This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: k0YyKCZRasu0oFBGfBp2cGS93n0gV8mJMuckeFZA8Ss= Subject key identifier: 5B:8B:6D:41:8E:E3:29:67:34:B6:BD:DE:22:0A:80:F5:01:E6:C6:55 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 350B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 3505 Signing time: Sat 24 Jan 2026 14:52:58 +0000 Manifest this update: Sat 24 Jan 2026 14:52:58 +0000 Manifest next update: Sat 31 Jan 2026 14:52:58 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: +6t/idz1K4yGbJkkQyUA/lJoKFkrxvfb5rmCf8ZILH8=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13579 (0x350b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Jan 24 14:52:58 2026 GMT Not After : Jan 31 14:52:58 2026 GMT Subject: CN=6974dcca-9d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:16:f6:50:82:71:93:ef:e6:10:81:3c:05:57: 59:41:1c:46:dc:d7:91:2c:8d:0a:b5:6d:ce:34:24: ed:af:3c:db:e5:e3:a6:54:f5:39:8b:23:96:01:c3: 64:1c:ef:34:b7:97:0b:9f:b9:98:d4:e4:f6:fb:c8: 97:34:f6:34:a7:d5:f8:f7:fd:3c:6e:29:23:da:ba: b4:2b:87:d0:a3:85:d0:10:3c:4e:4c:c5:a9:bf:66: a6:0a:d0:01:b1:71:55:f6:04:92:32:21:7b:e4:11: fc:e4:7f:9d:85:ce:92:2d:3a:d8:94:2a:e1:49:b7: db:6a:de:09:1a:92:18:40:87:a3:34:c7:a8:e3:c2: 62:e4:ab:01:bb:3b:bf:21:b4:94:bb:d2:b9:c7:ba: f8:96:86:85:23:77:af:99:55:e7:01:cb:b6:0b:cf: 06:c9:db:7c:c7:7c:a5:84:03:07:3b:1e:ca:e9:a4: 7d:2e:68:bb:d3:ab:20:a8:11:f4:88:73:b5:52:07: ae:c5:68:d9:0e:ec:d5:f2:35:29:43:59:4c:52:a7: 55:fc:5c:2f:b6:b0:1b:06:0f:96:e3:b1:6b:b7:db: 40:16:23:c4:58:bb:54:8f:20:48:c7:d8:ab:94:07: 6f:4f:d8:fa:e5:03:62:4e:75:6d:df:be:bb:ab:cc: 47:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8B:6D:41:8E:E3:29:67:34:B6:BD:DE:22:0A:80:F5:01:E6:C6:55 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:8e:4c:99:1c:ad:dd:55:0e:d5:d9:99:5c:5b:2b:93:aa:b8: 95:c4:81:cd:74:76:32:8b:51:f5:2c:0e:37:08:73:82:4a:7e: e5:ef:c5:bc:38:83:b6:fc:1b:4d:5d:b3:8a:43:8b:56:89:06: c5:54:e6:f2:22:52:e7:23:40:aa:1a:ef:a7:07:5d:e9:c1:3b: 1d:33:0c:fe:0d:15:cb:9c:d0:82:d2:8d:24:67:16:fe:26:a3: 3d:be:b4:eb:32:3e:00:33:3f:9e:f0:11:30:c4:bb:45:22:04: a6:ae:0f:fe:f1:13:e2:8d:40:4d:51:40:77:a4:bd:a4:e9:33: 8d:a3:c9:01:2c:b8:c8:48:75:a1:6d:38:04:65:42:31:32:95: c8:ad:5c:65:7a:24:9d:b8:58:d7:c0:b6:e5:ab:41:87:34:74: 19:20:6c:60:b9:a6:0e:68:9b:5d:14:08:56:3c:b3:b4:de:db: 81:20:54:b9:80:26:8d:e3:dd:67:64:92:fc:0d:a0:fd:81:37: 1b:c1:2c:de:78:67:47:84:9a:65:f6:87:06:9f:8a:99:9c:93: b7:4b:14:7b:f7:8a:13:67:60:ad:0a:85:39:5e:7f:4d:5e:ae: 63:9a:be:ec:a3:60:b4:50:5c:ee:5f:a3:ea:aa:c6:1e:c8:a2: 8f:eb:6b:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjYwMTI0MTQ1MjU4WhcNMjYwMTMxMTQ1MjU4WjAYMRYwFAYD VQQDDA02OTc0ZGNjYS05ZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBb2UIJxk+/mEIE8BVdZQRxG3NeRLI0KtW3ONCTtrzzb5eOmVPU5iyOWAcNk HO80t5cLn7mY1OT2+8iXNPY0p9X49/08bikj2rq0K4fQo4XQEDxOTMWpv2amCtAB sXFV9gSSMiF75BH85H+dhc6SLTrYlCrhSbfbat4JGpIYQIejNMeo48Ji5KsBuzu/ IbSUu9K5x7r4loaFI3evmVXnAcu2C88Gydt8x3ylhAMHOx7K6aR9Lmi706sgqBH0 iHO1UgeuxWjZDuzV8jUpQ1lMUqdV/FwvtrAbBg+W47Frt9tAFiPEWLtUjyBIx9ir lAdvT9j65QNiTnVt3767q8xHLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuLbUGO 4ylnNLa93iIKgPUB5sZVMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPjkyZHK3dVQ7V2ZlcWyuTqriVxIHNdHYyi1H1LA43CHOCSn7l78W8 OIO2/BtNXbOKQ4tWiQbFVObyIlLnI0CqGu+nB13pwTsdMwz+DRXLnNCC0o0kZxb+ JqM9vrTrMj4AMz+e8BEwxLtFIgSmrg/+8RPijUBNUUB3pL2k6TONo8kBLLjISHWh bTgEZUIxMpXIrVxleiSduFjXwLblq0GHNHQZIGxguaYOaJtdFAhWPLO03tuBIFS5 gCaN491nZJL8DaD9gTcbwSzeeGdHhJpl9ocGn4qZnJO3SxR794oTZ2CtCoU5Xn9N Xq5jmr7so2C0UFzuX6PqqsYeyKKP62tx -----END CERTIFICATE-----Generated at Sun Jan 25 12:20:53 2026 by rpki-client