This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: O+sNvSZa2CzYAAgjejb7Hyi/iCuP3kPl0XnLB5GcZj8= Subject key identifier: F1:34:B4:EC:12:1F:C3:A0:1A:B8:DB:B6:72:98:2A:93:6A:56:91:95 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: BA Signing time: Sun 25 Jan 2026 05:11:58 +0000 Manifest this update: Sun 25 Jan 2026 05:11:57 +0000 Manifest next update: Sun 01 Feb 2026 05:11:57 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: jjanzJ4bA4rIEQ6IzEjnex5B4e9oiPE6ziq4wUKuClA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Jan 25 05:11:57 2026 GMT Not After : Feb 1 05:11:57 2026 GMT Subject: CN=6975a61d-7328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d5:5b:e7:2e:70:41:88:ab:70:25:46:b3:8e: 86:70:66:0e:4e:5e:16:ce:1e:98:eb:1c:bb:65:55: 85:ae:b2:45:e7:7a:5b:b6:db:0d:1d:76:e0:c1:24: f4:58:83:07:da:64:d2:d6:06:47:4b:19:a2:41:1c: be:e4:c6:f4:20:cc:3c:09:15:10:21:34:3e:6e:15: 1b:e4:10:5a:29:69:95:87:dd:e8:be:4a:39:62:6a: 54:6c:ec:35:ba:b1:59:82:34:bb:39:f0:92:e7:93: b9:a0:ca:0e:02:fa:c5:97:f7:38:48:a6:b7:61:e9: f3:38:6b:d1:1a:21:49:cd:2d:b4:e0:38:c6:d5:1c: 64:02:ce:fc:1b:99:73:1a:78:e4:4b:df:15:99:ac: ae:8b:16:e1:19:a1:2f:35:0d:0c:d9:d7:90:5c:63: d4:cf:eb:c1:d8:71:ab:c2:ce:ae:c9:40:4f:e3:2f: d6:c5:c6:9a:06:81:2a:0f:92:a8:2c:67:0b:ed:27: dc:1f:79:b5:96:0c:7f:4c:a7:bd:f5:e6:5d:3e:b5: ba:b7:da:f7:1b:78:64:bc:75:50:b3:67:84:7f:cf: 6b:4c:9e:d7:76:c0:b0:ab:db:f9:92:d0:8f:75:0d: 17:b2:ea:04:15:14:59:3f:70:ff:fa:36:1b:40:6d: 2e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:34:B4:EC:12:1F:C3:A0:1A:B8:DB:B6:72:98:2A:93:6A:56:91:95 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:22:42:a8:0b:77:d4:c4:c0:75:a3:4b:0b:01:16:3a:67:46: d3:61:ae:b2:28:3a:2b:e3:0f:e4:ec:dc:a9:06:9e:b7:5b:35: ae:6a:34:c0:50:42:41:cb:36:60:98:04:ea:24:aa:cd:3e:ac: 43:3e:f9:b6:66:e8:7e:0a:02:22:42:db:b9:9c:30:fd:7b:88: 7f:9a:7a:d5:4a:ac:fb:4c:36:a7:44:88:95:fd:95:3c:1a:a1: 56:bc:a9:52:3d:37:f1:98:45:d7:62:72:75:ac:4c:e5:f0:ea: 3c:68:0a:91:14:cf:43:2c:1d:fb:70:5e:84:78:e2:72:34:aa: 90:b0:83:ed:06:32:05:50:c7:0a:26:2a:b3:13:2c:72:79:9c: a5:d5:11:ac:c0:28:3e:1e:95:74:9a:75:c0:f2:08:67:52:71: a2:4b:a9:0f:d9:16:69:2b:7f:59:9c:7b:e9:41:58:ec:44:fc: 84:8a:33:6f:67:8f:e7:1d:16:16:f6:73:46:e3:e8:59:ee:0a: 27:71:46:72:69:4c:71:15:73:76:b8:57:63:27:b9:df:41:e0: 62:da:49:78:0b:e6:63:e6:3c:da:92:17:9b:67:00:4e:2b:ad: 98:25:76:2e:b6:15:68:1d:68:ce:8c:b1:a2:c5:8f:8d:dc:ad: cd:3d:9f:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjYwMTI1MDUxMTU3WhcNMjYwMjAxMDUxMTU3WjAYMRYwFAYD VQQDDA02OTc1YTYxZC03MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9Vb5y5wQYircCVGs46GcGYOTl4Wzh6Y6xy7ZVWFrrJF53pbttsNHXbgwST0 WIMH2mTS1gZHSxmiQRy+5Mb0IMw8CRUQITQ+bhUb5BBaKWmVh93ovko5YmpUbOw1 urFZgjS7OfCS55O5oMoOAvrFl/c4SKa3YenzOGvRGiFJzS204DjG1RxkAs78G5lz GnjkS98VmayuixbhGaEvNQ0M2deQXGPUz+vB2HGrws6uyUBP4y/WxcaaBoEqD5Ko LGcL7SfcH3m1lgx/TKe99eZdPrW6t9r3G3hkvHVQs2eEf89rTJ7XdsCwq9v5ktCP dQ0XsuoEFRRZP3D/+jYbQG0uAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPE0tOwS H8OgGrjbtnKYKpNqVpGVMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTIkKoC3fUxMB1o0sLARY6Z0bTYa6yKDor4w/k7NypBp63WzWuajTA UEJByzZgmATqJKrNPqxDPvm2Zuh+CgIiQtu5nDD9e4h/mnrVSqz7TDanRIiV/ZU8 GqFWvKlSPTfxmEXXYnJ1rEzl8Oo8aAqRFM9DLB37cF6EeOJyNKqQsIPtBjIFUMcK JiqzEyxyeZyl1RGswCg+HpV0mnXA8ghnUnGiS6kP2RZpK39ZnHvpQVjsRPyEijNv Z4/nHRYW9nNG4+hZ7goncUZyaUxxFXN2uFdjJ7nfQeBi2kl4C+Zj5jzakhebZwBO K62YJXYuthVoHWjOjLGixY+N3K3NPZ/C -----END CERTIFICATE-----Generated at Sun Jan 25 12:08:56 2026 by rpki-client