This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: pZWzua9MpvzRalYyt/++0Vb+ypvSQBL9A1WB7mhNyK8= Subject key identifier: 82:08:8B:24:F7:B1:6E:28:AA:08:EF:DB:CC:9F:F5:37:2D:CB:2E:7F Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: 01FC Signing time: Sun 25 Jan 2026 01:49:24 +0000 Manifest this update: Sun 25 Jan 2026 01:49:24 +0000 Manifest next update: Sun 01 Feb 2026 01:49:24 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: TpDPioqqNWzCzig0YgU598fdqYy4oit2rdsBdF9rgZI=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: bZ3DvcSU67WmMaGW0gpbOJ7oihqEunDO2oztcjKXnww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C, serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: Jan 25 01:49:24 2026 GMT Not After : Feb 1 01:49:24 2026 GMT Subject: CN=697576a4-2a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8f:7b:ec:a9:2e:94:ab:d4:3c:cb:2a:df:1f: ad:d5:2d:c4:3a:ee:32:56:4d:50:43:8c:39:70:b5: 0c:fc:51:8d:a3:9d:bc:60:7e:a7:ca:7c:d3:d6:2a: 02:23:e2:b6:7e:9a:5b:3d:02:2c:94:b6:e5:3d:c1: d2:7e:a0:06:f3:2e:ee:45:57:26:a0:9a:a7:10:95: 4f:49:57:09:da:41:ed:7b:11:aa:9a:e7:e0:f5:71: a3:66:67:9a:c2:ec:01:9a:2c:60:f6:4c:b1:42:ad: fe:b1:2c:e3:57:09:93:90:c6:5f:9e:e2:92:5a:1c: 3a:9b:a9:f9:35:f9:b5:32:c6:cc:61:8b:20:32:5e: 95:58:36:17:24:b0:7a:38:2c:79:e3:1c:52:6a:8b: 4c:e5:83:13:b1:9b:01:32:bd:85:68:3e:92:1d:0c: 6a:df:cd:12:b9:4a:c7:cd:23:35:3a:bf:9a:c8:91: a3:e1:2d:ee:6c:13:d8:ba:cb:53:fb:d5:47:d5:dc: 33:6d:1a:e4:2b:5d:96:96:c9:60:5d:09:f6:ff:ed: 2d:53:dd:ef:b5:78:74:72:12:2f:bb:99:6e:e3:a9: d4:de:19:57:df:ad:83:94:d9:1b:fe:24:83:fe:01: d0:b9:54:ef:7a:2f:60:29:9b:4a:e4:67:8e:27:f9: eb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:08:8B:24:F7:B1:6E:28:AA:08:EF:DB:CC:9F:F5:37:2D:CB:2E:7F X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:87:83:4c:1e:f1:de:74:83:6c:6c:86:1a:b7:73:91:f4:d1: 6d:a6:e3:bb:29:e4:f7:1f:0a:4e:d6:a0:55:c9:95:c0:7e:c5: b2:56:8d:f1:95:a4:13:64:86:c2:44:f1:dd:df:bf:78:f4:ef: e8:f2:72:97:36:c7:1d:e8:5d:2e:79:61:76:c8:f7:bc:51:43: 51:d7:54:f9:87:28:56:10:85:dd:48:6d:52:b9:37:73:43:ae: 89:43:d7:93:ee:60:4a:71:a3:da:64:f5:0e:d3:05:21:94:6f: 83:59:e3:11:df:8d:36:f0:92:7b:5d:0c:67:8c:b3:c1:79:b6: ec:8c:b1:10:8c:fa:52:4b:9f:51:a1:c7:77:4a:9c:aa:f3:d4: 45:4d:e1:3a:de:28:e6:5d:e8:ef:2a:4b:7f:02:e9:bd:30:5f: 30:70:c3:2e:f0:89:8f:23:2d:83:74:69:cd:aa:53:50:17:82: 40:52:93:49:88:e5:21:3d:a2:97:74:c9:cd:6e:a3:65:63:a8: 08:d9:6e:dc:50:f2:a5:25:06:79:ca:bb:79:5d:b7:2a:52:fc: 41:5b:2f:86:bf:d3:fa:fe:86:d8:93:57:c5:e7:0b:7f:78:2a: db:51:83:13:33:c3:ef:bd:74:89:fd:90:be:f3:d3:cb:e7:20: d7:68:ab:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjYwMTI1MDE0OTI0WhcNMjYwMjAxMDE0OTI0WjAYMRYwFAYD VQQDDA02OTc1NzZhNC0yYTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlo977KkulKvUPMsq3x+t1S3EOu4yVk1QQ4w5cLUM/FGNo528YH6nynzT1ioC I+K2fppbPQIslLblPcHSfqAG8y7uRVcmoJqnEJVPSVcJ2kHtexGqmufg9XGjZmea wuwBmixg9kyxQq3+sSzjVwmTkMZfnuKSWhw6m6n5Nfm1MsbMYYsgMl6VWDYXJLB6 OCx54xxSaotM5YMTsZsBMr2FaD6SHQxq380SuUrHzSM1Or+ayJGj4S3ubBPYustT +9VH1dwzbRrkK12WlslgXQn2/+0tU93vtXh0chIvu5lu46nU3hlX362DlNkb/iSD /gHQuVTvei9gKZtK5GeOJ/nreQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIIiyT3 sW4oqgjv28yf9Tctyy5/MB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGh4NMHvHedINsbIYat3OR9NFtpuO7KeT3HwpO1qBVyZXAfsWyVo3x laQTZIbCRPHd37949O/o8nKXNscd6F0ueWF2yPe8UUNR11T5hyhWEIXdSG1SuTdz Q66JQ9eT7mBKcaPaZPUO0wUhlG+DWeMR34028JJ7XQxnjLPBebbsjLEQjPpSS59R ocd3Spyq89RFTeE63ijmXejvKkt/Aum9MF8wcMMu8ImPIy2DdGnNqlNQF4JAUpNJ iOUhPaKXdMnNbqNlY6gI2W7cUPKlJQZ5yrt5XbcqUvxBWy+Gv9P6/obYk1fF5wt/ eCrbUYMTM8PvvXSJ/ZC+89PL5yDXaKvd -----END CERTIFICATE-----Generated at Sun Jan 25 10:42:48 2026 by rpki-client