This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: idm8c66nCDKaRPV+MXXf6qtbkwBv5oqgxrJBVBktwAQ= Subject key identifier: 40:06:0A:E1:EA:3D:EF:95:B5:35:27:35:45:9C:D3:A0:F5:1F:6B:CD Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: CA Signing time: Sun 25 Jan 2026 04:58:50 +0000 Manifest this update: Sun 25 Jan 2026 04:58:50 +0000 Manifest next update: Sun 01 Feb 2026 04:58:50 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: 2lte6I4kuZL+B6k3R6D0bFVqHLuAZbNj6PMRxLppZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Jan 25 04:58:50 2026 GMT Not After : Feb 1 04:58:50 2026 GMT Subject: CN=6975a30a-5272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:14:20:5d:a5:bb:4b:a0:81:16:6b:7f:39:0d: 0d:a7:95:02:1c:cd:6e:a4:1a:76:d4:0d:ae:75:39: 83:c0:ac:a0:c2:3c:f7:ab:d2:e9:bd:97:bc:7f:f9: 20:32:d9:97:7d:81:9a:a2:d0:16:f6:78:52:b3:3d: 03:fe:94:9c:d2:11:56:75:ad:7d:36:ea:09:96:1f: 81:3d:35:96:c1:53:b8:08:fc:4f:c0:e4:f4:54:02: 2e:6b:cd:be:3c:1e:1b:94:ee:fd:7a:53:e5:24:ac: 60:21:9c:ff:22:ba:0b:74:eb:a2:d6:3b:b9:55:62: 94:9e:e6:67:55:61:d8:87:7f:45:06:8b:56:09:85: b9:5c:0e:e2:ed:9b:07:ae:c8:49:60:ba:82:2d:6a: 30:a1:64:b5:24:cd:4d:e5:54:d6:83:12:e1:91:9d: e4:94:e6:9d:14:5a:92:b3:72:ce:96:ca:8e:ed:c5: 18:21:fd:b0:4d:3b:18:44:ac:6c:fe:20:c1:76:09: ba:ff:64:e3:be:76:8c:47:18:c8:dc:3d:e4:99:c0: 21:58:2b:e2:90:53:d0:cd:6c:71:1a:79:2e:65:4d: 9d:0d:90:db:db:28:1f:70:5d:fd:ef:24:0e:93:e4: ce:3c:89:dd:59:7c:45:ae:88:d1:b8:a3:86:a2:9a: 5e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:06:0A:E1:EA:3D:EF:95:B5:35:27:35:45:9C:D3:A0:F5:1F:6B:CD X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:bb:a8:69:8e:cb:2c:b3:96:23:64:2a:9d:a8:8d:00:37:44: 96:3b:65:81:5d:e6:e5:92:eb:98:ed:9c:3b:dc:d6:ea:95:7a: 73:5d:91:da:b6:c3:5b:e0:24:64:84:b3:d3:f3:b9:9e:32:02: a7:76:bb:2b:53:fc:f7:3e:10:f1:9a:60:d6:a3:34:49:ef:a7: fc:d7:69:66:14:8c:9e:c3:70:03:bb:a7:66:2c:5f:ea:b2:91: 74:45:76:b1:6d:0c:24:9e:3f:a8:c6:ef:3f:42:61:26:ff:26: c0:02:c7:53:ec:04:a7:cc:32:fe:70:a2:f1:9b:85:df:7b:b2: aa:d1:68:b4:ad:d2:41:22:48:6d:d9:f5:15:2f:03:19:b0:fa: 95:dd:ae:5c:ba:80:c5:6a:27:29:2a:01:3d:31:d1:6a:70:37: e8:c0:c9:9a:30:f0:76:31:78:a1:be:41:6a:5b:a1:ac:d8:5b: 44:b1:21:a0:0f:3b:5e:61:65:71:17:db:c9:00:86:8f:2e:4e: 56:df:5a:82:f9:16:cc:19:41:83:8e:ed:67:20:fe:62:0d:a3: 67:ed:7b:3d:a4:1f:4c:0f:78:49:98:a3:f4:e8:b3:cd:f2:e0: 79:8c:96:5b:f7:71:fa:07:7c:da:3f:71:39:10:91:1a:77:ea: 0e:62:0b:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyMDcxMTAvBgNVBAUTKDc3N0RCODk3NDU3MEU5QjZDMDRFMjY1N0U2RDBBNTAz N0M3MTg4NkIwHhcNMjYwMTI1MDQ1ODUwWhcNMjYwMjAxMDQ1ODUwWjAYMRYwFAYD VQQDDA02OTc1YTMwYS01MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxQgXaW7S6CBFmt/OQ0Np5UCHM1upBp21A2udTmDwKygwjz3q9LpvZe8f/kg MtmXfYGaotAW9nhSsz0D/pSc0hFWda19NuoJlh+BPTWWwVO4CPxPwOT0VAIua82+ PB4blO79elPlJKxgIZz/IroLdOui1ju5VWKUnuZnVWHYh39FBotWCYW5XA7i7ZsH rshJYLqCLWowoWS1JM1N5VTWgxLhkZ3klOadFFqSs3LOlsqO7cUYIf2wTTsYRKxs /iDBdgm6/2TjvnaMRxjI3D3kmcAhWCvikFPQzWxxGnkuZU2dDZDb2ygfcF397yQO k+TOPIndWXxFrojRuKOGoppeGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAGCuHq Pe+VtTUnNUWc06D1H2vNMB8GA1UdIwQYMBaAFHd9uJdFcOm2wE4mV+bQpQN8cYhr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjIwNy9CNDg4NjFDNkMy MjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZiYkFUaVpYNXRDbEEzeHhp R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjIwNy9CNDg4NjFDNkMyMjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZi YkFUaVpYNXRDbEEzeHhpR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPu6hpjssss5YjZCqdqI0AN0SWO2WBXeblkuuY7Zw73NbqlXpzXZHa tsNb4CRkhLPT87meMgKndrsrU/z3PhDxmmDWozRJ76f812lmFIyew3ADu6dmLF/q spF0RXaxbQwknj+oxu8/QmEm/ybAAsdT7ASnzDL+cKLxm4Xfe7Kq0Wi0rdJBIkht 2fUVLwMZsPqV3a5cuoDFaicpKgE9MdFqcDfowMmaMPB2MXihvkFqW6Gs2FtEsSGg DzteYWVxF9vJAIaPLk5W31qC+RbMGUGDju1nIP5iDaNn7Xs9pB9MD3hJmKP06LPN 8uB5jJZb93H6B3zaP3E5EJEad+oOYgtt -----END CERTIFICATE-----Generated at Sun Jan 25 07:52:10 2026 by rpki-client