This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: BhRFCf40WwEh4t/XeA5ierCLTrCd5fVmk9pF2NDMqvw= Subject key identifier: AF:7B:E7:F0:3A:02:F5:1E:29:AA:B7:62:2F:D0:6F:AF:FA:ED:3A:62 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 068C Signing time: Sat 24 Jan 2026 21:46:42 +0000 Manifest this update: Sat 24 Jan 2026 21:46:42 +0000 Manifest next update: Sat 31 Jan 2026 21:46:42 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: li+dixZNwcLOgsHmSgOJAWGG7TbnRygDBhW5J4rjVZ0=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Jan 24 21:46:42 2026 GMT Not After : Jan 31 21:46:42 2026 GMT Subject: CN=69753dc2-32a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:95:34:e2:dc:d0:30:62:f3:00:51:ab:de:7d: 10:8f:56:3a:10:4a:a9:30:b7:9e:d4:b2:4e:e5:f6: 6d:cf:9c:fa:94:6a:51:1c:c1:f8:c8:5c:ac:4d:35: b4:d4:4e:12:e1:43:ee:7e:c9:36:80:23:00:e2:27: ac:6f:17:50:3d:64:a7:5a:f0:18:ac:62:f9:ad:be: 63:c7:49:ae:af:ac:49:5d:82:82:d3:58:5b:41:37: 70:7c:4b:78:03:a8:34:9b:d0:fb:c6:43:29:36:7c: 1f:8e:25:fb:f6:00:95:ee:37:a2:ad:73:14:5d:71: c3:93:49:04:86:7e:8d:b0:9c:9b:e6:34:a9:fe:1d: e4:57:5b:3f:a2:bc:21:d1:7e:54:0c:83:a6:be:24: 1a:69:f0:a7:92:ab:f7:d8:b2:2f:83:47:5b:71:39: 82:56:75:bf:0a:bb:0f:f4:46:4e:58:79:b0:5a:b7: 37:85:cd:67:2c:e4:9f:18:f8:0e:85:f2:50:cb:8c: 67:25:c5:36:ec:40:1b:c8:e0:70:ec:54:0f:26:ae: 95:58:5e:06:36:d9:18:e1:7f:f1:82:4f:7f:72:e0: 74:c3:fd:74:3e:72:6e:f0:28:22:f7:2d:9b:82:a6: bf:1b:39:4b:4b:78:f3:9a:02:89:91:4d:00:2f:0c: 07:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7B:E7:F0:3A:02:F5:1E:29:AA:B7:62:2F:D0:6F:AF:FA:ED:3A:62 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:e7:6d:b7:c0:16:e5:30:cd:d9:79:1f:4d:65:d1:61:99:c6: 1c:86:96:46:1f:b4:f4:9f:d8:a6:70:25:82:d6:ae:7f:47:df: db:1c:01:a6:d6:e0:1d:bc:99:ae:56:c2:87:2f:3f:79:1d:9b: 83:de:19:42:1c:0f:11:77:68:4a:06:4c:c7:83:7c:e8:91:43: 12:fb:09:89:42:6c:ee:3f:08:a5:e3:12:a0:25:30:be:a3:bf: 65:3b:e9:40:0f:1e:b4:9e:0e:65:1a:bb:80:b2:fa:eb:f1:57: 30:11:d4:17:7d:52:9b:8d:72:d6:d0:02:b2:1a:21:9a:49:73: fe:c9:82:97:50:3c:89:86:0c:ac:c6:a6:c7:3b:6f:1f:09:30: 5c:49:d2:14:1d:87:e3:0c:ad:2b:f7:ab:d4:dd:e8:8d:c8:d7: bb:c6:8b:69:e4:22:80:85:fc:1a:c8:27:43:05:ab:e2:46:69: db:ad:d3:4a:c6:b8:3a:5f:fc:9c:a7:11:25:bb:87:3d:64:7b: ff:38:18:c1:b8:ae:3e:b6:d2:19:17:c4:fd:4e:ee:f1:f4:df: cb:d3:4b:43:ae:70:dc:b5:bb:29:e7:f7:ac:20:b6:72:04:aa: 16:b7:47:0f:25:9d:23:c4:e6:6d:04:69:bd:fb:0c:15:8b:35: da:fa:ce:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjYwMTI0MjE0NjQyWhcNMjYwMTMxMjE0NjQyWjAYMRYwFAYD VQQDDA02OTc1M2RjMi0zMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJU04tzQMGLzAFGr3n0Qj1Y6EEqpMLee1LJO5fZtz5z6lGpRHMH4yFysTTW0 1E4S4UPufsk2gCMA4iesbxdQPWSnWvAYrGL5rb5jx0mur6xJXYKC01hbQTdwfEt4 A6g0m9D7xkMpNnwfjiX79gCV7jeirXMUXXHDk0kEhn6NsJyb5jSp/h3kV1s/orwh 0X5UDIOmviQaafCnkqv32LIvg0dbcTmCVnW/CrsP9EZOWHmwWrc3hc1nLOSfGPgO hfJQy4xnJcU27EAbyOBw7FQPJq6VWF4GNtkY4X/xgk9/cuB0w/10PnJu8Cgi9y2b gqa/GzlLS3jzmgKJkU0ALwwHIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK975/A6 AvUeKaq3Yi/Qb6/67TpiMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk5223wBblMM3ZeR9NZdFhmcYchpZGH7T0n9imcCWC1q5/R9/bHAGm 1uAdvJmuVsKHLz95HZuD3hlCHA8Rd2hKBkzHg3zokUMS+wmJQmzuPwil4xKgJTC+ o79lO+lADx60ng5lGruAsvrr8VcwEdQXfVKbjXLW0AKyGiGaSXP+yYKXUDyJhgys xqbHO28fCTBcSdIUHYfjDK0r96vU3eiNyNe7xotp5CKAhfwayCdDBaviRmnbrdNK xrg6X/ycpxElu4c9ZHv/OBjBuK4+ttIZF8T9Tu7x9N/L00tDrnDctbsp5/esILZy BKoWt0cPJZ0jxOZtBGm9+wwVizXa+s7A -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:41 2026 by rpki-client