This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: 3b1eA0L9nabDvTlePaFfXAdJOYoD04NEor3J/JuF5bE= Subject key identifier: 04:42:C8:87:80:38:07:50:F4:99:DF:0E:1C:7F:4B:A7:C9:E4:74:3D Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 09F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 09E7 Signing time: Sat 24 Jan 2026 19:21:11 +0000 Manifest this update: Sat 24 Jan 2026 19:21:11 +0000 Manifest next update: Sat 31 Jan 2026 19:21:11 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: JHjF3lC7YJdlwmRImrt3rQ82TMNqu/+qAYa+/zXWN6s=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: Xd/9pByFb2cbZ9xoUnmDVjNmjmus87X0lFOERhfsZNI=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: N79J5/addSjvuTRJUjHpGEDoonJ5OZtfdl2v8Aonsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2551 (0x9f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Jan 24 19:21:11 2026 GMT Not After : Jan 31 19:21:11 2026 GMT Subject: CN=69751ba7-6e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:22:c1:21:b7:49:61:6a:a2:db:d8:05:9b:09: 54:a0:b5:7b:0f:11:2c:1f:16:21:5f:15:e7:b1:ae: fd:f8:8e:41:91:9f:14:57:eb:be:f5:52:fd:5f:80: 11:6b:db:47:03:f1:8e:f3:b6:22:c8:1a:95:42:5d: 23:cd:99:2d:7b:63:0f:dc:03:48:cb:05:72:eb:18: f0:58:9c:49:b0:77:4a:f6:04:42:06:c3:9c:39:45: a1:5d:50:5f:c7:fd:b4:b6:42:a2:e7:72:9c:8f:b4: c2:f9:91:06:cc:88:5b:da:97:fb:06:13:78:98:4a: e6:61:6b:a1:05:03:97:c4:6f:f5:61:02:a5:17:13: e9:41:3e:f1:6f:52:86:e5:53:06:37:18:a3:95:20: b5:f3:a4:53:b8:ef:2b:45:51:9e:b2:44:44:f4:75: 97:1b:e6:7d:25:d9:47:08:6b:43:61:02:c9:4e:61: f5:8b:98:c5:15:36:57:dc:21:be:15:1c:8f:74:68: 59:22:53:44:27:5a:81:5e:4f:62:13:9e:9e:1a:55: 1a:8f:e4:86:42:96:5e:e2:6b:5a:58:03:a4:62:50: fc:53:bd:9d:17:f9:c3:ed:d6:db:5a:55:49:9f:db: 43:66:50:9e:21:be:d6:4a:69:9f:e6:4b:6b:46:9c: 0b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:42:C8:87:80:38:07:50:F4:99:DF:0E:1C:7F:4B:A7:C9:E4:74:3D X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a2:8c:ae:bd:d0:12:88:f6:c4:7c:41:ce:e1:75:10:01:6b: 1d:5a:73:a6:e0:09:b6:32:39:1e:04:d4:24:51:d0:be:96:13: d4:c0:e9:c1:30:77:1d:2a:27:bd:c1:19:ad:c8:5b:15:d5:b4: 34:c0:15:b6:7a:5c:47:0c:d3:db:ee:27:16:f4:49:59:9f:e9: ce:7a:4e:1c:60:31:38:bc:55:c4:3f:3a:43:01:ad:75:86:ca: 69:bd:be:3e:77:2a:69:b7:db:91:89:b7:d0:da:20:f3:0d:9b: c4:78:4d:fd:e0:79:b4:5e:d9:78:0c:9e:8d:51:0e:1b:67:55: fc:2a:af:b2:f7:b3:5c:da:27:8d:58:98:44:4a:b5:0d:30:bf: 25:30:88:7c:cb:31:44:63:89:a8:6c:5c:8f:76:54:7f:2a:60: 36:55:bf:1c:b8:97:18:b1:69:c6:ae:ce:4f:69:93:82:1d:b5: b8:f5:c6:41:35:d3:29:e1:30:12:f3:66:49:36:8a:62:84:df: e9:ce:58:dd:22:77:99:35:0f:d0:b6:ec:38:04:04:42:86:e2: 47:0a:cc:14:eb:ef:98:bc:7b:25:9d:3a:16:a7:9d:c8:38:7a: c4:eb:a8:87:0b:36:de:6b:33:dd:fd:02:28:01:78:be:34:3b: 0c:e4:71:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjYwMTI0MTkyMTExWhcNMjYwMTMxMTkyMTExWjAYMRYwFAYD VQQDDA02OTc1MWJhNy02ZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyLBIbdJYWqi29gFmwlUoLV7DxEsHxYhXxXnsa79+I5BkZ8UV+u+9VL9X4AR a9tHA/GO87YiyBqVQl0jzZkte2MP3ANIywVy6xjwWJxJsHdK9gRCBsOcOUWhXVBf x/20tkKi53Kcj7TC+ZEGzIhb2pf7BhN4mErmYWuhBQOXxG/1YQKlFxPpQT7xb1KG 5VMGNxijlSC186RTuO8rRVGeskRE9HWXG+Z9JdlHCGtDYQLJTmH1i5jFFTZX3CG+ FRyPdGhZIlNEJ1qBXk9iE56eGlUaj+SGQpZe4mtaWAOkYlD8U72dF/nD7dbbWlVJ n9tDZlCeIb7WSmmf5ktrRpwLcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARCyIeA OAdQ9JnfDhx/S6fJ5HQ9MB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrooyuvdASiPbEfEHO4XUQAWsdWnOm4Am2MjkeBNQkUdC+lhPUwOnB MHcdKie9wRmtyFsV1bQ0wBW2elxHDNPb7icW9ElZn+nOek4cYDE4vFXEPzpDAa11 hsppvb4+dyppt9uRibfQ2iDzDZvEeE394Hm0Xtl4DJ6NUQ4bZ1X8Kq+y97Nc2ieN WJhESrUNML8lMIh8yzFEY4mobFyPdlR/KmA2Vb8cuJcYsWnGrs5PaZOCHbW49cZB NdMp4TAS82ZJNopihN/pzljdIneZNQ/Qtuw4BARChuJHCswU6++YvHslnToWp53I OHrE66iHCzbeazPd/QIoAXi+NDsM5HGo -----END CERTIFICATE-----Generated at Sun Jan 25 15:40:50 2026 by rpki-client