This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: So0H0d6VUtjGrrx0EudBYa0LezsEJnUdKPXwwwwKIJQ= Subject key identifier: 70:7C:4F:64:2A:47:16:35:A2:AA:33:BA:F0:F6:C3:80:00:FB:90:26 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 024D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0240 Signing time: Sun 25 Jan 2026 01:16:36 +0000 Manifest this update: Sun 25 Jan 2026 01:16:36 +0000 Manifest next update: Sun 01 Feb 2026 01:16:36 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: YiCCLaN08N3Lf/Gvg5sQMWCBHpEMg27BUKKhZs2y9KY=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Jan 25 01:16:36 2026 GMT Not After : Feb 1 01:16:36 2026 GMT Subject: CN=69756ef4-6a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:11:50:df:99:69:2c:07:1c:3b:64:f8:5b: 6d:e3:cd:c2:e3:b3:b7:2b:c6:57:68:54:86:ed:15: af:e5:07:b3:dc:64:3f:85:60:2e:da:3d:f1:dd:cf: ef:00:62:00:96:37:0b:1f:27:5d:5a:c8:ab:0e:fe: ac:76:5d:d0:41:cd:b9:2d:b9:39:4f:5d:d8:ad:fc: 14:9c:81:a0:f5:6c:7d:8b:50:78:15:f6:63:51:ed: 1b:46:99:fe:64:d7:fd:aa:20:ee:1b:f1:ff:37:a4: 35:cd:94:48:ce:13:74:58:94:b9:06:20:a6:cf:b8: 36:67:de:41:b6:e3:8d:c9:fb:4c:d3:cd:26:91:da: 6a:d2:44:55:f8:93:60:d2:dd:5b:99:90:09:1a:f4: 68:ea:fd:6a:7e:ae:4e:e3:4e:f5:fb:c5:84:19:0d: 8f:9a:6a:46:68:2c:bb:60:f7:9d:31:05:a1:81:99: ce:65:dd:cb:15:09:40:ca:9b:f9:19:0c:e8:fd:13: 99:ad:94:de:d3:d9:05:0e:78:4d:a7:dd:a0:bb:c9: 99:db:21:e9:da:4c:bc:ac:bc:d3:47:8f:af:e7:76: 27:fe:b6:35:23:bd:d8:65:f6:aa:9d:6c:6d:7f:ea: f5:70:df:a0:00:f6:bb:c1:ec:be:8c:1b:12:0f:5c: a4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:7C:4F:64:2A:47:16:35:A2:AA:33:BA:F0:F6:C3:80:00:FB:90:26 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:b2:84:8c:5e:b6:85:2d:23:3e:96:a4:b3:7f:95:d8:33:b0: 33:d3:2f:6f:a3:4b:f1:60:30:e4:f5:df:34:07:cd:f8:4b:e1: 7f:5f:06:9f:c2:fc:31:7b:22:af:53:60:de:26:03:13:33:97: c4:04:40:0d:cf:eb:c6:5e:e7:4d:5f:44:95:97:29:a7:cd:ab: 2c:3a:84:60:19:07:2f:80:2d:e2:37:e6:47:aa:33:a9:96:d5: 2b:1b:73:1b:1f:d4:a8:3f:1b:b5:79:60:99:93:0c:e9:45:45: c8:e2:f0:9f:06:ec:15:5a:63:eb:a4:10:72:c2:88:d2:9e:2c: 54:c3:bc:a5:78:48:4f:65:7d:6f:55:23:8b:bd:ee:df:40:11: f4:e8:c4:03:8d:16:51:9d:61:0b:6f:63:c3:62:62:d2:35:df: b7:64:99:44:dc:4d:1f:0f:31:4a:04:f1:9d:48:e8:fc:76:15: d0:2a:83:3c:7c:05:d8:77:d2:81:b4:5a:49:d8:ea:51:e5:7c: 0d:71:ed:be:6b:78:6a:db:07:6e:3c:f8:09:57:24:63:c1:6e: 0f:04:0a:89:01:d7:76:71:57:63:b9:b1:6b:cc:8c:33:9c:ff: 73:dd:93:36:5b:bd:14:e5:91:39:94:f3:0b:b9:c5:08:81:6a: ff:d8:e6:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjYwMTI1MDExNjM2WhcNMjYwMjAxMDExNjM2WjAYMRYwFAYD VQQDDA02OTc1NmVmNC02YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+8RUN+ZaSwHHDtk+Ftt483C47O3K8ZXaFSG7RWv5Qez3GQ/hWAu2j3x3c/v AGIAljcLHyddWsirDv6sdl3QQc25Lbk5T13YrfwUnIGg9Wx9i1B4FfZjUe0bRpn+ ZNf9qiDuG/H/N6Q1zZRIzhN0WJS5BiCmz7g2Z95BtuONyftM080mkdpq0kRV+JNg 0t1bmZAJGvRo6v1qfq5O4071+8WEGQ2PmmpGaCy7YPedMQWhgZnOZd3LFQlAypv5 GQzo/ROZrZTe09kFDnhNp92gu8mZ2yHp2ky8rLzTR4+v53Yn/rY1I73YZfaqnWxt f+r1cN+gAPa7wey+jBsSD1ykpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHB8T2Qq RxY1oqozuvD2w4AA+5AmMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCsoSMXraFLSM+lqSzf5XYM7Az0y9vo0vxYDDk9d80B834S+F/Xwaf wvwxeyKvU2DeJgMTM5fEBEANz+vGXudNX0SVlymnzassOoRgGQcvgC3iN+ZHqjOp ltUrG3MbH9SoPxu1eWCZkwzpRUXI4vCfBuwVWmPrpBBywojSnixUw7yleEhPZX1v VSOLve7fQBH06MQDjRZRnWELb2PDYmLSNd+3ZJlE3E0fDzFKBPGdSOj8dhXQKoM8 fAXYd9KBtFpJ2OpR5XwNce2+a3hq2wduPPgJVyRjwW4PBAqJAdd2cVdjubFrzIwz nP9z3ZM2W70U5ZE5lPMLucUIgWr/2Oar -----END CERTIFICATE-----Generated at Sun Jan 25 10:49:13 2026 by rpki-client