This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: 4BuBn+Nv2I3eAh/TVjnW+EgQQwJySTlej/Mn25e7hws= Subject key identifier: 44:1C:54:E2:FA:DE:69:2B:27:E8:46:E8:4C:01:D8:00:9C:33:2F:47 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 0258 Signing time: Sun 25 Jan 2026 00:57:15 +0000 Manifest this update: Sun 25 Jan 2026 00:57:14 +0000 Manifest next update: Sun 01 Feb 2026 00:57:14 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: /pXnVEDQmvbAzKdrG7Fk10rD0RT/27wZPxrc2i3dJLQ=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: tX50rThQWeAbKIESIwrC0zdSKgD+i4OgX2qNIGi6fqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jan 25 00:57:14 2026 GMT Not After : Feb 1 00:57:14 2026 GMT Subject: CN=69756a6b-fe0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4c:2a:8b:ec:0a:fa:73:bb:e5:f1:06:67:0f: c9:cb:55:9a:41:7e:46:0a:82:0f:d7:68:40:0a:9d: 19:88:b6:4b:07:15:14:41:bc:8f:08:af:7a:62:66: 9e:2d:8f:20:cc:c3:93:92:4a:d5:f9:88:7c:a9:ed: e4:30:ac:45:be:b8:f6:df:14:53:b4:d5:2e:45:61: 45:99:5c:56:08:cf:7f:b1:68:2f:66:dc:b3:04:02: ec:7c:95:63:45:89:8c:07:d7:f0:f6:8b:41:c7:03: bc:fb:29:c6:1a:30:f7:60:0f:dc:6e:27:1a:48:e4: 78:0f:f5:12:79:df:df:1b:74:c7:34:68:ed:8a:38: b1:6c:b2:14:4c:52:e9:97:32:86:e9:71:2f:c1:bc: 04:35:0d:d2:c9:35:44:18:3c:fe:b8:cc:75:d2:c9: 91:c0:fd:e1:33:4f:bf:b6:60:95:7c:e1:7c:1a:84: 6d:00:11:51:13:6f:4b:8a:9b:5f:97:90:b3:3a:1d: 96:01:70:3e:42:49:28:9f:e2:3e:1e:37:cc:0e:73: 7a:d0:41:1c:c0:f7:95:ce:cc:d7:9a:d9:12:38:25: 23:fc:0d:d1:51:97:61:64:83:a2:a7:52:8a:d5:b1: a6:1c:cb:fd:5f:75:78:3a:b2:9e:e3:fb:91:7e:3f: e1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1C:54:E2:FA:DE:69:2B:27:E8:46:E8:4C:01:D8:00:9C:33:2F:47 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:42:41:7b:53:e7:97:45:e4:bc:72:2d:52:1f:92:ab:62:d9: ef:60:b4:16:bd:ce:cb:d6:a2:97:3d:5b:4e:53:cc:eb:fe:86: 32:35:80:cb:43:57:7a:91:4a:07:52:55:89:46:71:4e:02:ae: f5:c3:5a:9a:42:c6:9e:e9:63:43:55:f0:1d:90:7d:f4:d9:e9: bb:2b:3e:2e:15:38:18:39:f2:e0:db:9e:ce:b8:19:04:a0:38: 1a:48:52:c8:6c:6d:7b:39:fd:9f:2e:97:c3:f9:ca:ec:a6:19: 39:33:50:5a:a2:ef:d6:7d:dc:3d:3b:1b:4e:5c:3d:83:4b:34: 30:e0:bd:54:a7:f3:f9:98:58:20:d9:32:ea:b8:d7:74:74:77: 8a:c2:bb:11:29:9a:56:a4:99:b0:6a:a3:a1:de:57:06:da:ba: 2b:51:0f:69:43:43:9d:92:8e:48:c4:15:93:88:1c:6f:7d:1e: bf:3a:6d:da:9c:be:6a:7f:b9:40:58:e3:bf:09:09:06:51:95: a6:1c:45:93:e6:99:c1:f9:dc:86:29:c7:6c:55:4e:05:68:e8: 3f:e4:39:ce:28:0f:f3:6f:c2:0e:ea:6e:62:7f:57:88:4b:c6: e5:63:85:4d:4f:af:dc:99:dd:5a:e4:f6:8d:30:f1:d9:7a:e4: 62:ff:a8:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwMTI1MDA1NzE0WhcNMjYwMjAxMDA1NzE0WjAYMRYwFAYD VQQDDA02OTc1NmE2Yi1mZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEwqi+wK+nO75fEGZw/Jy1WaQX5GCoIP12hACp0ZiLZLBxUUQbyPCK96Ymae LY8gzMOTkkrV+Yh8qe3kMKxFvrj23xRTtNUuRWFFmVxWCM9/sWgvZtyzBALsfJVj RYmMB9fw9otBxwO8+ynGGjD3YA/cbicaSOR4D/USed/fG3THNGjtijixbLIUTFLp lzKG6XEvwbwENQ3SyTVEGDz+uMx10smRwP3hM0+/tmCVfOF8GoRtABFRE29Liptf l5CzOh2WAXA+Qkkon+I+HjfMDnN60EEcwPeVzszXmtkSOCUj/A3RUZdhZIOip1KK 1bGmHMv9X3V4OrKe4/uRfj/hYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQcVOL6 3mkrJ+hG6EwB2ACcMy9HMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXQkF7U+eXReS8ci1SH5KrYtnvYLQWvc7L1qKXPVtOU8zr/oYyNYDL Q1d6kUoHUlWJRnFOAq71w1qaQsae6WNDVfAdkH302em7Kz4uFTgYOfLg257OuBkE oDgaSFLIbG17Of2fLpfD+crsphk5M1Baou/Wfdw9OxtOXD2DSzQw4L1Up/P5mFgg 2TLquNd0dHeKwrsRKZpWpJmwaqOh3lcG2rorUQ9pQ0Odko5IxBWTiBxvfR6/Om3a nL5qf7lAWOO/CQkGUZWmHEWT5pnB+dyGKcdsVU4FaOg/5DnOKA/zb8IO6m5if1eI S8blY4VNT6/cmd1a5PaNMPHZeuRi/6iZ -----END CERTIFICATE-----Generated at Sun Jan 25 18:26:53 2026 by rpki-client