This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: yGNlvT5nRDkxnIDoIcvY9g6+0Fssx+WvPp1k7f6w/No= Subject key identifier: 18:26:DA:5E:C1:27:FF:16:E9:96:63:C3:FB:B1:75:9F:7F:2D:82:E4 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3524 Signing time: Sat 24 Jan 2026 14:46:37 +0000 Manifest this update: Sat 24 Jan 2026 14:46:36 +0000 Manifest next update: Sat 31 Jan 2026 14:46:36 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: yxt5OAjgrKu1CojXuCN0+lm5VEkyKbwzfyqHUhZYfXg=) 2: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: lSWPTUh4J0nKVHlliNgvt5VbtwoFX73iOyHCm/Taymo=) 3: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: JbpclduToNt6wif+jf1iFpDYoHa8WCEDhdanIxzpDxg=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: 8rkFFK7f8C4kg6amkqMwJcx/AiFRZZgVJDwHUVH6bkc=) 5: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: +mFUTPukNPCfcSKXNq7MZxHFPwbdlaeb+V/6jJQxtbQ=) 6: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: 1KOBUlBTgv8L/Zsa+ioCcjpPdWdcrbUzvA+4g3ZBS+I=) 7: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: bBddu/3OLqt+d3slS/y6PhHevDnsnnxmKe42ktA+yFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13656 (0x3558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 24 14:46:36 2026 GMT Not After : Jan 31 14:46:36 2026 GMT Subject: CN=6974db4c-fd65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3e:e1:1d:8d:fd:d2:35:9f:6e:f5:db:9e:9f: 7d:e0:92:26:6f:87:c2:11:2e:14:ed:94:94:a3:75: bc:c0:42:80:cc:d8:98:6c:08:77:55:2c:71:5f:13: 3f:f6:dd:26:7a:4f:e7:c1:dd:40:2f:88:94:6e:bd: f3:ba:9a:b9:a9:0a:c0:4d:7b:69:05:80:83:32:1b: 1e:b2:d7:7f:a0:fb:89:3f:08:61:e6:39:9c:f8:f1: 55:88:80:f4:f0:58:91:af:7b:93:7a:60:c7:46:50: 7f:0d:a9:43:c9:8b:43:54:34:b5:e8:41:c5:99:e9: c0:88:ba:e9:19:04:8d:e8:48:b0:0d:79:b2:53:0c: 48:a0:9e:4d:cc:25:c8:6e:35:0a:dd:56:40:0b:7d: 42:1a:e3:e8:f0:3d:e5:1d:cb:2d:98:37:a5:07:e0: 57:ff:37:7e:ee:d7:19:52:eb:9a:0c:43:0e:3f:df: b2:8e:9d:02:df:b7:79:a9:ab:38:df:fb:41:88:3e: f1:79:41:5f:3d:b7:4f:02:07:07:1d:5b:0f:b3:8e: f6:6a:b5:b6:0a:bb:0f:30:b5:36:f1:d5:83:ac:02: 70:01:98:b8:f1:95:47:4f:09:9d:ec:0c:73:98:fd: bd:fe:f4:38:b7:a9:d8:5b:4c:ec:14:25:57:76:2c: 12:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:26:DA:5E:C1:27:FF:16:E9:96:63:C3:FB:B1:75:9F:7F:2D:82:E4 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:9d:b9:bb:57:43:fc:54:ac:e3:ae:56:ce:72:8e:9b:67:33: 7a:e6:09:d4:a7:8e:b4:35:c5:fb:79:62:0e:0a:43:86:dc:c2: 49:cf:bd:09:ed:77:38:0b:ed:e8:78:80:47:fd:13:44:61:9e: 33:84:9b:19:c9:f2:38:02:6b:e5:e8:d9:6f:17:53:90:c9:32: 9e:92:6d:23:9e:b3:66:51:05:bd:dc:00:08:f6:91:3c:df:97: 1e:24:95:a2:24:7f:7c:ff:41:5f:8a:73:a3:ac:2b:af:f6:66: 51:34:e6:71:46:38:5b:9c:e9:0a:bd:1e:79:06:4d:82:2e:aa: 29:51:39:19:7f:c1:c3:4b:ad:86:a3:52:98:e1:3e:5c:48:ee: c1:9f:db:77:6b:a6:92:49:c5:8a:20:4c:fa:93:8d:fd:ea:44: 8d:c1:16:92:00:e7:b7:c5:74:81:2c:b9:7b:4d:a3:e5:4c:b9: 98:81:66:8d:7e:2b:22:95:1b:e0:ff:d1:1c:53:00:d7:8a:f4: f0:24:09:b5:9b:b9:5e:62:58:bd:2a:f9:a1:53:d3:3a:c7:c4: 06:a6:9d:4a:e4:4f:77:f3:2c:9d:0f:9c:e4:5a:b4:86:17:8d: e4:02:2f:61:3e:c0:41:36:12:22:2a:80:74:c9:bc:c2:bb:19: 17:81:dd:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwMTI0MTQ0NjM2WhcNMjYwMTMxMTQ0NjM2WjAYMRYwFAYD VQQDDA02OTc0ZGI0Yy1mZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlj7hHY390jWfbvXbnp994JImb4fCES4U7ZSUo3W8wEKAzNiYbAh3VSxxXxM/ 9t0mek/nwd1AL4iUbr3zupq5qQrATXtpBYCDMhsestd/oPuJPwhh5jmc+PFViID0 8FiRr3uTemDHRlB/DalDyYtDVDS16EHFmenAiLrpGQSN6EiwDXmyUwxIoJ5NzCXI bjUK3VZAC31CGuPo8D3lHcstmDelB+BX/zd+7tcZUuuaDEMOP9+yjp0C37d5qas4 3/tBiD7xeUFfPbdPAgcHHVsPs472arW2CrsPMLU28dWDrAJwAZi48ZVHTwmd7Axz mP29/vQ4t6nYW0zsFCVXdiwSqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgm2l7B J/8W6ZZjw/uxdZ9/LYLkMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQnbm7V0P8VKzjrlbOco6bZzN65gnUp460NcX7eWIOCkOG3MJJz70J 7Xc4C+3oeIBH/RNEYZ4zhJsZyfI4Amvl6NlvF1OQyTKekm0jnrNmUQW93AAI9pE8 35ceJJWiJH98/0FfinOjrCuv9mZRNOZxRjhbnOkKvR55Bk2CLqopUTkZf8HDS62G o1KY4T5cSO7Bn9t3a6aSScWKIEz6k4396kSNwRaSAOe3xXSBLLl7TaPlTLmYgWaN fisilRvg/9EcUwDXivTwJAm1m7leYli9KvmhU9M6x8QGpp1K5E938yydD5zkWrSG F43kAi9hPsBBNhIiKoB0ybzCuxkXgd3t -----END CERTIFICATE-----Generated at Sun Jan 25 07:51:19 2026 by rpki-client