This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft File: lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft (raw, json) Hash identifier: 1zGkaPX2lKltPK26BrdNtI5mh8LTtqFM/bUi1eQlNj8= Subject key identifier: 12:E5:1E:7C:A0:10:C0:95:0B:8C:AF:A7:F8:CA:DE:6C:29:96:58:FD Authority key identifier: 96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 Certificate issuer: /CN=A91A58AA/serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft Manifest number: 8B Signing time: Sun 25 Jan 2026 05:41:58 +0000 Manifest this update: Sun 25 Jan 2026 05:41:58 +0000 Manifest next update: Sun 01 Feb 2026 05:41:58 +0000 Files and hashes: 1: lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl (hash: o4TGm+f0wnMP2p6rRPkQ6tWrJ2xUemKirpbU0yfZAgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Validity Not Before: Jan 25 05:41:58 2026 GMT Not After : Feb 1 05:41:58 2026 GMT Subject: CN=6975ad26-dbfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0f:99:3c:72:cf:75:c9:cc:cb:92:2e:62:dd: bc:78:b0:d6:ef:6e:2c:86:9f:11:99:ab:70:3a:cb: 19:43:cd:f8:97:3f:2f:3d:fb:fc:54:26:30:af:f9: cb:b5:d9:1a:5c:bc:ec:45:89:3e:b4:c4:41:8d:11: a9:03:e1:0e:20:f8:73:57:8e:b1:52:02:42:b1:ee: aa:27:cd:56:ce:04:09:66:04:9b:ae:d2:55:f4:51: 43:2f:ad:a6:54:7c:94:15:d0:e3:f3:66:eb:d8:dc: 07:d1:eb:08:44:14:96:25:0a:5e:e2:27:a9:cd:89: 88:d8:ee:a5:4a:9c:ca:2e:b0:40:ed:29:a4:dd:10: 6d:32:77:f1:6e:95:4f:7d:e3:70:bf:b3:7a:72:de: b1:bd:7b:7e:54:71:fa:26:a0:62:9c:d8:76:3e:36: 4a:b7:72:42:0b:c8:1a:e7:a3:76:57:46:16:91:ea: f8:71:c1:07:22:39:b3:50:7b:fe:66:6d:36:e1:02: 75:07:ef:ff:d3:03:1f:54:6d:a4:94:cb:b8:e6:1f: 27:b2:0f:1e:72:55:ad:62:9f:14:a3:1a:7d:fe:9e: cc:7a:7f:95:41:83:c7:cd:5b:bc:f7:db:75:35:4c: 1b:d0:05:ec:da:b0:e8:dc:5c:de:cf:99:60:57:a0: de:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E5:1E:7C:A0:10:C0:95:0B:8C:AF:A7:F8:CA:DE:6C:29:96:58:FD X509v3 Authority Key Identifier: keyid:96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:b8:fe:39:7e:22:48:ea:ae:c4:a3:c5:d4:45:25:8d:3d:d7: c6:cb:fb:d7:5e:32:b2:57:5e:c0:a5:ab:dd:1b:de:cd:fd:e3: f3:a6:6a:15:2a:9e:35:21:d3:d1:d1:90:51:64:a0:c6:df:96: 1d:1e:5a:66:dc:bb:3d:99:fc:d9:39:73:d7:d3:78:2d:31:9a: 55:f8:00:87:f9:48:30:19:64:c8:b0:ed:cd:90:53:15:cf:b7: 37:d8:ae:29:9e:f0:92:02:11:9e:bc:a6:8b:f1:cc:7a:b1:e1: 29:10:4f:12:d7:0e:8b:9e:b4:4e:eb:0d:34:b0:e8:51:e2:ba: 8d:52:d2:7b:19:45:9e:49:86:1e:84:e0:6a:78:8f:ac:29:00: 68:47:8b:41:67:2f:b5:52:9d:4b:c5:2b:fd:4c:03:df:e8:0f: 8c:a4:43:77:66:e4:31:32:7d:36:41:fe:23:34:44:f6:ed:2c: c9:15:d2:7d:94:18:ed:6e:ec:a0:77:ad:27:a5:41:4e:ab:b7: 98:41:c9:74:a1:0c:d6:f9:48:a8:15:33:46:0b:ef:b8:f4:18: 4c:25:c7:06:f9:cd:53:da:de:75:b4:0b:92:3e:13:26:e2:4c: 92:68:68:58:3a:7a:6a:5b:36:0b:28:15:63:6b:4a:bb:a0:00: 82:7f:e2:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4QUExMTAvBgNVBAUTKDk2NzNCNUNDRjBBOEVBNUNFNDFBMkU0NzYzMTFGMzc1 Q0Q4M0MwRDIwHhcNMjYwMTI1MDU0MTU4WhcNMjYwMjAxMDU0MTU4WjAYMRYwFAYD VQQDDA02OTc1YWQyNi1kYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Q+ZPHLPdcnMy5IuYt28eLDW724shp8RmatwOssZQ834lz8vPfv8VCYwr/nL tdkaXLzsRYk+tMRBjRGpA+EOIPhzV46xUgJCse6qJ81WzgQJZgSbrtJV9FFDL62m VHyUFdDj82br2NwH0esIRBSWJQpe4iepzYmI2O6lSpzKLrBA7Smk3RBtMnfxbpVP feNwv7N6ct6xvXt+VHH6JqBinNh2PjZKt3JCC8ga56N2V0YWker4ccEHIjmzUHv+ Zm024QJ1B+//0wMfVG2klMu45h8nsg8eclWtYp8Uoxp9/p7Men+VQYPHzVu899t1 NUwb0AXs2rDo3Fzez5lgV6DeAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLlHnyg EMCVC4yvp/jK3mwpllj9MB8GA1UdIwQYMBaAFJZztczwqOpc5BouR2MR83XNg8DS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNThBQS9DMTkzOUNFNjI0 MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9sbk8xelBDbzZsemtHaTVIWXhIemRjMkR3 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xuTzF6UENvNmx6a0dpNUhZeEh6ZGMyRHdOSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NThBQS9DMTkzOUNFNjI0MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9sbk8xelBDbzZs emtHaTVIWXhIemRjMkR3TkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmuP45fiJI6q7Eo8XURSWNPdfGy/vXXjKyV17ApavdG97N/ePzpmoV Kp41IdPR0ZBRZKDG35YdHlpm3Ls9mfzZOXPX03gtMZpV+ACH+UgwGWTIsO3NkFMV z7c32K4pnvCSAhGevKaL8cx6seEpEE8S1w6LnrRO6w00sOhR4rqNUtJ7GUWeSYYe hOBqeI+sKQBoR4tBZy+1Up1LxSv9TAPf6A+MpEN3ZuQxMn02Qf4jNET27SzJFdJ9 lBjtbuygd60npUFOq7eYQcl0oQzW+UioFTNGC++49BhMJccG+c1T2t51tAuSPhMm 4kySaGhYOnpqWzYLKBVja0q7oACCf+JD -----END CERTIFICATE-----Generated at Mon Jan 26 00:45:50 2026 by rpki-client