This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: k7fOUrIghVjR80HP/Bc2Lhkeo+Jg4OysQrZHGd2oHIE= Subject key identifier: EB:10:4B:BD:C2:3C:A8:4C:BF:65:71:58:16:D4:C2:A6:2B:F7:A3:FE Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0C3C Signing time: Sat 24 Jan 2026 18:16:33 +0000 Manifest this update: Sat 24 Jan 2026 18:16:33 +0000 Manifest next update: Sat 31 Jan 2026 18:16:33 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: V951AB1MXnKEiFXvZaQ49BcMGm5bZ8PVWpCixdsvvkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Jan 24 18:16:33 2026 GMT Not After : Jan 31 18:16:33 2026 GMT Subject: CN=69750c81-897f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cd:34:ad:05:bc:1f:95:84:a2:14:5d:20:a5: 40:4c:f4:4d:9d:c0:f2:2a:6e:f0:54:5d:ce:f1:43: d2:01:f0:ab:9a:dd:c2:73:72:ed:7f:ed:8e:ac:09: e7:74:f7:88:2b:ce:b0:3f:f7:92:b2:d8:c0:01:7e: 69:ee:59:37:27:08:e5:ac:ae:ab:ce:9e:ca:1f:c1: 81:9b:f9:c2:5c:36:68:aa:c5:54:3b:60:bf:7d:ad: 07:a1:b4:a6:1c:35:08:17:2c:3b:73:ea:7b:43:89: d2:e6:d7:ba:38:8e:da:77:1e:96:71:cd:5f:2f:b9: 7c:7e:7d:ce:fc:4f:ac:3b:f1:8b:c3:0f:28:62:93: 3b:ff:dc:e7:20:58:20:8e:c4:7f:2d:9e:d0:6b:2e: d8:36:77:52:71:45:68:7c:58:db:91:24:a6:f5:7e: 20:2d:54:a1:58:e9:27:c8:38:e7:e9:bd:39:93:ac: f8:29:8f:ee:1c:97:a8:4e:d0:78:7f:07:13:57:ee: 08:4d:e4:3a:c7:68:e4:4c:42:c2:e2:8c:6b:f7:ef: 95:ea:60:b2:6d:7d:37:95:81:0c:d9:39:8f:9a:7e: b6:ec:bb:00:be:88:e8:df:5a:0f:3c:b8:fb:ce:3b: 14:5f:e5:07:05:6d:97:e0:0e:27:56:9c:40:6d:1e: 57:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:10:4B:BD:C2:3C:A8:4C:BF:65:71:58:16:D4:C2:A6:2B:F7:A3:FE X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:2c:cc:77:3f:16:c7:1f:0c:f8:b5:69:84:49:90:27:3e:7d: 72:90:70:52:82:9d:0f:a1:e0:b5:0a:a9:dc:61:ce:76:9c:5b: d2:07:7a:bd:44:2e:4e:01:bc:b7:ea:1d:50:f0:53:c1:8e:b0: d4:27:3d:7f:0e:97:72:17:15:e4:ec:58:a0:30:bb:1a:ae:7d: aa:b6:79:9d:28:9f:df:23:d6:23:b9:47:ec:9a:7e:19:6a:3f: 9d:44:6e:57:99:03:df:02:09:2b:99:97:41:da:e0:41:2c:ad: 4d:7a:cc:8a:c7:aa:27:da:bf:09:aa:dd:24:df:bc:5f:06:81: ab:03:2b:dd:a1:74:9c:a9:f4:16:7c:4e:9c:54:9d:46:15:df: c2:2b:64:12:07:38:9a:86:32:15:10:b1:e8:14:dd:ee:a7:0d: 98:34:27:b4:34:5e:8d:17:4c:1d:6a:59:55:e1:b0:12:a7:90: db:e8:ee:ee:d9:d2:8a:41:85:3c:86:84:05:56:08:3e:0d:c9: 11:59:eb:10:96:68:c0:9c:ff:eb:a0:7b:27:46:eb:a5:c3:3b: b2:4e:75:31:51:e8:48:ba:90:a4:fd:a5:10:80:f1:e0:30:a0: 55:96:53:c5:91:88:f7:10:07:ee:c2:6a:c8:c9:0b:d9:59:4b: a2:69:8a:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjYwMTI0MTgxNjMzWhcNMjYwMTMxMTgxNjMzWjAYMRYwFAYD VQQDDA02OTc1MGM4MS04OTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnc00rQW8H5WEohRdIKVATPRNncDyKm7wVF3O8UPSAfCrmt3Cc3Ltf+2OrAnn dPeIK86wP/eSstjAAX5p7lk3JwjlrK6rzp7KH8GBm/nCXDZoqsVUO2C/fa0HobSm HDUIFyw7c+p7Q4nS5te6OI7adx6Wcc1fL7l8fn3O/E+sO/GLww8oYpM7/9znIFgg jsR/LZ7Qay7YNndScUVofFjbkSSm9X4gLVShWOknyDjn6b05k6z4KY/uHJeoTtB4 fwcTV+4ITeQ6x2jkTELC4oxr9++V6mCybX03lYEM2TmPmn627LsAvojo31oPPLj7 zjsUX+UHBW2X4A4nVpxAbR5XOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsQS73C PKhMv2VxWBbUwqYr96P+MB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmLMx3PxbHHwz4tWmESZAnPn1ykHBSgp0PoeC1CqncYc52nFvSB3q9 RC5OAby36h1Q8FPBjrDUJz1/DpdyFxXk7FigMLsarn2qtnmdKJ/fI9YjuUfsmn4Z aj+dRG5XmQPfAgkrmZdB2uBBLK1NesyKx6on2r8Jqt0k37xfBoGrAyvdoXScqfQW fE6cVJ1GFd/CK2QSBziahjIVELHoFN3upw2YNCe0NF6NF0wdallV4bASp5Db6O7u 2dKKQYU8hoQFVgg+DckRWesQlmjAnP/roHsnRuulwzuyTnUxUehIupCk/aUQgPHg MKBVllPFkYj3EAfuwmrIyQvZWUuiaYro -----END CERTIFICATE-----Generated at Sun Jan 25 10:48:25 2026 by rpki-client