This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: JPlRuBsVGN8U/Q5meLImEfolQX+sv1hMwW608DbWZM8= Subject key identifier: 00:F1:81:83:68:63:CC:72:A8:18:C3:C3:33:42:09:90:0F:F6:2D:50 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0160 Signing time: Sun 25 Jan 2026 03:17:33 +0000 Manifest this update: Sun 25 Jan 2026 03:17:32 +0000 Manifest next update: Sun 01 Feb 2026 03:17:32 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: rCYhsxaQzY2mAiuG9z7ubJzCrGbONQZBsxR/ti2dn00=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Jan 25 03:17:32 2026 GMT Not After : Feb 1 03:17:32 2026 GMT Subject: CN=69758b4d-b8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:86:1c:70:76:3f:0f:57:be:4c:c5:09:08:de: 29:df:dc:04:ed:6c:0b:4c:ba:4c:39:44:d5:32:b0: 14:a7:2d:64:bf:fa:86:d2:25:3d:78:ce:c1:55:85: dd:d0:31:69:6d:f9:e5:21:50:bf:70:34:5f:4f:ca: 64:99:30:7c:5d:9d:c9:0d:62:f6:30:37:54:ac:a9: 6b:eb:c9:98:2e:64:11:d5:ba:2b:42:37:be:5c:d6: 2d:94:c3:08:07:ba:a6:26:83:9b:f9:72:e9:24:80: 1e:0c:be:68:91:2c:87:ce:db:ad:10:6d:44:1e:e4: 62:24:3d:59:0b:74:cc:05:58:52:a7:f0:d9:48:ae: 06:cd:1f:70:d0:8c:be:d1:60:77:32:63:44:66:ee: b2:7d:06:10:58:bb:0b:82:ba:0c:6d:6c:dd:ff:f3: 91:cc:62:a9:4e:61:0e:8c:30:cb:a2:2b:4e:b9:69: 29:76:67:22:c3:80:f6:42:56:bb:77:b0:c8:25:29: 39:5a:eb:5a:92:96:ca:56:36:b4:f2:a5:11:bb:40: 24:3a:8c:d7:01:5c:d9:20:06:52:cd:2c:04:0a:ec: cf:5c:21:af:d6:db:f7:f9:8b:18:64:2e:e7:57:8a: e6:30:9b:a2:69:25:73:d7:7a:f3:08:1f:a8:cc:de: bb:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F1:81:83:68:63:CC:72:A8:18:C3:C3:33:42:09:90:0F:F6:2D:50 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ad:27:1b:7e:aa:7f:eb:a9:a3:98:b5:36:ce:a6:d6:5a:f1: 8a:76:a4:8e:b2:c3:f7:3f:97:e5:f7:8b:ac:aa:29:4c:e4:2e: 26:02:2f:82:03:e0:d9:cf:e5:31:06:31:ff:90:eb:15:68:73: 5b:7b:00:04:48:ab:6a:f0:fe:c8:8d:93:ae:9b:f4:7a:4f:57: eb:b2:0a:55:f0:02:8f:e7:5e:48:78:53:d6:9c:f2:6c:41:6a: 51:07:b5:a6:ef:d7:8e:bb:1a:12:88:e0:0b:3b:cd:90:51:17: 7e:cc:e8:1e:34:11:81:8c:68:c3:43:7e:cb:1b:d7:e6:c4:2a: c1:3e:d4:70:c0:f5:e1:3e:5a:e5:3c:fb:25:55:eb:5b:71:93: 93:f1:b9:26:de:59:67:81:0e:f9:69:64:6e:03:7f:f7:4f:c5: 49:8c:6d:13:58:5e:9b:5d:9c:eb:ec:10:4f:f7:c1:3b:31:df: af:b2:23:9a:54:27:79:5d:2f:5b:be:1c:68:f9:1a:a7:3d:e1: 2a:49:07:69:0e:73:a1:3f:e3:0a:30:02:91:40:7d:7f:c1:81: 7e:85:8b:23:d0:38:c2:a0:70:c4:99:19:89:9a:c4:1b:c0:de: 6e:52:58:66:46:30:b6:d4:61:16:b6:c2:8d:84:92:ff:b5:fd: d0:99:99:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjYwMTI1MDMxNzMyWhcNMjYwMjAxMDMxNzMyWjAYMRYwFAYD VQQDDA02OTc1OGI0ZC1iOGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroYccHY/D1e+TMUJCN4p39wE7WwLTLpMOUTVMrAUpy1kv/qG0iU9eM7BVYXd 0DFpbfnlIVC/cDRfT8pkmTB8XZ3JDWL2MDdUrKlr68mYLmQR1borQje+XNYtlMMI B7qmJoOb+XLpJIAeDL5okSyHztutEG1EHuRiJD1ZC3TMBVhSp/DZSK4GzR9w0Iy+ 0WB3MmNEZu6yfQYQWLsLgroMbWzd//ORzGKpTmEOjDDLoitOuWkpdmciw4D2Qla7 d7DIJSk5WutakpbKVja08qURu0AkOozXAVzZIAZSzSwECuzPXCGv1tv3+YsYZC7n V4rmMJuiaSVz13rzCB+ozN67awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADxgYNo Y8xyqBjDwzNCCZAP9i1QMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIrScbfqp/66mjmLU2zqbWWvGKdqSOssP3P5fl94usqilM5C4mAi+C A+DZz+UxBjH/kOsVaHNbewAESKtq8P7IjZOum/R6T1frsgpV8AKP515IeFPWnPJs QWpRB7Wm79eOuxoSiOALO82QURd+zOgeNBGBjGjDQ37LG9fmxCrBPtRwwPXhPlrl PPslVetbcZOT8bkm3llngQ75aWRuA3/3T8VJjG0TWF6bXZzr7BBP98E7Md+vsiOa VCd5XS9bvhxo+RqnPeEqSQdpDnOhP+MKMAKRQH1/wYF+hYsj0DjCoHDEmRmJmsQb wN5uUlhmRjC21GEWtsKNhJL/tf3QmZlY -----END CERTIFICATE-----Generated at Sun Jan 25 14:08:59 2026 by rpki-client