This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: gioT33Wr5cf68fXnxkJDtZih7UaawgyCgCmnqWtdpK8= Subject key identifier: 2A:58:AF:61:C9:E1:04:CE:DC:7D:CE:8B:53:28:C6:0A:84:36:49:23 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36FB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 36F8 Signing time: Sat 24 Jan 2026 14:31:36 +0000 Manifest this update: Sat 24 Jan 2026 14:31:36 +0000 Manifest next update: Sat 31 Jan 2026 14:31:36 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: k0hs2tNWzpGWGMJyw626OCl10u8jdR0ouwziJrRFaLk=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: 2WcUpVfHTb1NauNbZRhqL6uiQF0uai697c32ozKwX5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14075 (0x36fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jan 24 14:31:36 2026 GMT Not After : Jan 31 14:31:36 2026 GMT Subject: CN=6974d7c8-9da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:23:c3:0d:7d:e7:bb:f6:b3:91:79:5b:48:aa: b6:b6:f1:2c:46:ab:08:5c:87:2f:7e:81:97:10:c0: 77:41:5b:84:2d:9d:4a:8a:16:0e:f3:96:a3:f8:0d: b2:d2:c3:d1:3c:74:e9:88:01:a3:f4:57:fa:df:47: eb:33:d4:0f:aa:53:af:cf:f1:a4:13:06:37:c7:9f: 49:97:86:05:37:94:35:88:ba:15:0e:e1:16:1e:a8: 5c:16:86:95:ee:c7:03:1a:c6:78:72:1b:88:98:a3: 3d:b3:29:2e:34:01:df:0b:d8:c7:91:3c:06:7e:72: 71:e3:e7:fa:1a:bf:e0:d1:85:47:b9:e3:44:c8:1e: 79:a2:60:78:bd:31:b9:a7:80:fa:bb:35:3f:6c:e4: 88:35:c6:5e:b1:26:cb:c4:92:89:13:74:a0:b7:94: 18:7e:84:e2:77:27:6d:63:73:08:c5:97:c7:eb:9b: 35:2d:07:4e:10:24:f7:f6:8f:54:8b:58:81:02:39: 87:34:1d:5c:16:b4:03:c7:37:b9:a8:82:3b:09:77: 4b:74:14:da:cb:fe:1d:5a:73:3e:b9:13:6b:d1:bb: b0:be:fc:b3:f2:be:ae:52:5e:16:a5:2f:27:6e:67: 72:d8:58:4a:64:5f:ad:84:b3:8c:f3:61:d0:0c:2f: 3f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:58:AF:61:C9:E1:04:CE:DC:7D:CE:8B:53:28:C6:0A:84:36:49:23 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:05:7b:d6:15:43:48:ca:f8:bc:9e:91:4f:b2:34:2a:44:b3: fd:cb:d2:4e:a6:fe:3e:14:1b:b0:22:88:97:fd:8f:a2:0b:ea: 81:99:08:09:9a:59:18:e7:11:0f:dd:05:0c:ba:24:49:03:45: 79:28:da:a9:6e:c6:03:f6:c1:5b:b3:4c:b5:be:db:20:54:5c: 67:ef:fb:24:a2:4d:b1:51:a2:21:0a:d4:97:4c:dd:ed:74:7c: 27:ed:f7:38:24:ae:b1:55:47:7c:1c:01:92:7f:f8:fa:c7:e6: cd:e4:ed:b2:3e:3c:d2:3b:61:8a:d6:32:38:68:18:1e:04:01: aa:97:04:d9:f3:dc:e9:d9:63:0c:ce:98:fb:59:c4:86:01:6c: 63:84:aa:3e:8b:9b:ed:a9:dd:4a:13:5d:64:c1:92:6c:0c:d1: cf:c1:25:6f:dd:53:35:3b:76:42:19:ec:e5:ec:e3:f1:72:5b: 0f:e4:40:a4:17:b4:94:75:fd:30:2c:fd:62:3f:65:f0:1c:d3: c7:33:a9:91:3b:ee:66:9f:4c:ec:bc:66:3a:ab:dc:b7:de:c8: 60:a9:ce:5f:3d:5f:7d:95:c4:b3:30:c2:09:e1:b6:d4:32:03: fe:52:c4:7f:5b:47:37:c5:e0:9a:b8:6b:f2:51:1c:54:c5:d5: cd:6c:3f:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMTI0MTQzMTM2WhcNMjYwMTMxMTQzMTM2WjAYMRYwFAYD VQQDDA02OTc0ZDdjOC05ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSPDDX3nu/azkXlbSKq2tvEsRqsIXIcvfoGXEMB3QVuELZ1KihYO85aj+A2y 0sPRPHTpiAGj9Ff630frM9QPqlOvz/GkEwY3x59Jl4YFN5Q1iLoVDuEWHqhcFoaV 7scDGsZ4chuImKM9sykuNAHfC9jHkTwGfnJx4+f6Gr/g0YVHueNEyB55omB4vTG5 p4D6uzU/bOSINcZesSbLxJKJE3Sgt5QYfoTidydtY3MIxZfH65s1LQdOECT39o9U i1iBAjmHNB1cFrQDxze5qII7CXdLdBTay/4dWnM+uRNr0buwvvyz8r6uUl4WpS8n bmdy2FhKZF+thLOM82HQDC8/NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpYr2HJ 4QTO3H3Oi1MoxgqENkkjMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPBXvWFUNIyvi8npFPsjQqRLP9y9JOpv4+FBuwIoiX/Y+iC+qBmQgJ mlkY5xEP3QUMuiRJA0V5KNqpbsYD9sFbs0y1vtsgVFxn7/skok2xUaIhCtSXTN3t dHwn7fc4JK6xVUd8HAGSf/j6x+bN5O2yPjzSO2GK1jI4aBgeBAGqlwTZ89zp2WMM zpj7WcSGAWxjhKo+i5vtqd1KE11kwZJsDNHPwSVv3VM1O3ZCGezl7OPxclsP5ECk F7SUdf0wLP1iP2XwHNPHM6mRO+5mn0zsvGY6q9y33shgqc5fPV99lcSzMMIJ4bbU MgP+UsR/W0c3xeCauGvyURxUxdXNbD+J -----END CERTIFICATE-----Generated at Sun Jan 25 13:58:26 2026 by rpki-client