This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: KNGWYdOR/gXRLW6FfDyXmzJhneg+bECg37y9DCuvO1s= Subject key identifier: F8:17:96:81:01:E0:0A:58:77:85:08:FC:A3:9C:8E:AA:3B:F8:64:D2 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 3508 Signing time: Sat 24 Jan 2026 15:00:58 +0000 Manifest this update: Sat 24 Jan 2026 15:00:58 +0000 Manifest next update: Sat 31 Jan 2026 15:00:58 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: DmqMz8opBHD1/syl68JnbX1BJxQccm+ffDyL9sB7io4=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13587 (0x3513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Jan 24 15:00:58 2026 GMT Not After : Jan 31 15:00:58 2026 GMT Subject: CN=6974deaa-73da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3a:d5:ce:e1:24:44:d4:bf:22:75:9a:53:5b: 1c:c3:8d:49:83:e6:51:1e:bf:27:b0:74:48:f0:56: 52:49:8c:a0:5f:1d:59:0c:00:75:86:38:72:6b:c5: 85:38:c1:a0:03:f7:72:26:d7:c1:9f:eb:c2:68:f1: f8:88:42:6c:36:cb:b3:6b:3a:da:69:54:0a:8b:f9: ab:ca:f5:06:77:1f:b9:6c:88:f3:63:d0:82:05:e9: 92:c7:ef:05:05:57:05:05:72:4c:a2:49:f4:6f:db: 03:83:cd:51:de:8d:55:12:17:bc:2e:41:14:c2:78: d0:40:b9:f8:fa:56:bf:46:36:b1:4a:2d:6e:43:e8: 70:7f:84:3f:43:d2:84:d1:51:74:a1:db:32:89:73: 77:f0:71:87:20:54:4f:45:1c:e8:84:8b:5c:f6:46: 74:e7:1b:ea:39:a3:91:09:7c:ad:13:ce:a0:9d:cb: 02:1e:a0:8b:aa:3a:b9:d6:34:3f:de:5d:ea:ed:54: 80:c5:69:db:a1:5e:67:06:6a:ed:25:62:cf:75:5b: 21:e8:1d:08:c5:5e:15:d9:24:f5:0c:d6:3c:02:5c: 74:47:33:13:e4:44:9d:98:7c:0e:c4:6a:50:83:61: 23:73:d1:4b:97:63:ea:0e:b3:df:1f:d1:2e:b0:17: 39:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:17:96:81:01:E0:0A:58:77:85:08:FC:A3:9C:8E:AA:3B:F8:64:D2 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:f5:a7:52:8e:77:c9:1c:9e:7c:ec:cc:08:87:0b:4a:64:9f: 80:e3:0c:fe:b8:9c:fc:b1:78:90:8d:b6:75:e6:a2:a7:23:bf: 95:4e:bc:43:a2:1e:11:c2:43:45:f6:72:78:6c:3e:63:e4:77: ad:19:5d:b8:09:5c:0b:5a:40:52:7f:58:f3:f9:9f:8e:d3:3b: 66:67:79:4f:65:c5:5e:14:e8:4e:f5:8e:30:34:be:3f:c4:ba: 33:5c:16:ab:20:5b:38:19:5e:08:61:c5:5e:c5:4b:bc:51:b0: 48:21:1a:93:24:9f:60:55:67:96:cf:a7:e5:df:28:85:15:ff: a0:19:00:40:b4:54:e7:6a:e4:50:45:29:73:27:a6:35:c1:a9: e3:9c:fb:ff:03:c3:66:b8:08:88:00:0f:7f:5e:cf:d3:8a:62: cd:51:a5:c8:c5:d3:e9:74:f4:19:6b:78:46:40:f2:ab:8c:be: 7e:1a:69:bd:44:8e:4e:3b:c3:0d:a9:c7:0e:8d:15:d1:ab:48: b9:c3:09:91:a4:56:ba:e9:ef:ab:4e:15:26:1a:dd:2d:db:51: cb:96:4d:87:13:e1:3c:be:4d:54:53:28:04:04:8f:e0:91:02: b4:e3:20:f1:2d:b7:ca:bf:c8:d4:8c:d9:62:2c:d4:a1:18:73: 12:02:18:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwMTI0MTUwMDU4WhcNMjYwMTMxMTUwMDU4WjAYMRYwFAYD VQQDDA02OTc0ZGVhYS03M2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzrVzuEkRNS/InWaU1scw41Jg+ZRHr8nsHRI8FZSSYygXx1ZDAB1hjhya8WF OMGgA/dyJtfBn+vCaPH4iEJsNsuzazraaVQKi/mryvUGdx+5bIjzY9CCBemSx+8F BVcFBXJMokn0b9sDg81R3o1VEhe8LkEUwnjQQLn4+la/RjaxSi1uQ+hwf4Q/Q9KE 0VF0odsyiXN38HGHIFRPRRzohItc9kZ05xvqOaORCXytE86gncsCHqCLqjq51jQ/ 3l3q7VSAxWnboV5nBmrtJWLPdVsh6B0IxV4V2ST1DNY8Alx0RzMT5ESdmHwOxGpQ g2Ejc9FLl2PqDrPfH9EusBc5mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgXloEB 4ApYd4UI/KOcjqo7+GTSMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf9adSjnfJHJ587MwIhwtKZJ+A4wz+uJz8sXiQjbZ15qKnI7+VTrxD oh4RwkNF9nJ4bD5j5HetGV24CVwLWkBSf1jz+Z+O0ztmZ3lPZcVeFOhO9Y4wNL4/ xLozXBarIFs4GV4IYcVexUu8UbBIIRqTJJ9gVWeWz6fl3yiFFf+gGQBAtFTnauRQ RSlzJ6Y1wanjnPv/A8NmuAiIAA9/Xs/TimLNUaXIxdPpdPQZa3hGQPKrjL5+Gmm9 RI5OO8MNqccOjRXRq0i5wwmRpFa66e+rThUmGt0t21HLlk2HE+E8vk1UUygEBI/g kQK04yDxLbfKv8jUjNliLNShGHMSAhiW -----END CERTIFICATE-----Generated at Sun Jan 25 02:54:13 2026 by rpki-client