This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: sQ8C/DxO4pGS0UkHs6SI6x1A7O487hM45BXC9s+k9RA= Subject key identifier: 3A:CE:07:C8:52:EC:7D:D2:5F:F4:38:EE:59:A5:A2:BA:36:9B:70:9E Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 0824 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 0824 Signing time: Sat 24 Jan 2026 20:15:36 +0000 Manifest this update: Sat 24 Jan 2026 20:15:36 +0000 Manifest next update: Sat 31 Jan 2026 20:15:36 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: L/Cm+cKn5azd7e+gn9JRmZ4CXVy0Xk+Jyk+k8GFkfW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2084 (0x824) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Jan 24 20:15:36 2026 GMT Not After : Jan 31 20:15:36 2026 GMT Subject: CN=69752868-930d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:37:db:e0:64:bc:3f:92:f6:8b:eb:02:8c: 42:07:d1:0a:f7:ce:f8:52:e0:f1:19:80:21:8f:ef: c3:02:46:1c:3c:87:25:fb:75:a4:c9:73:13:7f:36: 78:77:b7:5a:c5:5c:ba:11:f3:c4:86:5e:b7:19:2e: ea:4d:8e:48:41:17:56:37:77:4a:97:ae:5d:7d:e0: e3:c1:7d:93:75:ae:d2:98:7a:41:11:93:05:93:fd: 68:f1:94:dc:9a:52:80:51:3b:98:71:09:42:72:2b: fb:53:e6:0d:8e:03:b7:0d:00:e7:79:16:15:fa:13: 50:b3:aa:43:19:97:37:65:ed:44:f3:b2:e6:3f:6f: c3:d5:6f:2a:5a:e3:cb:2b:ff:37:7f:8b:13:c3:3d: 59:02:c6:3c:eb:3d:aa:ff:bc:f2:f7:b7:66:ee:4f: 01:37:fa:86:ea:78:5a:77:0f:7d:68:29:22:76:06: 6e:cb:48:7b:68:48:7b:bb:9f:d9:ae:10:90:e9:2e: 03:e2:ba:3a:69:d9:f6:e6:94:98:1d:ca:bd:23:a7: a3:29:a0:d3:6f:a5:29:bf:51:20:cf:a0:06:28:b9: d0:00:0e:9a:ef:03:6f:71:82:0b:df:2c:aa:ca:d9: 18:7d:70:5b:91:58:8e:b3:32:45:73:c4:c8:e8:9c: 00:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CE:07:C8:52:EC:7D:D2:5F:F4:38:EE:59:A5:A2:BA:36:9B:70:9E X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:27:43:55:2b:af:00:5f:42:4a:df:59:47:e3:4e:5b:55:d6: f7:e0:f5:f6:05:a2:7f:aa:ee:26:d8:ec:08:79:12:46:d8:cd: af:b8:0d:6e:71:f1:5c:d2:e1:42:fd:a8:2e:f2:2c:7a:3b:4a: 49:24:7b:68:a3:93:c1:e0:94:24:cd:7a:dd:39:c7:87:79:40: 52:75:fc:98:86:00:1e:c7:8e:8c:aa:f6:08:af:ae:e5:55:bd: 96:dc:55:a7:40:f2:a5:cc:f8:e4:ef:ff:df:ea:c7:8d:a7:fa: 10:38:b1:f0:ca:d6:1d:23:07:67:19:ae:79:14:5f:4c:d3:b5: a6:41:0d:6c:04:73:d0:8f:d9:d7:6c:f3:25:af:c7:3a:e9:da: a8:4d:b1:54:d8:44:b9:30:80:7c:db:8d:94:2d:96:c4:e9:ed: 84:86:93:cd:23:76:59:c1:04:6a:7c:7c:5c:42:52:f4:c1:9a: f8:bd:51:e7:4a:88:68:63:af:5f:59:18:a6:89:d2:15:74:42: e9:1b:f3:94:8f:00:e0:21:dd:9d:f9:2b:ad:b1:e5:54:ab:7d: 01:03:3d:2e:b1:9d:d1:fa:64:6b:82:92:24:9e:38:49:fd:cd: 2f:b3:ad:e9:98:09:35:82:33:6e:e0:ee:45:64:f7:c6:5c:10: b8:d8:6e:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjYwMTI0MjAxNTM2WhcNMjYwMTMxMjAxNTM2WjAYMRYwFAYD VQQDDA02OTc1Mjg2OC05MzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt832+BkvD+S9ovrAoxCB9EK9874UuDxGYAhj+/DAkYcPIcl+3WkyXMTfzZ4 d7daxVy6EfPEhl63GS7qTY5IQRdWN3dKl65dfeDjwX2Tda7SmHpBEZMFk/1o8ZTc mlKAUTuYcQlCciv7U+YNjgO3DQDneRYV+hNQs6pDGZc3Ze1E87LmP2/D1W8qWuPL K/83f4sTwz1ZAsY86z2q/7zy97dm7k8BN/qG6nhadw99aCkidgZuy0h7aEh7u5/Z rhCQ6S4D4ro6adn25pSYHcq9I6ejKaDTb6Upv1Egz6AGKLnQAA6a7wNvcYIL3yyq ytkYfXBbkViOszJFc8TI6JwANwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrOB8hS 7H3SX/Q47lmloro2m3CeMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiJ0NVK68AX0JK31lH405bVdb34PX2BaJ/qu4m2OwIeRJG2M2vuA1u cfFc0uFC/agu8ix6O0pJJHtoo5PB4JQkzXrdOceHeUBSdfyYhgAex46MqvYIr67l Vb2W3FWnQPKlzPjk7//f6seNp/oQOLHwytYdIwdnGa55FF9M07WmQQ1sBHPQj9nX bPMlr8c66dqoTbFU2ES5MIB8242ULZbE6e2EhpPNI3ZZwQRqfHxcQlL0wZr4vVHn SohoY69fWRimidIVdELpG/OUjwDgId2d+SutseVUq30BAz0usZ3R+mRrgpIknjhJ /c0vs63pmAk1gjNu4O5FZPfGXBC42G6T -----END CERTIFICATE-----Generated at Sun Jan 25 02:50:26 2026 by rpki-client