This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: +8gfmPotBZDAEFFqx9nr28icGj6MMR/xGc+a4C+W4fA= Subject key identifier: A5:F6:A1:44:A8:F7:B1:4D:5A:2F:E8:CA:E3:80:F6:34:71:67:B3:7A Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 0217 Signing time: Sun 25 Jan 2026 02:12:45 +0000 Manifest this update: Sun 25 Jan 2026 02:12:44 +0000 Manifest next update: Sun 01 Feb 2026 02:12:44 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: kZZz25JOi6A4kbR53sHD97YlHl8ec//ybykOB3ZwHUU=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: MOCyDx3MMCgJ0iKiHYJPId15Yf0kFHcGhSay9PLqfd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Jan 25 02:12:44 2026 GMT Not After : Feb 1 02:12:44 2026 GMT Subject: CN=69757c1d-4cd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a5:40:b1:df:a5:4b:2f:53:de:41:46:cd:78: 1e:d9:0f:73:5d:40:ce:22:14:e4:49:9f:d1:d8:79: 9a:78:3a:be:04:bb:90:4b:dd:73:ab:76:67:a5:02: 86:0a:38:ba:3c:b2:b2:14:e1:93:90:ef:2e:0a:53: 96:36:4b:ef:47:a5:9a:c0:10:93:48:0c:a7:9f:f5: 2b:97:ad:65:36:ac:0d:03:a9:5a:b9:83:62:3f:4c: 6a:1d:31:9c:09:a2:ef:f2:05:36:2f:7e:df:30:36: c3:09:9a:93:d0:05:a3:45:40:ef:b0:16:33:ad:f6: 35:85:e8:65:46:97:56:9b:07:d5:7a:d5:c9:d8:6d: 67:fa:65:91:a9:d4:f9:87:55:07:ae:b4:3b:59:cb: f6:bb:95:1a:46:56:94:ff:2b:f6:b8:10:f4:67:1e: fc:e7:e0:72:a2:41:e4:b0:8b:98:a0:0b:de:93:1c: 4a:f5:c7:99:98:0c:92:c7:08:94:db:ba:9f:68:34: 30:9c:0a:6d:00:c7:f3:14:d4:31:b1:d8:7b:1f:a4: 14:4e:2c:fd:6b:66:ad:73:53:84:bd:01:12:97:0a: 5f:70:c2:df:23:92:5c:67:a6:a5:45:e1:89:1c:c4: 65:5d:ce:28:b0:73:e1:c9:ef:a6:9d:10:25:d3:f1: d6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F6:A1:44:A8:F7:B1:4D:5A:2F:E8:CA:E3:80:F6:34:71:67:B3:7A X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:2f:8e:f7:ca:01:6f:64:ee:38:b4:2d:23:18:d3:c5:58:a3: 05:7c:52:f1:1b:80:53:86:e0:50:ae:26:6d:3a:d7:42:2d:72: 77:44:cb:7c:a1:26:41:d7:80:38:5a:f5:52:fc:c3:92:b7:94: 02:d7:d8:3d:27:12:c3:c8:c3:43:1a:f2:83:46:99:1d:7f:da: c7:04:68:45:84:3a:4c:bd:aa:3a:02:e9:45:0b:0c:6d:aa:df: 59:97:9c:02:96:fe:13:fa:ee:0c:7a:a2:6a:42:38:f4:34:50: 81:bd:93:0a:76:fb:19:45:f6:59:71:70:53:e5:8b:e8:34:e8: 6b:8d:f4:64:f2:67:18:ab:c5:d8:71:af:c6:d1:e3:86:60:60: f4:32:5e:32:4c:7a:5e:40:bd:12:c8:25:56:d0:b9:4f:c8:4e: 7f:32:0c:74:06:89:87:b7:82:af:64:38:5a:ce:01:90:61:48: 31:3f:ce:80:ae:08:a2:e1:16:5f:35:b3:b2:b0:70:ae:0f:dc: 3f:31:f0:ae:fb:3b:9e:c7:65:c4:db:a0:6c:34:9d:c1:2c:f9: 23:b0:23:62:78:a3:53:1c:6b:91:f1:63:86:e1:0e:eb:ef:85: 15:0b:92:9f:c4:dd:fb:b3:48:2c:c9:35:53:83:39:6f:eb:f3: 37:d2:5f:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjYwMTI1MDIxMjQ0WhcNMjYwMjAxMDIxMjQ0WjAYMRYwFAYD VQQDDA02OTc1N2MxZC00Y2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aVAsd+lSy9T3kFGzXge2Q9zXUDOIhTkSZ/R2HmaeDq+BLuQS91zq3ZnpQKG Cji6PLKyFOGTkO8uClOWNkvvR6WawBCTSAynn/Url61lNqwNA6lauYNiP0xqHTGc CaLv8gU2L37fMDbDCZqT0AWjRUDvsBYzrfY1hehlRpdWmwfVetXJ2G1n+mWRqdT5 h1UHrrQ7Wcv2u5UaRlaU/yv2uBD0Zx785+ByokHksIuYoAvekxxK9ceZmAySxwiU 27qfaDQwnAptAMfzFNQxsdh7H6QUTiz9a2atc1OEvQESlwpfcMLfI5JcZ6alReGJ HMRlXc4osHPhye+mnRAl0/HW4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKX2oUSo 97FNWi/oyuOA9jRxZ7N6MB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAL473ygFvZO44tC0jGNPFWKMFfFLxG4BThuBQriZtOtdCLXJ3RMt8 oSZB14A4WvVS/MOSt5QC19g9JxLDyMNDGvKDRpkdf9rHBGhFhDpMvao6AulFCwxt qt9Zl5wClv4T+u4MeqJqQjj0NFCBvZMKdvsZRfZZcXBT5YvoNOhrjfRk8mcYq8XY ca/G0eOGYGD0Ml4yTHpeQL0SyCVW0LlPyE5/Mgx0BomHt4KvZDhazgGQYUgxP86A rgii4RZfNbOysHCuD9w/MfCu+zuex2XE26BsNJ3BLPkjsCNieKNTHGuR8WOG4Q7r 74UVC5KfxN37s0gsyTVTgzlv6/M30l9f -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:08 2026 by rpki-client