This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: aeZCgXcxJdxw30E1Gyqj64IOGJVg0G3VwOYJlxTJJuQ= Subject key identifier: 0E:5E:25:79:FB:A0:BF:F6:23:B2:6B:CC:8F:E3:13:E3:5E:3D:00:FF Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0D16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0CF1 Signing time: Sat 24 Jan 2026 17:51:41 +0000 Manifest this update: Sat 24 Jan 2026 17:51:41 +0000 Manifest next update: Sat 31 Jan 2026 17:51:41 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: ++lDPDav7J9kE0TFtojUf2jXRfOP6bGUrPtGfTyOEnc=) 2: 4C8BB01CF0A511F0AE903042706F56BC.roa (hash: CUJNIZSv4N5Ll3Zzd5lExHQpuZvQPWmWLHnAd5iQB6Q=) 3: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: /8yKZ7ijIkZ+FPrPSN6BRvCVORAB+JrhwJVOpeQgC/c=) 4: 354F6196F0A511F0A9798B3A706F56BC.roa (hash: X2j/0Ty3xcE5TOM5Ccy8kM8Y+2iu8yDhmJwumKYRDN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Jan 24 17:51:41 2026 GMT Not After : Jan 31 17:51:41 2026 GMT Subject: CN=697506ad-b52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b7:73:4c:97:ae:a3:61:be:e3:43:97:da:24: eb:17:df:df:7c:82:4e:34:5c:c9:ba:93:5a:8a:02: 9b:ba:4c:d1:2b:45:53:58:b5:44:7f:bc:8a:a5:27: a1:fd:41:3b:6e:ca:f5:34:cf:50:36:f0:c1:e4:db: 57:82:46:ad:72:c4:26:de:40:af:01:ce:4a:1a:42: 21:ff:18:7d:e1:7c:f7:f9:0c:1a:6f:e7:38:0b:a1: 74:d0:1e:be:6a:6c:2c:5a:89:22:22:ca:53:b2:56: 89:0b:3d:1d:1e:44:e6:af:6a:a3:ac:40:4b:c6:00: 04:69:b3:f9:1f:22:27:f4:cf:a9:92:8f:c4:ad:af: cc:58:b8:4f:73:3f:c1:96:ba:8c:e7:06:a2:a0:98: dc:18:fc:e5:dd:c8:3d:1c:25:5f:54:88:0a:47:54: 1a:47:3a:44:28:cb:86:a9:e6:90:67:30:a4:e0:34: d4:c3:c2:e7:2d:57:5b:ec:0b:6e:f0:8f:c1:09:e5: 93:e0:01:e6:40:65:db:0d:66:6c:f6:57:8a:76:ca: ed:a8:8a:ec:9e:90:bb:82:2f:eb:32:44:e8:09:7c: 38:22:ac:56:68:3d:a8:56:a4:c1:ec:36:40:5f:23: c2:8a:5b:b1:83:39:92:dd:3c:d6:64:b4:17:0d:de: 91:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:5E:25:79:FB:A0:BF:F6:23:B2:6B:CC:8F:E3:13:E3:5E:3D:00:FF X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:e5:6d:89:d3:81:5a:69:ee:c4:52:88:cd:0d:7d:f1:c2:67: 1c:11:0c:34:75:c4:72:0b:64:00:af:ff:01:2c:2c:ec:1b:b6: ac:6d:70:08:e4:aa:ac:dd:e8:fb:68:29:a6:dc:5c:2b:28:61: af:a0:19:4e:bb:cf:83:42:67:d3:6d:22:77:77:22:8f:67:76: 10:60:f1:a9:c3:d9:b2:43:69:94:dc:19:8c:6c:8e:83:c9:27: 7e:c4:f6:75:21:60:be:58:25:12:cd:64:8f:da:d5:ef:8e:bc: 64:ac:85:93:ff:7f:3a:0a:7c:1a:aa:a1:a1:e9:11:96:50:e5: 5a:70:7f:39:2e:e1:d4:79:3b:ec:2e:e8:2f:65:2b:31:a3:8f: 2e:e3:c1:6b:de:9c:9c:79:f4:0f:5e:48:fa:f3:db:32:65:8d: f8:bf:f6:e3:2d:d8:5d:cb:ed:0c:1d:8e:70:dd:0a:74:8d:2f: dd:0b:ac:8b:d3:16:cc:6d:fb:f2:33:69:0a:51:2c:6a:99:cb: 61:19:71:96:db:36:31:8c:79:18:10:95:8b:e7:69:16:2e:61: 10:37:95:4f:47:c1:f3:66:3c:ac:f0:94:20:70:cf:e2:f2:21: 66:6d:05:ae:1f:fc:f0:e6:62:b4:cd:6f:02:75:fd:25:4e:5a: ee:30:6a:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjYwMTI0MTc1MTQxWhcNMjYwMTMxMTc1MTQxWjAYMRYwFAYD VQQDDA02OTc1MDZhZC1iNTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbdzTJeuo2G+40OX2iTrF9/ffIJONFzJupNaigKbukzRK0VTWLVEf7yKpSeh /UE7bsr1NM9QNvDB5NtXgkatcsQm3kCvAc5KGkIh/xh94Xz3+Qwab+c4C6F00B6+ amwsWokiIspTslaJCz0dHkTmr2qjrEBLxgAEabP5HyIn9M+pko/Era/MWLhPcz/B lrqM5waioJjcGPzl3cg9HCVfVIgKR1QaRzpEKMuGqeaQZzCk4DTUw8LnLVdb7Atu 8I/BCeWT4AHmQGXbDWZs9leKdsrtqIrsnpC7gi/rMkToCXw4IqxWaD2oVqTB7DZA XyPCiluxgzmS3TzWZLQXDd6R9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5eJXn7 oL/2I7JrzI/jE+NePQD/MB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX5W2J04Faae7EUojNDX3xwmccEQw0dcRyC2QAr/8BLCzsG7asbXAI 5Kqs3ej7aCmm3FwrKGGvoBlOu8+DQmfTbSJ3dyKPZ3YQYPGpw9myQ2mU3BmMbI6D ySd+xPZ1IWC+WCUSzWSP2tXvjrxkrIWT/386CnwaqqGh6RGWUOVacH85LuHUeTvs LugvZSsxo48u48Fr3pycefQPXkj689syZY34v/bjLdhdy+0MHY5w3Qp0jS/dC6yL 0xbMbfvyM2kKUSxqmcthGXGW2zYxjHkYEJWL52kWLmEQN5VPR8HzZjys8JQgcM/i 8iFmbQWuH/zw5mK0zW8Cdf0lTlruMGq/ -----END CERTIFICATE-----Generated at Sun Jan 25 11:29:20 2026 by rpki-client