This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: r94ZrgY8xESmIUKADlotQy4uj8kR7pVFOqjJIitysmA= Subject key identifier: 36:A9:FA:C5:54:33:DC:BF:F6:DD:B6:2D:B4:A1:56:47:BC:34:82:15 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 0146 Signing time: Sun 25 Jan 2026 03:33:39 +0000 Manifest this update: Sun 25 Jan 2026 03:33:39 +0000 Manifest next update: Sun 01 Feb 2026 03:33:39 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: EzkTgVH4tmbUkNiqHvShM4XeBWXGidBbLzSEpvfzAyk=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Jan 25 03:33:39 2026 GMT Not After : Feb 1 03:33:39 2026 GMT Subject: CN=69758f13-e869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:14:67:27:d3:4c:7e:9e:6a:b7:fa:96:5a: ec:de:c8:c3:d8:ab:71:56:87:5b:c2:e5:3f:dc:dc: 64:0f:88:d3:b4:ee:86:e2:cd:e5:1a:64:5d:de:37: 97:cd:d3:4f:ba:91:8c:20:76:31:e2:cf:92:8f:60: c1:de:b0:86:7d:90:4e:d6:47:8d:26:93:b3:4c:ba: fc:32:c9:57:f1:88:2e:c6:74:9b:db:15:b8:a2:1e: e7:61:8a:03:cd:82:6c:54:10:6e:4e:e1:a5:b0:16: 2d:1d:8c:82:fe:08:fc:9a:f0:0c:49:f5:67:aa:2c: e8:1f:64:f9:76:93:6a:4b:31:a9:86:65:2f:85:e7: a3:68:03:91:7d:32:c9:0e:d5:41:15:36:8a:4a:9c: 90:f4:1c:0b:78:1b:46:6b:04:4a:bc:ff:ab:59:fc: 9c:ad:2b:6b:1b:1b:9e:9d:22:7f:c3:9c:34:e8:c2: 2e:e3:ce:1d:0d:77:b8:c7:3e:97:fe:86:a9:8a:98: fb:78:3d:08:42:8f:e9:8a:2a:f1:9f:d5:93:39:2f: 27:b1:e4:89:f4:59:22:6c:63:a6:0d:86:e9:d0:6f: 5e:fc:fc:17:d9:40:d1:d4:c9:22:a7:75:5e:91:54: b8:f0:8f:b9:6e:3c:1f:35:17:6e:1b:e9:d0:fd:3b: 8d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A9:FA:C5:54:33:DC:BF:F6:DD:B6:2D:B4:A1:56:47:BC:34:82:15 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:df:6d:47:a9:53:a9:29:49:a0:91:67:78:a3:84:f4:35:1f: b6:4c:36:6e:38:6c:66:28:5d:13:b8:fb:a5:28:90:a6:a6:a5: 18:d4:ed:ff:37:fe:82:f8:c2:01:9c:82:22:cd:ef:0b:31:35: 6d:38:ca:f5:eb:14:da:7f:93:3e:57:6c:13:9a:4a:5e:20:1d: 58:2c:4b:a1:d0:63:1c:73:6e:bf:ca:46:22:9a:e9:f6:9d:08: ce:56:73:e7:56:c5:e4:7c:3a:d8:86:d7:b5:14:f3:4d:5b:68: 0f:cb:ad:8e:62:4e:ad:35:24:58:81:ad:66:10:7b:6e:21:ee: aa:fb:2a:53:cc:7b:fd:1d:58:32:e5:c6:43:b6:28:89:35:d3: 1f:85:be:1e:58:b3:4e:e3:d8:f0:b4:9c:6d:27:27:12:39:40: a0:6c:c0:56:df:d3:2a:c5:cc:9d:69:a5:8f:a6:c4:58:a3:33: a4:3b:57:53:eb:7c:29:26:00:94:f5:cf:25:ff:8b:91:01:f7: 72:fb:70:90:1d:c4:f8:15:b3:36:35:39:10:09:6d:d5:a1:af: 6c:d3:92:49:04:99:21:79:78:1b:3f:a2:9e:97:99:41:cd:e1: d6:52:da:ed:30:84:e5:a2:2a:00:99:50:9f:17:2b:b1:12:8b: 9a:0d:a8:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjYwMTI1MDMzMzM5WhcNMjYwMjAxMDMzMzM5WjAYMRYwFAYD VQQDDA02OTc1OGYxMy1lODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRsUZyfTTH6earf6llrs3sjD2KtxVodbwuU/3NxkD4jTtO6G4s3lGmRd3jeX zdNPupGMIHYx4s+Sj2DB3rCGfZBO1keNJpOzTLr8MslX8YguxnSb2xW4oh7nYYoD zYJsVBBuTuGlsBYtHYyC/gj8mvAMSfVnqizoH2T5dpNqSzGphmUvheejaAORfTLJ DtVBFTaKSpyQ9BwLeBtGawRKvP+rWfycrStrGxuenSJ/w5w06MIu484dDXe4xz6X /oapipj7eD0IQo/piirxn9WTOS8nseSJ9FkibGOmDYbp0G9e/PwX2UDR1Mkip3Ve kVS48I+5bjwfNRduG+nQ/TuNMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDap+sVU M9y/9t22LbShVke8NIIVMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV321HqVOpKUmgkWd4o4T0NR+2TDZuOGxmKF0TuPulKJCmpqUY1O3/ N/6C+MIBnIIize8LMTVtOMr16xTaf5M+V2wTmkpeIB1YLEuh0GMcc26/ykYimun2 nQjOVnPnVsXkfDrYhte1FPNNW2gPy62OYk6tNSRYga1mEHtuIe6q+ypTzHv9HVgy 5cZDtiiJNdMfhb4eWLNO49jwtJxtJycSOUCgbMBW39MqxcydaaWPpsRYozOkO1dT 63wpJgCU9c8l/4uRAfdy+3CQHcT4FbM2NTkQCW3Voa9s05JJBJkheXgbP6Kel5lB zeHWUtrtMITloioAmVCfFyuxEouaDah1 -----END CERTIFICATE-----Generated at Mon Jan 26 01:12:47 2026 by rpki-client