This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: joFt1nL4ia1ktj8mXdruVx1mRAaIHNZ6vLA45TfzUgU= Subject key identifier: 12:D3:BD:9D:1B:1B:2B:0B:BD:9C:F6:F2:B8:FA:0A:5C:07:A5:BE:19 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: B2 Signing time: Sun 25 Jan 2026 05:17:16 +0000 Manifest this update: Sun 25 Jan 2026 05:17:16 +0000 Manifest next update: Sun 01 Feb 2026 05:17:16 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: Tq0Idj68id3/7H9Zz5p8ceVntbw1Ya6gqz2boBnk9u0=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: h+3/FTy9YZabaahMuXXEJUibUnlCC2pty0unDAr7ERA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Jan 25 05:17:16 2026 GMT Not After : Feb 1 05:17:16 2026 GMT Subject: CN=6975a75c-78f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d9:dc:8b:88:8c:f7:09:cc:50:74:b8:74:02: d0:18:72:0f:ed:14:06:ee:e9:58:d1:6d:e5:eb:39: 32:13:26:36:db:83:2b:17:2e:92:69:7a:aa:e9:5d: 2d:ab:22:f9:8e:88:9c:68:f2:cc:f9:fd:a6:70:2b: e6:8b:d5:c1:63:9a:9e:d5:8d:12:9f:dd:8a:b1:db: 09:4b:63:c8:5c:c2:17:a4:aa:68:fd:c2:5d:3f:9a: cc:fc:31:18:4e:46:92:e4:57:0b:6f:bb:2c:e2:af: 00:d6:7b:da:56:43:78:a5:7d:4f:c3:96:1e:2d:11: 33:92:02:1a:80:b0:49:92:8d:96:e5:4d:95:af:f7: 81:e7:a1:95:8f:ab:05:b2:c6:5a:55:aa:70:24:11: 3c:ff:39:88:f8:64:f9:e3:7d:d3:a8:6d:23:94:3b: 9e:10:c1:de:8b:0f:f1:2a:00:a3:68:2e:74:48:c3: 61:9a:fb:43:10:a4:e4:0c:05:1f:07:4b:12:0e:60: ad:13:3a:fc:b0:a3:39:f1:cc:1a:64:9a:90:ed:66: 4c:2d:dd:e5:ec:45:ef:1c:b9:7c:e1:9c:ee:58:ee: 06:07:a6:7a:22:a7:72:d6:52:66:ef:d8:ed:95:73: 46:f3:c3:af:ce:c7:54:34:69:5f:81:e3:c0:9b:e0: ec:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D3:BD:9D:1B:1B:2B:0B:BD:9C:F6:F2:B8:FA:0A:5C:07:A5:BE:19 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a7:74:4a:bf:84:b6:dd:9d:50:7b:fb:ad:d9:10:ac:7a:40: 1e:39:da:6a:ba:88:f9:ce:e6:c4:6c:6d:ef:16:59:12:db:7e: 8c:63:c4:60:1e:c7:43:87:64:42:41:f6:69:74:45:aa:89:9c: 99:97:47:c8:cb:cf:23:f3:56:47:48:f6:33:fa:62:c2:56:dd: a0:a7:ec:26:c6:28:88:9b:1b:e6:e5:07:5f:a6:13:1b:92:e2: df:b1:c5:98:e8:f6:66:0c:81:2c:5c:ae:07:00:08:7f:42:d4: 52:9b:c2:db:6e:05:cf:3b:a7:92:02:a9:42:6b:8c:89:bf:c8: c2:34:11:87:6e:6f:47:33:dc:3c:2e:da:0d:18:03:95:c4:8d: c0:06:10:4c:c6:b6:cb:f1:51:79:1d:0c:ea:53:16:05:a1:58: 8e:27:e8:77:48:fd:d1:bf:d4:77:86:f8:5b:96:b2:e7:cc:9b: b2:08:6d:f4:0e:c1:48:52:f5:5a:f0:3c:0c:f3:45:d9:91:c2: f0:de:1c:cb:73:ea:89:81:2d:5f:79:ff:19:16:94:1b:0f:6b: 7b:84:c8:ae:89:d4:d7:07:7a:06:01:66:8c:5e:27:56:21:54: b0:9f:18:51:e1:f8:60:e8:89:e6:1c:81:69:9d:14:33:33:63: bf:07:76:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjYwMTI1MDUxNzE2WhcNMjYwMjAxMDUxNzE2WjAYMRYwFAYD VQQDDA02OTc1YTc1Yy03OGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotnci4iM9wnMUHS4dALQGHIP7RQG7ulY0W3l6zkyEyY224MrFy6SaXqq6V0t qyL5joicaPLM+f2mcCvmi9XBY5qe1Y0Sn92KsdsJS2PIXMIXpKpo/cJdP5rM/DEY TkaS5FcLb7ss4q8A1nvaVkN4pX1Pw5YeLREzkgIagLBJko2W5U2Vr/eB56GVj6sF ssZaVapwJBE8/zmI+GT5433TqG0jlDueEMHeiw/xKgCjaC50SMNhmvtDEKTkDAUf B0sSDmCtEzr8sKM58cwaZJqQ7WZMLd3l7EXvHLl84ZzuWO4GB6Z6Iqdy1lJm79jt lXNG88OvzsdUNGlfgePAm+DszQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLTvZ0b GysLvZz28rj6ClwHpb4ZMB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLp3RKv4S23Z1Qe/ut2RCsekAeOdpquoj5zubEbG3vFlkS236MY8Rg HsdDh2RCQfZpdEWqiZyZl0fIy88j81ZHSPYz+mLCVt2gp+wmxiiImxvm5QdfphMb kuLfscWY6PZmDIEsXK4HAAh/QtRSm8LbbgXPO6eSAqlCa4yJv8jCNBGHbm9HM9w8 LtoNGAOVxI3ABhBMxrbL8VF5HQzqUxYFoViOJ+h3SP3Rv9R3hvhblrLnzJuyCG30 DsFIUvVa8DwM80XZkcLw3hzLc+qJgS1fef8ZFpQbD2t7hMiuidTXB3oGAWaMXidW IVSwnxhR4fhg6InmHIFpnRQzM2O/B3Zi -----END CERTIFICATE-----Generated at Sun Jan 25 12:19:42 2026 by rpki-client