This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: JKTHhLegViCsvoWZh1lncuEs1X1s58e/I/fErU6Y1AE= Subject key identifier: 5E:3F:75:E2:93:73:0B:EA:51:DA:68:33:61:9F:F3:A6:3E:05:F6:BF Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 73 Signing time: Sun 25 Jan 2026 06:00:17 +0000 Manifest this update: Sun 25 Jan 2026 06:00:17 +0000 Manifest next update: Sun 01 Feb 2026 06:00:17 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: oV0b/MbxFL+aiWv0kfFIh/9MgWDRDPVT35hz+EOYPd4=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 6vL95HASIeMq5sE95QjJyODMvxYaOtsSaHmjFpdm+bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Jan 25 06:00:17 2026 GMT Not After : Feb 1 06:00:17 2026 GMT Subject: CN=6975b171-b114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cc:f6:70:fe:52:bc:2a:8b:05:cf:4c:4e:16: 56:2e:be:e1:54:5f:53:d5:81:53:32:1e:18:2f:b6: ee:86:9c:e8:33:8b:b6:b8:71:8c:d4:79:70:51:72: c2:2b:48:ba:1a:de:20:a4:49:e2:32:5d:a2:54:40: dc:1c:14:5c:55:89:52:ec:47:30:1d:20:f8:8f:72: 39:c7:b6:a0:a5:ae:e4:df:1d:28:8a:0c:f1:64:df: c1:15:d1:2e:d3:ce:53:13:91:18:91:64:1e:56:05: 11:f3:f8:f1:bd:6e:58:a8:0e:34:92:bd:41:9b:cc: 92:3a:7b:03:48:64:97:00:53:cb:ea:51:11:79:61: 2a:a3:91:a1:5e:a3:f8:10:c7:8f:34:7e:f6:0b:a2: 5b:60:f6:92:4a:26:af:73:85:41:13:2e:07:86:0c: 3c:0b:73:7f:dd:4a:a5:94:a1:f0:4a:33:08:d6:81: 3c:4d:74:ec:fd:b4:b0:4e:cc:06:38:53:fd:9d:b0: 15:16:e6:4c:24:b3:da:87:d6:ef:ec:2c:45:bb:f9: e0:8c:b3:98:40:e3:90:ad:e3:7d:b6:40:38:3c:f7: 17:1e:ce:9d:41:25:85:39:f1:7b:00:b6:c2:3e:7e: 5d:24:49:91:16:fc:06:cc:ac:28:9f:97:0e:aa:17: 97:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3F:75:E2:93:73:0B:EA:51:DA:68:33:61:9F:F3:A6:3E:05:F6:BF X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:66:a6:0a:cd:3e:ed:ad:0d:47:e8:a1:e6:8a:cf:c2:dc:31: e5:bb:d6:6c:76:61:34:60:50:28:32:ab:07:9d:50:5f:cd:fb: 61:ae:bb:cf:0c:01:b8:02:56:0d:9e:24:bd:ab:bc:b7:0f:d4: 1a:bb:fd:64:88:a2:46:0a:cc:a4:5c:e6:fc:f3:a9:03:dd:7f: 9f:64:ce:5f:d2:37:83:d7:c0:a6:f8:47:3f:48:b8:36:23:75: 1b:8f:99:a4:3c:b9:44:77:8b:58:dd:1b:c4:bd:3b:3b:78:16: 40:40:d4:99:77:ba:b0:02:3e:ff:14:b0:88:6a:42:86:ed:11: 1d:30:8b:37:d8:fd:29:a3:50:9e:b7:b1:8c:26:8b:e1:ed:4b: a0:d4:ea:a5:5e:53:6e:03:1e:f2:e9:6c:62:51:04:24:cc:e7: c8:95:60:38:2f:a2:17:ac:01:b5:f1:54:08:bd:fa:82:1a:b5: 2b:1f:61:9a:ea:9a:2e:0c:a1:1a:11:45:c8:2e:d3:41:7e:ee: 75:ca:32:07:0a:36:84:3a:61:95:00:2c:df:b5:0c:c5:6e:23: 28:f9:26:f7:66:09:8b:ea:ee:b7:0d:89:d7:e4:de:4c:22:35: 4c:72:0b:e8:6e:95:e8:2f:21:5d:82:b8:c0:32:7b:ec:2e:08: c8:69:0f:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoNzIwQUE2NkYzNkMxNDYwQUQ0QkMzQUM2OTJGOTY1Qjcx NzRBNThFMDAeFw0yNjAxMjUwNjAwMTdaFw0yNjAyMDEwNjAwMTdaMBgxFjAUBgNV BAMMDTY5NzViMTcxLWIxMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYzPZw/lK8KosFz0xOFlYuvuFUX1PVgVMyHhgvtu6GnOgzi7a4cYzUeXBRcsIr SLoa3iCkSeIyXaJUQNwcFFxViVLsRzAdIPiPcjnHtqClruTfHSiKDPFk38EV0S7T zlMTkRiRZB5WBRHz+PG9blioDjSSvUGbzJI6ewNIZJcAU8vqURF5YSqjkaFeo/gQ x480fvYLoltg9pJKJq9zhUETLgeGDDwLc3/dSqWUofBKMwjWgTxNdOz9tLBOzAY4 U/2dsBUW5kwks9qH1u/sLEW7+eCMs5hA45Ct4322QDg89xcezp1BJYU58XsAtsI+ fl0kSZEW/AbMrCiflw6qF5eXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXj914pNz C+pR2mgzYZ/zpj4F9r8wHwYDVR0jBBgwFoAUcgqmbzbBRgrUvDrGkvlltxdKWOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzM2NDBDQjk0NTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2dxbWJ6YkJSZ3JVdkRyR2t2bGx0eGRLV09BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzM2NDBDQjk0NTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdy VXZEckdrdmxsdHhkS1dPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANdmpgrNPu2tDUfooeaKz8LcMeW71mx2YTRgUCgyqwedUF/N+2Guu88M AbgCVg2eJL2rvLcP1Bq7/WSIokYKzKRc5vzzqQPdf59kzl/SN4PXwKb4Rz9IuDYj dRuPmaQ8uUR3i1jdG8S9Ozt4FkBA1Jl3urACPv8UsIhqQobtER0wizfY/SmjUJ63 sYwmi+HtS6DU6qVeU24DHvLpbGJRBCTM58iVYDgvohesAbXxVAi9+oIatSsfYZrq mi4MoRoRRcgu00F+7nXKMgcKNoQ6YZUALN+1DMVuIyj5JvdmCYvq7rcNidfk3kwi NUxyC+hulegvIV2CuMAye+wuCMhpDzk= -----END CERTIFICATE-----Generated at Sun Jan 25 12:43:10 2026 by rpki-client