This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: PavrD/eM9OUgeocII831e6Vu6KyeThAExODHv9hgJtY= Subject key identifier: 97:3D:E5:8E:46:C1:B5:32:E0:9C:CA:F8:3B:F8:31:DA:46:3F:A8:19 Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: BD Signing time: Sun 25 Jan 2026 05:08:59 +0000 Manifest this update: Sun 25 Jan 2026 05:08:59 +0000 Manifest next update: Sun 01 Feb 2026 05:08:59 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: xE3DzPUecOlOAQVVcb14vbxhkyKCHTvqSWdkQ5bu7y4=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Validity Not Before: Jan 25 05:08:59 2026 GMT Not After : Feb 1 05:08:59 2026 GMT Subject: CN=6975a56b-3859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:85:f4:9d:18:99:15:73:52:96:c5:6a:ef:16: ba:6d:03:fb:0b:85:a6:a1:e8:3c:1d:6a:eb:f5:ff: c6:53:c0:86:66:d0:2d:59:07:18:df:66:6d:af:ea: fc:5b:79:6c:b1:fe:0e:30:31:85:d7:7d:bc:50:a7: 35:a1:af:b1:7f:78:83:19:2d:de:b7:77:80:02:65: 79:cc:31:2f:3f:02:49:a8:db:f5:a0:88:d7:67:a1: 10:34:a4:4b:74:49:5a:b4:d0:17:64:0a:f4:b7:00: 11:55:c2:d0:0f:4d:45:ff:81:9b:3c:c5:25:f6:77: 95:ef:d0:7f:24:85:b2:01:2e:0f:36:70:02:73:14: ff:df:34:52:80:47:20:e4:ac:c2:cb:97:96:3d:8d: 45:18:38:d8:fa:3d:0c:8c:96:1c:f0:51:6b:29:20: 2b:81:e5:fa:0e:a0:a0:c1:2e:59:5a:91:62:0d:b4: 91:e1:7f:ea:94:76:c4:ec:be:e1:59:bc:3e:6d:eb: f8:79:d3:b8:8a:69:cd:02:7b:a7:53:e1:c7:c4:4d: 5f:af:54:42:c2:ca:a2:1e:88:a4:ec:1e:ee:86:47: 6c:f4:c9:71:c3:82:36:af:40:f4:54:66:16:78:e4: ba:96:57:80:b2:18:82:72:45:ed:b9:9e:3a:fe:ee: d5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3D:E5:8E:46:C1:B5:32:E0:9C:CA:F8:3B:F8:31:DA:46:3F:A8:19 X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:de:6c:e7:12:53:a9:6a:d5:34:57:dd:9a:18:7d:6f:77:9d: fd:09:f6:13:23:0e:a2:f8:9d:7b:15:a0:2a:0e:df:8e:b6:42: 62:5a:4d:26:c9:cd:a4:e5:4b:26:36:f2:5b:88:c0:34:36:c1: f6:b5:4b:97:26:52:f4:77:a6:61:c4:86:2a:ff:70:f9:2f:0e: 5f:69:08:2b:cd:b6:28:7e:16:0b:52:7a:da:9f:a9:6b:e2:aa: a5:ca:24:b3:0d:e4:c8:5e:1f:fd:2e:ca:67:f2:2b:9d:7c:3e: 5f:d4:62:4a:a7:2f:0d:f7:62:93:44:58:81:72:4a:ab:72:2d: 93:09:6d:ad:1b:73:2e:aa:12:59:d9:8c:0b:fb:95:bb:1f:aa: 77:e7:f4:b1:33:67:48:86:d7:06:3d:b8:31:46:08:71:89:28: 79:05:01:2d:73:a6:25:ef:82:62:6d:23:7f:24:4a:15:aa:26: d4:f4:13:48:45:ef:5d:bb:2d:5e:cb:47:2f:ed:60:ec:79:e3: 7b:74:b5:89:11:b5:f2:fc:0c:53:ed:2b:d2:c6:38:9a:1a:24: 5e:ef:ab:ca:22:cb:a3:6f:f8:83:cd:5d:35:e9:97:a6:ab:db: 54:1a:34:c7:b6:40:b8:47:01:aa:42:ff:1f:14:88:ba:0c:73: 53:9e:1f:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDQ5MTM2Njc1RTdFMjM0RTdEMkY4ODQ1OTk4RTJDNjJE QjQ4ODgyQ0EwHhcNMjYwMTI1MDUwODU5WhcNMjYwMjAxMDUwODU5WjAYMRYwFAYD VQQDDA02OTc1YTU2Yi0zODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoX0nRiZFXNSlsVq7xa6bQP7C4Wmoeg8HWrr9f/GU8CGZtAtWQcY32Ztr+r8 W3lssf4OMDGF1328UKc1oa+xf3iDGS3et3eAAmV5zDEvPwJJqNv1oIjXZ6EQNKRL dElatNAXZAr0twARVcLQD01F/4GbPMUl9neV79B/JIWyAS4PNnACcxT/3zRSgEcg 5KzCy5eWPY1FGDjY+j0MjJYc8FFrKSArgeX6DqCgwS5ZWpFiDbSR4X/qlHbE7L7h Wbw+bev4edO4imnNAnunU+HHxE1fr1RCwsqiHoik7B7uhkds9Mlxw4I2r0D0VGYW eOS6lleAshiCckXtuZ46/u7VXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJc95Y5G wbUy4JzK+Dv4MdpGP6gZMB8GA1UdIwQYMBaAFEkTZnXn4jTn0viEWZjixi20iILK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BNzU0RDM4MEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9TUk5tZGVmaU5PZlMtSVJabU9MR0xiU0ln c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BNzU0RDM4MEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9TUk5tZGVmaU5P ZlMtSVJabU9MR0xiU0lnc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW3mznElOpatU0V92aGH1vd539CfYTIw6i+J17FaAqDt+OtkJiWk0m yc2k5UsmNvJbiMA0NsH2tUuXJlL0d6ZhxIYq/3D5Lw5faQgrzbYofhYLUnran6lr 4qqlyiSzDeTIXh/9Lspn8iudfD5f1GJKpy8N92KTRFiBckqrci2TCW2tG3MuqhJZ 2YwL+5W7H6p35/SxM2dIhtcGPbgxRghxiSh5BQEtc6Yl74JibSN/JEoVqibU9BNI Re9duy1ey0cv7WDseeN7dLWJEbXy/AxT7SvSxjiaGiRe76vKIsujb/iDzV016Zem q9tUGjTHtkC4RwGqQv8fFIi6DHNTnh/M -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:48 2026 by rpki-client