This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: 9awsaGVF8fIIDyZPExHAII18H6FAjakeESGOLJxD4mI= Subject key identifier: 38:3F:B0:42:52:94:B4:03:E1:9A:76:DA:7A:13:5C:43:B9:9B:88:30 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 0230 Signing time: Sun 25 Jan 2026 01:17:22 +0000 Manifest this update: Sun 25 Jan 2026 01:17:21 +0000 Manifest next update: Sun 01 Feb 2026 01:17:21 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: MKt+45+6E4E3Olpba6ykUO6mffat3u6tV5wX5vKbsrw=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Jan 25 01:17:21 2026 GMT Not After : Feb 1 01:17:21 2026 GMT Subject: CN=69756f22-c2c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9f:40:cb:29:40:fd:83:5b:2e:33:2e:b2:5a: 02:45:a4:64:90:01:5a:00:2f:3c:f0:f8:a9:3d:21: 51:10:80:38:6b:7b:6a:eb:77:33:99:b4:e7:70:68: 5d:5a:8a:e5:67:e0:4d:b4:c2:b9:64:7c:a8:f3:e0: d7:c2:10:8f:de:ea:5c:b1:94:d0:f0:23:fa:11:c4: ca:36:f1:ef:4c:cb:8b:f3:f2:9a:7a:b4:8d:12:27: 4c:08:57:85:67:3c:0a:bb:81:77:13:51:12:ee:af: e4:06:fe:87:0d:d2:39:84:06:df:98:47:02:38:d5: d6:2c:6d:c9:19:33:cf:27:de:ab:ed:a0:4b:c9:d4: f7:36:08:ff:02:1c:77:8b:4e:2c:f7:0e:eb:f7:89: b0:91:68:04:f7:ba:9b:f2:e5:1b:f9:8f:7c:2c:d4: 7b:80:96:48:f0:e0:22:e7:2e:4e:bc:a1:f4:0f:3b: 1e:2d:63:82:55:17:28:42:9a:43:d2:ee:ab:32:02: b0:1d:10:8f:81:89:9b:7d:5d:6e:c7:06:c2:68:7a: fd:05:9c:72:80:50:e6:97:05:71:bf:db:55:d9:48: 76:8b:8d:e9:a1:7e:15:3f:cf:71:6c:85:04:3b:7e: e8:fe:a0:66:ff:4f:11:e8:74:2e:90:df:da:a0:a6: f4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3F:B0:42:52:94:B4:03:E1:9A:76:DA:7A:13:5C:43:B9:9B:88:30 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:37:92:90:f4:e4:b1:5c:ab:2a:1f:84:35:4b:ad:8d:04:b5: e4:7f:f3:c5:65:be:f0:aa:de:2e:59:5d:09:3b:d0:cc:b3:38: 78:fa:54:79:f9:1e:d1:69:ff:4c:e9:d0:fb:6b:e9:78:8e:8d: a5:e2:07:72:2c:10:ac:6b:1d:bb:84:e6:48:1d:52:62:49:9e: 98:ba:0a:0e:31:b4:6d:7a:99:bf:96:8b:b8:f8:62:28:d8:1c: 9e:12:fd:26:07:8f:b2:da:7d:bf:21:74:e8:47:a4:a9:9c:ae: b7:04:11:6e:b6:f3:0d:66:35:91:5e:82:4f:2d:fb:e8:a4:01: 8b:33:66:40:5e:9b:b8:10:99:cb:91:36:47:00:aa:7d:94:d1: 7a:81:77:2f:a8:ff:2e:50:ae:fc:21:0f:c6:f0:7f:27:0f:20: a5:f8:ae:d5:6a:88:87:8b:97:92:c0:97:84:ab:cf:4a:d8:73: b5:79:fa:4e:d3:a6:4e:df:e9:e2:62:3a:c4:ff:24:f4:2f:29: 4b:56:1f:31:0a:9a:02:ef:12:2a:f7:96:8b:31:24:3f:7d:39: 1f:c7:34:e5:74:b3:fa:86:f2:72:1f:7d:f4:23:dd:55:d5:6b: 9f:cf:65:0c:47:75:a5:43:20:5f:ae:58:43:88:6d:d3:0c:ce: 4d:07:ff:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjYwMTI1MDExNzIxWhcNMjYwMjAxMDExNzIxWjAYMRYwFAYD VQQDDA02OTc1NmYyMi1jMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ9AyylA/YNbLjMusloCRaRkkAFaAC888PipPSFREIA4a3tq63czmbTncGhd WorlZ+BNtMK5ZHyo8+DXwhCP3upcsZTQ8CP6EcTKNvHvTMuL8/KaerSNEidMCFeF ZzwKu4F3E1ES7q/kBv6HDdI5hAbfmEcCONXWLG3JGTPPJ96r7aBLydT3Ngj/Ahx3 i04s9w7r94mwkWgE97qb8uUb+Y98LNR7gJZI8OAi5y5OvKH0DzseLWOCVRcoQppD 0u6rMgKwHRCPgYmbfV1uxwbCaHr9BZxygFDmlwVxv9tV2Uh2i43poX4VP89xbIUE O37o/qBm/08R6HQukN/aoKb0DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg/sEJS lLQD4Zp22noTXEO5m4gwMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzN5KQ9OSxXKsqH4Q1S62NBLXkf/PFZb7wqt4uWV0JO9DMszh4+lR5 +R7Raf9M6dD7a+l4jo2l4gdyLBCsax27hOZIHVJiSZ6YugoOMbRtepm/lou4+GIo 2ByeEv0mB4+y2n2/IXToR6SpnK63BBFutvMNZjWRXoJPLfvopAGLM2ZAXpu4EJnL kTZHAKp9lNF6gXcvqP8uUK78IQ/G8H8nDyCl+K7VaoiHi5eSwJeEq89K2HO1efpO 06ZO3+niYjrE/yT0LylLVh8xCpoC7xIq95aLMSQ/fTkfxzTldLP6hvJyH330I91V 1Wufz2UMR3WlQyBfrlhDiG3TDM5NB/+p -----END CERTIFICATE-----Generated at Sun Jan 25 15:41:16 2026 by rpki-client