This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: 8vBHiqCzccC9j1d5veE4l1dpQjBWm/OASji47h9OEm0= Subject key identifier: E4:38:E4:CE:33:39:46:96:F4:AD:54:7A:41:A0:F6:48:B7:26:60:0E Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: 011D Signing time: Sun 25 Jan 2026 04:00:33 +0000 Manifest this update: Sun 25 Jan 2026 04:00:33 +0000 Manifest next update: Sun 01 Feb 2026 04:00:33 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: iNMiZUwJaG7ZRN2C7paq6lgvH5+DyYn8+2PCGoHmk68=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: Ds5OYRTGE1+nmc/fXAPDPY24vX1TYbGT7zDa8IDd+kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Jan 25 04:00:33 2026 GMT Not After : Feb 1 04:00:33 2026 GMT Subject: CN=69759561-aa02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a0:3e:93:e8:14:9a:de:08:e8:95:6f:96:57: 50:25:c2:c6:0a:83:09:7a:3b:91:41:37:f0:7d:ca: 06:d2:fb:a9:19:ee:ac:99:d6:42:82:d6:7a:5f:c6: 55:2e:15:c8:75:6d:38:c0:bf:a6:e2:a5:76:75:7f: af:0a:e2:7d:a1:52:66:75:76:78:03:b1:af:02:00: d2:17:8a:c1:95:62:50:51:ff:b1:cd:fb:be:cd:02: af:b4:10:4b:a8:33:c2:b7:1f:42:6f:53:6c:d4:d3: ad:d4:80:77:5c:e1:3e:19:77:55:24:06:d6:d5:cc: e0:d7:bd:cf:c7:fb:b7:47:59:36:22:3c:c2:76:b9: 31:6e:75:d9:b9:dd:53:7c:5f:e7:04:3c:81:df:8b: d6:e8:41:9c:86:f3:69:29:7d:a6:dc:ed:27:b5:34: f9:a4:8d:b5:57:b2:77:e9:af:b6:ee:f5:4c:69:e1: 3a:6b:50:b6:12:80:5d:ad:3f:ea:e1:11:fb:e3:20: 97:4a:2b:2c:dc:89:ce:8a:e1:23:77:6c:6b:50:4c: 5b:fc:96:c5:77:b8:29:3c:5a:bf:e7:4f:89:b6:ae: 65:60:4a:76:9a:ea:17:af:05:b2:17:1a:1e:34:cd: e0:95:7f:d3:74:ff:84:c2:ac:9b:66:77:a3:55:43: 5f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:38:E4:CE:33:39:46:96:F4:AD:54:7A:41:A0:F6:48:B7:26:60:0E X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:b7:ba:a2:86:21:76:38:27:a8:07:4e:d7:70:9f:58:e2:59: 20:35:4a:21:d1:d9:00:ef:0b:6d:0f:16:71:a8:24:1c:ce:a3: cb:aa:47:02:2b:55:11:7a:91:56:9b:ae:bb:25:73:39:2a:34: 62:ab:67:ab:b0:6e:f0:73:00:80:56:55:30:cc:00:de:01:cb: 8e:03:65:f6:d8:cb:9e:59:c4:67:97:de:d6:ef:e4:13:b0:27: 8d:ea:0c:62:06:81:e1:22:1c:80:3e:4c:31:8f:3c:07:01:6b: c5:40:f6:73:bf:bb:4c:ab:a2:9d:42:1b:57:4f:47:bc:dc:c1: af:f7:6b:0e:41:8a:0c:4d:52:ab:f7:90:95:89:a6:d3:50:70: 0c:d5:2c:bb:4d:b7:63:6f:e4:f7:81:09:58:96:27:fe:f7:5d: d0:2c:4c:68:58:78:03:ff:1e:3a:bc:19:30:b1:3f:1a:2d:52: 0a:43:e8:a7:50:80:db:5d:32:0c:ce:52:b8:dc:a1:e4:f2:05: 33:c2:2f:4f:0e:31:17:5d:79:b8:86:59:74:7d:c9:fd:eb:ec: 75:38:3d:09:b9:52:06:37:a6:3e:a9:e6:10:04:5b:04:f3:a8: 92:b4:dd:f4:86:d4:62:db:15:b1:6f:81:ac:90:da:ed:4d:ce: 2a:f9:49:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjYwMTI1MDQwMDMzWhcNMjYwMjAxMDQwMDMzWjAYMRYwFAYD VQQDDA02OTc1OTU2MS1hYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqA+k+gUmt4I6JVvlldQJcLGCoMJejuRQTfwfcoG0vupGe6smdZCgtZ6X8ZV LhXIdW04wL+m4qV2dX+vCuJ9oVJmdXZ4A7GvAgDSF4rBlWJQUf+xzfu+zQKvtBBL qDPCtx9Cb1Ns1NOt1IB3XOE+GXdVJAbW1czg173Px/u3R1k2IjzCdrkxbnXZud1T fF/nBDyB34vW6EGchvNpKX2m3O0ntTT5pI21V7J36a+27vVMaeE6a1C2EoBdrT/q 4RH74yCXSiss3InOiuEjd2xrUExb/JbFd7gpPFq/50+Jtq5lYEp2muoXrwWyFxoe NM3glX/TdP+EwqybZnejVUNfGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQ45M4z OUaW9K1UekGg9ki3JmAOMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/t7qihiF2OCeoB07XcJ9Y4lkgNUoh0dkA7wttDxZxqCQczqPLqkcC K1URepFWm667JXM5KjRiq2ersG7wcwCAVlUwzADeAcuOA2X22MueWcRnl97W7+QT sCeN6gxiBoHhIhyAPkwxjzwHAWvFQPZzv7tMq6KdQhtXT0e83MGv92sOQYoMTVKr 95CViabTUHAM1Sy7Tbdjb+T3gQlYlif+913QLExoWHgD/x46vBkwsT8aLVIKQ+in UIDbXTIMzlK43KHk8gUzwi9PDjEXXXm4hll0fcn96+x1OD0JuVIGN6Y+qeYQBFsE 86iStN30htRi2xWxb4GskNrtTc4q+Ulj -----END CERTIFICATE-----Generated at Sun Jan 25 10:46:27 2026 by rpki-client