This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: 7kgReeZb7jnEBhnhaQYuaSWKm1pdI8YMIBpPvCxM7TY= Subject key identifier: 60:BD:C2:3C:92:D9:75:93:12:BB:C1:41:9A:8C:3D:98:45:52:71:BA Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0A0E Signing time: Sat 24 Jan 2026 19:18:36 +0000 Manifest this update: Sat 24 Jan 2026 19:18:35 +0000 Manifest next update: Sat 31 Jan 2026 19:18:35 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: FdwdIV865OgqOAqGwdpFKqZjzUZBg2Yyrd8WYI+Juyc=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: vvb4CejOVJri8OIdHwWGwZEAuucKhYGTP+ke3m07dcM=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: MvhHzk/9f8tTuJ4ji5wkdvYja5PdDGGnrgSYFLH3YU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2611 (0xa33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Jan 24 19:18:35 2026 GMT Not After : Jan 31 19:18:35 2026 GMT Subject: CN=69751b0c-c0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fe:c7:ad:a0:ff:21:5f:6a:ef:6a:0b:34:fa: 18:e8:d8:72:3c:44:7f:51:03:24:90:ee:19:70:1a: 02:a5:84:89:61:93:f2:ed:8c:a1:8d:cd:c7:10:95: 4b:81:bc:0d:1e:42:bd:f2:e7:f9:d2:17:04:48:c7: 0c:8a:08:ab:8d:8d:34:a3:68:03:27:45:55:f1:03: e9:e7:c8:9b:c6:66:0a:58:11:f4:d2:aa:39:5e:58: 55:e6:c2:87:fe:68:4a:6e:be:09:c1:66:da:03:d2: 86:dc:e8:a0:d8:6b:27:5f:05:13:2d:c7:dd:98:65: 8b:b9:08:57:89:3c:fb:7c:45:68:d4:88:8f:73:e1: bb:b1:7a:2b:0a:1b:72:d1:99:34:98:d1:e8:e2:43: 5b:66:4f:ce:ec:3b:1d:6f:14:3a:7c:ba:9e:54:95: 43:96:03:64:6a:bd:92:f9:1f:57:82:aa:58:0e:06: ce:ac:ec:16:df:cf:87:2e:a6:d9:40:3c:ff:ff:92: 72:b6:7a:23:45:56:e8:9b:62:dc:cd:97:77:73:b2: 33:ee:39:b3:50:79:d4:66:7b:5b:98:85:e5:2e:62: 9c:9c:53:18:80:ca:6d:34:bf:01:b8:94:1f:37:e1: 47:f3:1c:73:81:bc:ce:f3:d2:20:52:0d:63:28:28: 59:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:BD:C2:3C:92:D9:75:93:12:BB:C1:41:9A:8C:3D:98:45:52:71:BA X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fb:9d:59:c9:21:a3:d3:f4:03:c5:c1:0d:e5:48:7c:eb:d3: 4e:d5:b1:e4:f3:11:26:1f:06:cf:0a:ec:c8:e8:59:38:28:b4: da:de:29:3d:f7:83:6d:4d:9e:d3:17:e4:02:c6:c8:33:a3:cc: 03:fa:66:21:81:9f:27:62:1a:8c:83:aa:07:bb:db:2e:0b:a4: bb:d8:0b:d1:ca:e2:13:0a:4d:01:5d:29:dd:cb:e4:dc:c5:c5: a2:e9:fc:fc:c0:17:61:d1:59:ba:63:18:c3:01:12:58:1b:b0: e5:c4:8d:93:ac:fb:ff:ca:c5:6c:8b:80:49:05:17:96:2c:94: b9:c1:37:d2:23:70:a7:51:b8:60:2f:c5:62:a0:7c:ec:75:94: fe:f7:fc:3a:79:dd:4d:65:0a:41:09:16:f1:d1:b0:bb:f2:58: 6b:80:85:e5:98:56:33:64:a8:2c:20:2e:45:66:d5:67:d6:83: 82:ee:82:a3:c1:3c:d9:7b:9c:e3:f4:e3:7c:b0:f2:8c:09:cc: 8e:61:21:d1:f0:40:ef:07:60:70:77:55:69:0d:74:be:e0:6e: d3:0b:10:b5:eb:0a:e5:48:e0:e7:6e:1c:fc:04:9b:10:ef:34: da:c6:0e:52:f0:d8:45:91:d5:b8:41:aa:13:ad:99:d2:e1:12: e7:0a:28:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjYwMTI0MTkxODM1WhcNMjYwMTMxMTkxODM1WjAYMRYwFAYD VQQDDA02OTc1MWIwYy1jMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv7HraD/IV9q72oLNPoY6NhyPER/UQMkkO4ZcBoCpYSJYZPy7Yyhjc3HEJVL gbwNHkK98uf50hcESMcMigirjY00o2gDJ0VV8QPp58ibxmYKWBH00qo5XlhV5sKH /mhKbr4JwWbaA9KG3Oig2GsnXwUTLcfdmGWLuQhXiTz7fEVo1IiPc+G7sXorChty 0Zk0mNHo4kNbZk/O7DsdbxQ6fLqeVJVDlgNkar2S+R9XgqpYDgbOrOwW38+HLqbZ QDz//5JytnojRVbom2LczZd3c7Iz7jmzUHnUZntbmIXlLmKcnFMYgMptNL8BuJQf N+FH8xxzgbzO89IgUg1jKChZOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGC9wjyS 2XWTErvBQZqMPZhFUnG6MB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU+51ZySGj0/QDxcEN5Uh869NO1bHk8xEmHwbPCuzI6Fk4KLTa3ik9 94NtTZ7TF+QCxsgzo8wD+mYhgZ8nYhqMg6oHu9suC6S72AvRyuITCk0BXSndy+Tc xcWi6fz8wBdh0Vm6YxjDARJYG7DlxI2TrPv/ysVsi4BJBReWLJS5wTfSI3CnUbhg L8VioHzsdZT+9/w6ed1NZQpBCRbx0bC78lhrgIXlmFYzZKgsIC5FZtVn1oOC7oKj wTzZe5zj9ON8sPKMCcyOYSHR8EDvB2Bwd1VpDXS+4G7TCxC16wrlSODnbhz8BJsQ 7zTaxg5S8NhFkdW4QaoTrZnS4RLnCiga -----END CERTIFICATE-----Generated at Mon Jan 26 01:33:28 2026 by rpki-client