This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft File: XTDuvxHkF41iO-G95Nu0y1nMhDc.mft (raw, json) Hash identifier: c5jiqV1sZ2IeoWudbWntivmBZ7JITGNeC9bhmydNFm4= Subject key identifier: 86:69:BA:E6:82:10:4E:6D:9F:09:14:84:52:67:B3:CE:7F:5E:21:A5 Authority key identifier: 5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 Certificate issuer: /CN=A91AB1C2/serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft Manifest number: 18 Signing time: Sun 25 Jan 2026 07:01:07 +0000 Manifest this update: Sun 25 Jan 2026 07:01:06 +0000 Manifest next update: Sun 01 Feb 2026 07:01:06 +0000 Files and hashes: 1: XTDuvxHkF41iO-G95Nu0y1nMhDc.crl (hash: AQR2hU1cZLHhqv9XG//T9PSA1Z3d8qa7TBFoUMzO3Mc=) 2: 24992E62E0FC11F0B50D6A7D5F6F56BC.roa (hash: xFgB7EH2QxxLlf3n0UJ+DMqo3db1de33t4nREaUSocw=) 3: 253978EAE0FC11F0B50D6A7D5F6F56BC.roa (hash: vY+eyQ8/qCQ8QT3QSBagytHOVQX4pPB3HnOj3X62RNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Validity Not Before: Jan 25 07:01:06 2026 GMT Not After : Feb 1 07:01:06 2026 GMT Subject: CN=6975bfb2-0302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0e:59:ca:63:73:fa:72:15:07:c6:75:6f:2e: 5c:eb:18:ee:6e:be:34:6b:70:0e:c9:95:6d:c0:19: c9:53:a1:a3:b9:d6:ab:dc:ec:a7:f8:6c:60:44:f3: 5a:4e:8f:82:fb:63:27:4a:89:12:e9:22:91:7c:50: 59:e5:6d:b3:b3:2d:2d:65:95:71:fa:af:a7:2e:79: 36:14:ce:d4:2f:ff:af:d6:26:21:28:3d:3b:80:9d: b8:ea:34:f4:ca:e9:3a:b1:ba:c8:c1:60:ac:20:96: 35:95:32:77:12:41:9a:e0:d3:0a:c2:84:8f:fd:fd: 9d:f8:30:0d:b7:e4:1f:5d:95:c9:49:2f:39:4a:58: 6d:5d:5d:d5:8d:60:ce:b5:94:81:22:c4:19:30:9c: 4f:7e:db:9c:c0:22:f7:d3:4f:73:94:f1:01:ff:12: 54:6d:14:32:dc:e1:00:b7:ca:0e:57:be:ea:3d:fc: db:ff:ec:85:bd:7e:b8:54:d4:bb:47:d5:f5:44:d7: 4a:fe:88:49:8f:d4:58:b8:cf:20:bc:3d:46:ff:79: 47:fa:42:68:02:6a:56:d8:a4:b3:9c:82:9f:5c:ff: b9:c5:99:b3:f1:40:a3:ff:f7:5d:ae:86:a0:eb:aa: 33:06:8e:b3:2f:c8:56:15:af:4e:4a:85:94:eb:10: 2f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:69:BA:E6:82:10:4E:6D:9F:09:14:84:52:67:B3:CE:7F:5E:21:A5 X509v3 Authority Key Identifier: keyid:5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:26:ae:79:e9:45:31:18:e0:1e:95:3a:ca:d0:6c:06:a8:c3: 0d:4c:4e:af:4d:52:3e:bc:6e:4b:be:93:25:71:e7:74:55:37: 41:e6:1f:b3:da:e2:8a:74:de:c4:1f:3d:29:ff:39:cc:b3:2e: a3:bb:d8:1f:a0:4d:57:74:a1:90:aa:2d:03:70:70:05:5d:82: 6b:8e:32:fc:56:2b:33:5a:ab:ee:26:4a:e1:7d:30:93:25:c0: d2:5f:7a:03:7f:5d:7f:6b:0f:0d:83:b2:6f:f7:56:eb:7b:d9: 2f:54:5a:72:31:ff:ed:df:9f:f6:b0:0e:a7:c6:44:74:10:60: 84:b0:a9:72:2d:de:90:0b:77:81:7a:c7:67:27:5f:f2:df:05: d1:2b:ed:89:db:ff:3e:06:cb:ad:30:fe:4c:a6:e0:01:f1:ef: cc:02:cb:b4:22:fd:51:ee:d9:04:94:37:3b:0c:af:97:b7:7e: 60:d4:fc:71:33:4d:09:3d:ad:cb:17:f6:2a:a7:bf:5c:66:04: 75:e6:e2:84:20:ac:40:61:5e:6f:c8:16:a7:77:9e:05:62:0e: bc:b3:2c:92:3a:d8:f2:9e:e1:0f:d9:7d:65:b4:23:77:be:6e: 5f:e0:96:6a:32:01:58:8e:5c:bf:d9:df:87:d1:a4:79:02:6e: cf:48:8e:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFB QjFDMjExMC8GA1UEBRMoNUQzMEVFQkYxMUU0MTc4RDYyM0JFMUJERTREQkI0Q0I1 OUNDODQzNzAeFw0yNjAxMjUwNzAxMDZaFw0yNjAyMDEwNzAxMDZaMBgxFjAUBgNV BAMMDTY5NzViZmIyLTAzMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHDlnKY3P6chUHxnVvLlzrGO5uvjRrcA7JlW3AGclToaO51qvc7Kf4bGBE81pO j4L7YydKiRLpIpF8UFnlbbOzLS1llXH6r6cueTYUztQv/6/WJiEoPTuAnbjqNPTK 6TqxusjBYKwgljWVMncSQZrg0wrChI/9/Z34MA235B9dlclJLzlKWG1dXdWNYM61 lIEixBkwnE9+25zAIvfTT3OU8QH/ElRtFDLc4QC3yg5Xvuo9/Nv/7IW9frhU1LtH 1fVE10r+iEmP1Fi4zyC8PUb/eUf6QmgCalbYpLOcgp9c/7nFmbPxQKP/912uhqDr qjMGjrMvyFYVr05KhZTrEC8JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhmm65oIQ Tm2fCRSEUmezzn9eIaUwHwYDVR0jBBgwFoAUXTDuvxHkF41iO+G95Nu0y1nMhDcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzBGOTEwNzU0RENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQxaU8tRzk1TnUweTFuTWhE Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFREdXZ4SGtGNDFpTy1HOTVOdTB5MW5NaERjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzBGOTEwNzU0RENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQx aU8tRzk1TnUweTFuTWhEYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHsmrnnpRTEY4B6VOsrQbAaoww1MTq9NUj68bku+kyVx53RVN0HmH7Pa 4op03sQfPSn/OcyzLqO72B+gTVd0oZCqLQNwcAVdgmuOMvxWKzNaq+4mSuF9MJMl wNJfegN/XX9rDw2Dsm/3Vut72S9UWnIx/+3fn/awDqfGRHQQYISwqXIt3pALd4F6 x2cnX/LfBdEr7Ynb/z4Gy60w/kym4AHx78wCy7Qi/VHu2QSUNzsMr5e3fmDU/HEz TQk9rcsX9iqnv1xmBHXm4oQgrEBhXm/IFqd3ngViDryzLJI62PKe4Q/ZfWW0I3e+ bl/glmoyAViOXL/Z34fRpHkCbs9Ijo4= -----END CERTIFICATE-----Generated at Sun Jan 25 09:40:13 2026 by rpki-client