:db:0c:40:99:88:2d:34:5d:9a:0f:95:88: d0:84:4b:de:ff:d8:52:08:ff:fd:99:6c:e3:21:fe: ce:6e:35:31:40:f6:9d:96:b4:c2:c2:83:36:c7:d5: 4d:c3:62:f2:47:65:4c:f2:7f:d0:14:54:f8:24:b1: c5:82:b8:44:28:ea:cc:02:9b:6c:0a:83:39:88:f3: 21:54:08:0d:6a:19:d7:7a:9a:f2:30:d3:d7:76:05: 5a:6b:09:ec:8a:a6:b8:a7:22:05:dc:c1:cb:0e:1a: 8a:1a:c9:d1:40:03:0d:57:6b:53:40:e2:f6:57:e7: d1:44:6e:62:cf:34:b7:ae:48:24:ba:95:a5:4f:5c: 47:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E6:5F:90:35:87:7E:34:B1:D8:C5:89:34:A6:B3:C7:38:C6:A2:1A X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:72:c2:8d:f7:7a:d5:2e:8f:52:87:43:36:6f:37:43:23:d9: 77:63:3c:35:82:41:8e:56:9b:1f:2d:f3:09:dc:3a:a8:49:40: f8:e0:8b:89:03:86:5e:ee:b4:95:91:7b:5e:58:e8:9e:5e:4f: 19:6a:54:e7:8a:70:66:2d:68:19:57:f1:c8:1d:a0:49:fa:57: f8:50:29:e0:3f:1e:42:84:99:50:93:5a:54:68:a6:92:56:14: b8:49:dd:1a:15:65:97:0f:09:d0:71:52:e0:fe:28:df:e0:40: 6b:f7:cf:21:bc:fd:36:16:5a:c7:7e:4b:d6:0a:4b:8f:4f:51: a1:61:df:f8:87:be:b4:f6:30:68:b4:37:75:df:e8:d7:12:ac: 9c:77:48:61:1d:4b:a0:cb:76:85:7f:f3:df:40:b4:d2:87:84: b4:49:29:be:17:92:97:b8:98:64:63:44:3a:4a:18:32:ea:07: 7c:ca:7f:0a:35:90:69:22:05:ce:d5:cb:d2:0d:4f:4d:10:0f: 69:96:8b:5e:b9:58:b8:91:bc:31:37:af:dd:4b:08:66:11:2a: bf:3a:1a:c7:65:8c:c0:4a:71:c1:a1:c0:e7:27:47:a7:e4:d6: 22:3c:1b:00:3c:a7:01:a6:1d:5d:11:fe:ea:34:37:ab:01:70: d7:e5:16:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNjAxMjUwNjA2NDFaFw0yNjAyMDEwNjA2NDFaMBgxFjAUBgNV BAMMDTY5NzViMmYxLTNiOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnqHkcZfV5QAUW5xd2g3R4CTv8Ej4hE1KwEHLRw5BGEiH6myQXwCe+bcarkLn3 P1V/QItjYUidVUN8nl+1oHctBZm+azAu0ZCIFzbDPd+UzlKnw+msZc674Y8oeJX8 /Se17ZtXMlDufotMZbPgZ14NMvfWvk40EcC4QNsMQJmILTRdmg+ViNCES97/2FII //2ZbOMh/s5uNTFA9p2WtMLCgzbH1U3DYvJHZUzyf9AUVPgkscWCuEQo6swCm2wK gzmI8yFUCA1qGdd6mvIw09d2BVprCeyKprinIgXcwcsOGooaydFAAw1Xa1NA4vZX 59FEbmLPNLeuSCS6laVPXEdlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/OZfkDWH fjSx2MWJNKazxzjGohowHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADhywo33etUuj1KHQzZvN0Mj2XdjPDWCQY5Wmx8t8wncOqhJQPjgi4kD hl7utJWRe15Y6J5eTxlqVOeKcGYtaBlX8cgdoEn6V/hQKeA/HkKEmVCTWlRoppJW FLhJ3RoVZZcPCdBxUuD+KN/gQGv3zyG8/TYWWsd+S9YKS49PUaFh3/iHvrT2MGi0 N3Xf6NcSrJx3SGEdS6DLdoV/899AtNKHhLRJKb4Xkpe4mGRjRDpKGDLqB3zKfwo1 kGkiBc7Vy9INT00QD2mWi165WLiRvDE3r91LCGYRKr86GsdljMBKccGhwOcnR6fk 1iI8GwA8pwGmHV0R/uo0N6sBcNflFlA= -----END CERTIFICATE-----Generated at Sun Jan 25 18:27:27 2026 by rpki-client