This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: uU2ZN3OaRY5aSYZHOR03iQQCpmpmrET1XvmwQsyvj4Q= Subject key identifier: 2A:D2:0A:40:0D:B9:C1:44:C7:C3:58:B9:2D:76:53:8F:44:83:AC:32 Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 01E7 Signing time: Sun 25 Jan 2026 01:58:21 +0000 Manifest this update: Sun 25 Jan 2026 01:58:20 +0000 Manifest next update: Sun 01 Feb 2026 01:58:20 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: Rfv13rTHHK1Dh+geqkZOuPUvzI4FTtmX+DtZoNxme5c=) 2: CD1C75D8B98A11F0A26C3854C4F9AE02.roa (hash: sHy0AwVAJBGq/EKm3rJjAjZHwe3udG3yQF07jGTCj2A=) 3: 4F9AF642C51611F0BA6C053AC4F9AE02.roa (hash: 1AbjCtqD4u+7KGjGOPMS77dj4rUPYp5rnx5ZMf73E1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Jan 25 01:58:20 2026 GMT Not After : Feb 1 01:58:20 2026 GMT Subject: CN=697578bc-2a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b8:58:f8:9b:84:0f:31:20:b6:68:b1:8c:8f: c3:47:d2:5c:d8:56:1d:83:5b:63:53:0c:91:b0:08: 0a:a5:5c:83:e8:3d:3e:45:a0:9c:87:27:38:26:45: f8:00:f9:4f:4e:be:8d:6f:bc:72:8e:c7:d3:cc:02: b2:04:e2:b2:25:74:ad:00:f4:61:01:a6:d7:54:a9: 97:ef:3b:05:90:0b:f4:e5:8f:11:21:e5:0e:55:ef: fd:ca:a1:1b:20:a3:42:40:a7:53:24:1b:27:8d:1f: da:d1:86:be:93:ee:12:89:e9:7d:57:6d:83:5a:c5: 93:11:46:1c:27:56:f0:2c:29:dc:c8:45:71:50:9f: 60:e0:3e:ec:7f:9c:6e:b4:78:e0:e5:51:29:0b:13: a0:4b:2b:af:e4:ae:f4:2c:fb:cc:58:c1:cd:29:e7: 18:c0:3f:74:3a:1f:a8:d3:6f:9b:d6:2a:5b:a4:6a: 82:95:0f:c4:ef:b5:05:dc:28:d9:a3:53:6e:57:58: b1:1e:34:68:20:21:b8:42:28:d6:7c:ef:31:33:f9: db:b8:c3:23:6d:46:4c:d6:f7:9c:ce:70:58:21:51: 56:91:4f:e1:d7:c6:73:18:03:7c:4a:a7:f7:81:0a: 2e:a6:1a:21:8d:83:cb:d4:bb:11:b7:69:86:9c:37: e2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D2:0A:40:0D:B9:C1:44:C7:C3:58:B9:2D:76:53:8F:44:83:AC:32 X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:14:82:45:bd:5b:f5:ca:65:3e:88:03:9e:5e:0d:1b:99:67: 43:38:ed:32:69:b3:f0:4c:bb:15:af:44:8f:3b:8b:c1:f5:77: ce:22:b3:9e:c9:57:27:16:40:c7:e1:bc:36:2a:22:d2:36:a0: 9b:75:fb:82:12:79:ea:98:3d:4e:c6:a2:a6:44:68:23:e1:14: 85:66:e9:2a:90:f0:e2:55:4d:83:7e:06:69:49:ff:23:c9:c9: 1c:d2:47:39:83:9a:75:10:62:b4:61:b3:d2:04:2d:25:db:00: c9:87:be:9d:ad:6d:dc:25:ee:23:ed:62:46:72:75:22:89:9f: 82:2a:6d:9d:27:b9:54:83:95:7f:15:96:bf:92:2c:d7:14:a9: fc:19:39:73:8c:ea:e1:05:40:26:0e:19:7a:71:fb:1e:36:da: 97:37:c8:6c:2d:3d:24:9b:aa:a4:48:18:8c:fe:ab:07:75:a7: 63:c9:c8:ce:64:17:d2:20:f2:67:b2:aa:e0:ec:b1:18:be:27: 51:0f:15:f6:9f:27:23:13:41:18:43:a3:4d:85:fb:84:53:93: 32:d3:57:82:2c:38:d4:3d:69:14:36:c6:f1:bf:51:89:ca:7d: 06:01:d0:0f:6e:90:3f:46:20:2f:bf:2b:e7:d3:4a:b1:d0:5c: be:e1:38:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjYwMTI1MDE1ODIwWhcNMjYwMjAxMDE1ODIwWjAYMRYwFAYD VQQDDA02OTc1NzhiYy0yYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bhY+JuEDzEgtmixjI/DR9Jc2FYdg1tjUwyRsAgKpVyD6D0+RaCchyc4JkX4 APlPTr6Nb7xyjsfTzAKyBOKyJXStAPRhAabXVKmX7zsFkAv05Y8RIeUOVe/9yqEb IKNCQKdTJBsnjR/a0Ya+k+4Siel9V22DWsWTEUYcJ1bwLCncyEVxUJ9g4D7sf5xu tHjg5VEpCxOgSyuv5K70LPvMWMHNKecYwD90Oh+o02+b1ipbpGqClQ/E77UF3CjZ o1NuV1ixHjRoICG4QijWfO8xM/nbuMMjbUZM1vecznBYIVFWkU/h18ZzGAN8Sqf3 gQouphohjYPL1LsRt2mGnDfiOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrSCkAN ucFEx8NYuS12U49Eg6wyMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfFIJFvVv1ymU+iAOeXg0bmWdDOO0yabPwTLsVr0SPO4vB9XfOIrOe yVcnFkDH4bw2KiLSNqCbdfuCEnnqmD1OxqKmRGgj4RSFZukqkPDiVU2DfgZpSf8j yckc0kc5g5p1EGK0YbPSBC0l2wDJh76drW3cJe4j7WJGcnUiiZ+CKm2dJ7lUg5V/ FZa/kizXFKn8GTlzjOrhBUAmDhl6cfseNtqXN8hsLT0km6qkSBiM/qsHdadjycjO ZBfSIPJnsqrg7LEYvidRDxX2nycjE0EYQ6NNhfuEU5My01eCLDjUPWkUNsbxv1GJ yn0GAdAPbpA/RiAvvyvn00qx0Fy+4Ti1 -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:02 2026 by rpki-client