This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: x16Xf5X4901J36Hq5aM2X6+BrhvzKGSnhH/y8CwpzW4= Subject key identifier: B0:A9:76:A9:00:CF:32:77:CC:FF:96:8B:87:F0:6B:65:4E:8A:D3:30 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 04F3 Signing time: Sat 24 Jan 2026 22:56:49 +0000 Manifest this update: Sat 24 Jan 2026 22:56:48 +0000 Manifest next update: Sat 31 Jan 2026 22:56:48 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: Kq2+VA595k8o8afO8GH0/2/HMQJhDJ3/bqgAA/aVkPE=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU=) 3: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: A3EDkKvu0aa33VcpNX3QbNZPup+JOPeqQSqq5IEiwAE=) 4: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: 2y3PU7S4Av5FbaJ/h4zQJFDM0QlsuJevpUkwFDDgj1o=) 5: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: qBcZRGomI65XMXG658jBmR+nbM6U8JoK99ZN8SiSngA=) 6: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: PZ8hGfo35k+2uwUr51dLJv7koK6JGtYIILiy6ys4KXU=) 7: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: Ar0eIfX5VeHGn66RhXZc/W9m9hkUWFRl4nMMo5nWhrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Jan 24 22:56:48 2026 GMT Not After : Jan 31 22:56:48 2026 GMT Subject: CN=69754e31-a96f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7f:bb:6e:41:d1:c5:1b:e1:cc:f3:9b:ac:50: 5b:a6:17:e9:d2:74:f9:31:e2:9d:fb:db:d0:14:40: 2f:ec:52:2e:bc:76:1d:fc:e6:a0:12:4b:77:0b:16: 54:4a:06:41:f4:6e:3f:b3:01:0d:a2:e9:6d:7a:cf: 4b:a7:e6:42:ef:94:1e:2f:4e:37:47:48:91:b4:e8: d7:54:23:d3:1c:86:f4:fa:4c:0e:71:ae:2c:d3:cf: 23:f3:3f:93:17:31:2c:03:fe:ed:f7:38:f7:28:ab: 12:63:94:3d:26:98:1c:f5:bf:74:2b:1d:ef:86:f1: 0d:c1:c0:d4:f1:a9:2b:dc:d1:25:d2:89:b1:b8:be: 46:1a:40:b9:a5:63:89:cb:cd:61:e4:91:99:4f:5a: 10:89:f3:f0:af:85:fe:66:4a:d9:6c:a1:c4:ff:da: 39:3a:a3:15:cd:0d:f2:37:a0:f8:5c:3f:29:be:c7: 1a:54:40:de:cc:1a:7c:80:3a:86:64:ed:33:d2:17: 7c:93:29:e1:7a:be:9d:47:7d:66:cf:86:e0:f1:1f: 4b:00:53:2e:d3:60:a5:9f:57:26:e9:ea:9b:62:cd: c2:25:43:41:ca:bf:09:60:52:b4:47:13:b1:90:ee: 14:49:59:df:46:ab:92:a4:08:61:aa:96:46:5b:85: 1d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A9:76:A9:00:CF:32:77:CC:FF:96:8B:87:F0:6B:65:4E:8A:D3:30 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:5a:ea:ae:d1:38:65:31:d0:a8:ec:0b:d5:7b:4a:5d:34:7e: c8:2e:ce:e1:8f:da:71:8c:74:cf:55:47:de:09:fc:68:4a:46: df:79:c9:3f:63:57:27:f4:58:11:8f:ec:cf:78:14:c6:82:90: ac:73:a5:dd:3d:19:8d:34:13:82:74:06:79:82:e7:55:d7:43: 08:57:48:c1:b7:71:78:20:b8:8c:1e:91:c2:4f:c7:6a:7b:1a: 6c:ad:56:04:56:f8:f0:e3:e3:26:cc:96:af:f0:cb:52:7d:44: b9:0b:36:c6:b8:b7:88:ab:bf:22:9a:10:5b:27:32:7e:e3:00: f3:42:3f:cf:f7:37:70:5a:3a:93:91:c6:1a:48:ff:ab:57:01: e9:f7:be:58:a3:42:a5:cb:dc:e8:6a:53:04:e3:47:6b:2f:3e: 1b:c0:71:f5:27:99:d8:6b:51:6a:26:15:c3:b0:eb:f6:0b:ef: a5:41:19:7e:3a:78:09:14:75:2c:a2:0e:92:34:aa:dd:0e:d2: fd:f6:ee:fa:ef:37:20:cc:24:37:bd:be:1b:cb:34:f7:c6:0c: bd:0b:46:b2:22:15:3b:c6:b4:29:1e:f9:d5:0e:56:84:4b:73: fb:b3:e8:7c:80:19:44:4c:a4:78:72:e5:4a:5b:fa:b4:0c:36: b4:41:58:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjYwMTI0MjI1NjQ4WhcNMjYwMTMxMjI1NjQ4WjAYMRYwFAYD VQQDDA02OTc1NGUzMS1hOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3+7bkHRxRvhzPObrFBbphfp0nT5MeKd+9vQFEAv7FIuvHYd/OagEkt3CxZU SgZB9G4/swENoultes9Lp+ZC75QeL043R0iRtOjXVCPTHIb0+kwOca4s088j8z+T FzEsA/7t9zj3KKsSY5Q9Jpgc9b90Kx3vhvENwcDU8akr3NEl0omxuL5GGkC5pWOJ y81h5JGZT1oQifPwr4X+ZkrZbKHE/9o5OqMVzQ3yN6D4XD8pvscaVEDezBp8gDqG ZO0z0hd8kynher6dR31mz4bg8R9LAFMu02Cln1cm6eqbYs3CJUNByr8JYFK0RxOx kO4USVnfRquSpAhhqpZGW4UdmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCpdqkA zzJ3zP+Wi4fwa2VOitMwMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0Wuqu0ThlMdCo7AvVe0pdNH7ILs7hj9pxjHTPVUfeCfxoSkbfeck/ Y1cn9FgRj+zPeBTGgpCsc6XdPRmNNBOCdAZ5gudV10MIV0jBt3F4ILiMHpHCT8dq expsrVYEVvjw4+MmzJav8MtSfUS5CzbGuLeIq78imhBbJzJ+4wDzQj/P9zdwWjqT kcYaSP+rVwHp975Yo0Kly9zoalME40drLz4bwHH1J5nYa1FqJhXDsOv2C++lQRl+ OngJFHUsog6SNKrdDtL99u767zcgzCQ3vb4byzT3xgy9C0ayIhU7xrQpHvnVDlaE S3P7s+h8gBlETKR4cuVKW/q0DDa0QVjA -----END CERTIFICATE-----Generated at Sun Jan 25 04:36:34 2026 by rpki-client