This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft File: cJdlx9TTMfTDasa-NH-mah8CNJA.mft (raw, json) Hash identifier: i1cm/GN3o4rEHF4HlgffafYwfv2pajESf5LCmpSCXig= Subject key identifier: A9:E7:2E:2A:1D:F2:5E:88:E6:59:6E:2E:43:44:0E:63:25:D5:F7:ED Authority key identifier: 70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 Certificate issuer: /CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Certificate serial: 3564 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft Manifest number: 352F Signing time: Sat 24 Jan 2026 14:17:57 +0000 Manifest this update: Sat 24 Jan 2026 14:17:56 +0000 Manifest next update: Sat 31 Jan 2026 14:17:56 +0000 Files and hashes: 1: cJdlx9TTMfTDasa-NH-mah8CNJA.crl (hash: AmCbRq2j2IufnWxSz274yphVPgX6unzTx0LrjpS3S/U=) 2: 09E2DC32B12B11E59337F35AC4F9AE02.roa (hash: ZsKZ4KjphdPT0jn69q25ishvkQ6ZWEITVVyaEZP50Kk=) 3: 392987D254F611E79DF7E643C4F9AE02.roa (hash: Zj1VjgjescNA34ntuLagaf4Gpvf1qUoGCJyDKrDQ9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13668 (0x3564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Validity Not Before: Jan 24 14:17:56 2026 GMT Not After : Jan 31 14:17:56 2026 GMT Subject: CN=6974d495-ae7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:40:70:47:c1:4b:f0:b9:af:36:5e:ed:45:b4: 9d:4c:51:b7:87:fb:9c:01:e8:81:7c:c0:2f:c8:83: 5b:d8:28:2e:45:58:64:8c:23:c7:cd:a7:7e:ec:a7: f5:35:1a:67:5e:c6:c0:99:19:23:1e:05:bc:1b:9d: d6:69:2e:14:18:94:7e:d4:18:08:30:dd:ca:1f:71: 39:86:19:9c:6a:db:4b:ef:5d:5e:46:0a:3a:c0:ff: b0:85:a3:c4:7e:ed:53:88:90:8a:ef:ec:d1:24:49: 01:1a:e7:77:38:de:58:23:79:42:79:79:e7:08:e2: b9:7d:94:2c:7f:fd:a8:c2:88:e5:10:39:eb:3a:f9: 7c:54:b6:f9:66:a8:07:d8:75:cd:1b:48:74:6d:67: 8b:7a:da:3a:fe:af:64:68:04:10:d4:85:9b:67:ea: 26:26:72:35:40:24:82:1e:3c:b5:9f:49:86:e2:46: 3e:d1:25:81:3f:d0:19:de:33:e5:0c:c7:65:88:d6: c7:16:a7:d2:ff:ee:f1:83:c2:09:fa:41:0e:7e:6e: 84:34:55:53:7a:e5:25:48:b1:01:1b:e2:19:0b:a3: 9a:49:bb:f1:c6:ef:c8:d7:78:c1:a6:a1:6a:bc:f4: 98:ff:78:03:5d:8d:f1:dd:c5:66:99:93:3e:7f:1e: 03:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E7:2E:2A:1D:F2:5E:88:E6:59:6E:2E:43:44:0E:63:25:D5:F7:ED X509v3 Authority Key Identifier: keyid:70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8a:1c:38:d3:3d:04:ce:92:b9:7b:1e:0f:85:63:54:51:97: 51:13:29:b4:ee:59:74:0e:ce:09:03:d6:e7:3d:88:c0:d7:7f: 1b:29:2c:9a:23:a6:72:39:9d:b6:33:09:04:d0:1d:b4:56:48: 62:b2:ea:06:e3:41:0d:a1:ea:92:71:64:c0:3d:33:27:95:35: 62:b7:ad:17:51:d9:06:33:55:5a:df:f1:e7:61:dc:5e:3a:6b: 5a:17:d8:be:7a:f8:c7:8f:c5:43:8e:6d:0d:6d:da:3e:ac:37: ac:a5:2d:a0:db:0c:97:01:89:9d:4e:0c:67:4c:1b:ca:4a:8f: 3c:f9:b6:ba:50:2e:ba:63:d3:5f:c3:7b:98:e3:b5:04:c5:26: 39:02:30:70:ae:e8:59:72:cc:c6:3f:12:b3:27:ac:41:d5:dd: 8c:a2:35:d6:88:3e:60:ed:09:e4:84:60:5c:85:fe:39:e8:59: 50:a0:90:70:b9:cf:e8:a0:76:84:46:f1:23:b1:21:77:ff:8c: 0b:ab:43:03:29:f7:ac:d9:66:59:dd:97:a2:d1:57:6d:d8:bf: 8f:a3:08:ed:0b:8a:a3:d6:79:1b:ae:83:3d:47:9b:0f:29:08: 57:31:69:f8:72:33:4e:e6:87:26:ca:71:02:8e:49:69:1c:5a: 3f:b5:07:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDcwOTc2NUM3RDREMzMxRjRDMzZBQzZCRTM0N0ZBNjZB MUYwMjM0OTAwHhcNMjYwMTI0MTQxNzU2WhcNMjYwMTMxMTQxNzU2WjAYMRYwFAYD VQQDDA02OTc0ZDQ5NS1hZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUBwR8FL8LmvNl7tRbSdTFG3h/ucAeiBfMAvyINb2CguRVhkjCPHzad+7Kf1 NRpnXsbAmRkjHgW8G53WaS4UGJR+1BgIMN3KH3E5hhmcattL711eRgo6wP+whaPE fu1TiJCK7+zRJEkBGud3ON5YI3lCeXnnCOK5fZQsf/2owojlEDnrOvl8VLb5ZqgH 2HXNG0h0bWeLeto6/q9kaAQQ1IWbZ+omJnI1QCSCHjy1n0mG4kY+0SWBP9AZ3jPl DMdliNbHFqfS/+7xg8IJ+kEOfm6ENFVTeuUlSLEBG+IZC6OaSbvxxu/I13jBpqFq vPSY/3gDXY3x3cVmmZM+fx4DmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnnLiod 8l6I5lluLkNEDmMl1fftMB8GA1UdIwQYMBaAFHCXZcfU0zH0w2rGvjR/pmofAjSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8wQkVEMzUyNjFE NkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1mVERhc2EtTkgtbWFoOENO SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKZGx4OVRUTWZURGFzYS1OSC1tYWg4Q05KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8wQkVEMzUyNjFENkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1m VERhc2EtTkgtbWFoOENOSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXihw40z0EzpK5ex4PhWNUUZdREym07ll0Ds4JA9bnPYjA138bKSya I6ZyOZ22MwkE0B20VkhisuoG40ENoeqScWTAPTMnlTVit60XUdkGM1Va3/HnYdxe OmtaF9i+evjHj8VDjm0Nbdo+rDespS2g2wyXAYmdTgxnTBvKSo88+ba6UC66Y9Nf w3uY47UExSY5AjBwruhZcszGPxKzJ6xB1d2MojXWiD5g7QnkhGBchf456FlQoJBw uc/ooHaERvEjsSF3/4wLq0MDKfes2WZZ3Zei0Vdt2L+PowjtC4qj1nkbroM9R5sP KQhXMWn4cjNO5ocmynECjklpHFo/tQeR -----END CERTIFICATE-----Generated at Sun Jan 25 08:03:51 2026 by rpki-client