This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: PQGLAiyXXpLNyDHDiLETRwxocLoEjlGyH6X/jOeE9gg= Subject key identifier: 0A:41:B3:25:97:6B:96:E5:6C:56:33:1F:1D:57:B1:FD:51:BD:57:37 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 011F Signing time: Sun 25 Jan 2026 04:01:50 +0000 Manifest this update: Sun 25 Jan 2026 04:01:50 +0000 Manifest next update: Sun 01 Feb 2026 04:01:50 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: z1U/zx9OF4lbEyMO9Ja4dMoaGLjZmp351HPA4Sq/bhQ=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: P198TX9zSl1gAa3+5l9fF8OBnx3VOozpb/0xssMUYo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Jan 25 04:01:50 2026 GMT Not After : Feb 1 04:01:50 2026 GMT Subject: CN=697595ae-498b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:62:0c:00:17:6e:ce:51:d0:ec:87:92:d0: c6:92:e8:59:80:b3:d4:1a:db:19:d3:29:7a:1b:6a: 4b:05:9a:73:38:7b:4e:23:db:27:26:79:a8:93:aa: ee:bd:8e:5e:19:99:19:e2:e2:98:0c:52:eb:77:07: 94:67:79:07:bb:d9:30:fb:8e:c6:70:f6:21:2a:1a: 80:f6:4a:00:df:fb:44:e6:9f:9e:87:03:ae:2f:ad: 44:26:df:3d:26:0d:2f:50:1b:78:cc:92:6c:ee:1a: 46:a7:97:b7:e3:25:1f:b7:54:b0:10:62:cf:96:c0: 7a:c1:7b:58:8d:bf:b6:df:39:76:4f:f4:71:39:75: 5d:e2:2d:95:4a:a4:fc:ed:73:10:c1:25:4a:3d:05: 5d:b2:02:c3:7c:c0:67:a3:81:4d:a1:d7:52:dc:75: b0:bf:f7:43:e9:7b:9d:18:0b:8a:08:88:62:71:5c: 5e:1a:72:e7:9b:56:a9:ae:d2:83:0f:40:98:b1:0a: 33:39:0d:c9:ff:ae:94:60:68:14:2a:e9:77:12:02: ee:b3:10:f7:2f:fd:50:56:9d:1c:7e:66:0e:d1:f1: 70:aa:cb:4e:c9:e6:f3:42:88:60:75:02:8e:73:90: 45:86:c7:54:cf:0d:9f:85:52:ff:bb:85:79:a8:54: 91:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:41:B3:25:97:6B:96:E5:6C:56:33:1F:1D:57:B1:FD:51:BD:57:37 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:75:4e:ef:8d:e5:3a:4e:ae:39:3f:a4:e7:f8:02:c2:69:93: 40:2e:62:a2:a0:54:df:dc:3c:8b:86:e1:44:a3:55:ba:51:52: d1:55:a6:20:0f:48:1c:b4:0a:75:d1:ac:a7:f6:da:2c:62:d9: d3:88:40:82:11:b6:7b:68:63:12:1f:da:10:d8:40:72:e3:e3: 69:b9:a7:80:81:52:e5:5e:12:e8:44:9e:c9:43:65:f3:12:ba: d6:87:fe:be:91:bd:7e:1a:13:7e:35:57:2d:46:6a:a3:85:c4: 83:83:cf:57:fa:4b:8c:bd:7e:2b:e6:a3:d7:cc:dc:b4:13:39: be:57:08:7a:9e:c9:6f:44:4b:25:5f:43:3a:08:f0:4b:d4:aa: 6e:1e:07:98:8e:bd:16:47:60:7c:27:7b:8a:56:cc:0a:a1:62: c4:72:63:33:a2:59:76:03:75:26:87:ff:df:64:91:98:ab:22: 10:1f:d0:1d:ef:2e:4f:84:bf:4f:b1:fb:4f:d1:db:69:bc:54: 17:d4:45:a5:ff:a4:3f:8c:a0:94:2e:3a:43:5e:7f:fe:00:cf: b0:dd:3a:44:45:23:1e:ca:08:65:b0:a2:e3:b0:46:21:0f:05: 52:2a:97:35:87:c4:e2:4c:68:dc:f1:43:1f:b7:ea:c5:5c:54: 41:23:25:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjYwMTI1MDQwMTUwWhcNMjYwMjAxMDQwMTUwWjAYMRYwFAYD VQQDDA02OTc1OTVhZS00OThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmJiDAAXbs5R0OyHktDGkuhZgLPUGtsZ0yl6G2pLBZpzOHtOI9snJnmok6ru vY5eGZkZ4uKYDFLrdweUZ3kHu9kw+47GcPYhKhqA9koA3/tE5p+ehwOuL61EJt89 Jg0vUBt4zJJs7hpGp5e34yUft1SwEGLPlsB6wXtYjb+23zl2T/RxOXVd4i2VSqT8 7XMQwSVKPQVdsgLDfMBno4FNoddS3HWwv/dD6XudGAuKCIhicVxeGnLnm1aprtKD D0CYsQozOQ3J/66UYGgUKul3EgLusxD3L/1QVp0cfmYO0fFwqstOyebzQohgdQKO c5BFhsdUzw2fhVL/u4V5qFSRJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApBsyWX a5blbFYzHx1Xsf1RvVc3MB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAedU7vjeU6Tq45P6Tn+ALCaZNALmKioFTf3DyLhuFEo1W6UVLRVaYg D0gctAp10ayn9tosYtnTiECCEbZ7aGMSH9oQ2EBy4+NpuaeAgVLlXhLoRJ7JQ2Xz ErrWh/6+kb1+GhN+NVctRmqjhcSDg89X+kuMvX4r5qPXzNy0Ezm+Vwh6nslvREsl X0M6CPBL1KpuHgeYjr0WR2B8J3uKVswKoWLEcmMzoll2A3Umh//fZJGYqyIQH9Ad 7y5PhL9PsftP0dtpvFQX1EWl/6Q/jKCULjpDXn/+AM+w3TpERSMeyghlsKLjsEYh DwVSKpc1h8TiTGjc8UMft+rFXFRBIyWp -----END CERTIFICATE-----Generated at Sun Jan 25 15:50:04 2026 by rpki-client