This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: Qery80sgTDerhmUVkbRef/NIkbnG8guijDKINkdahFo= Subject key identifier: 10:BE:CE:8E:B7:B4:54:43:33:49:67:E5:5E:24:27:DA:BA:37:48:BD Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 21 Signing time: Sun 25 Jan 2026 06:51:14 +0000 Manifest this update: Sun 25 Jan 2026 06:51:13 +0000 Manifest next update: Sun 01 Feb 2026 06:51:13 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: p91xHh53p4MnhTXUTufCsjp+REmSYBlhYLojFqRFAWY=) 2: 8D7D3942C9AE11F0A867D348C4F9AE02.roa (hash: f6LJ1o+/HlkVTaZ1lRAj/+eYOJXKRmJ8r7oZSOqaeL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Jan 25 06:51:13 2026 GMT Not After : Feb 1 06:51:13 2026 GMT Subject: CN=6975bd62-8ade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:60:50:2f:9b:ff:92:fa:b6:64:f7:e2:72: f3:bf:dc:b6:8c:51:7e:64:43:47:09:05:9d:59:26: 5b:1f:c8:8f:77:62:e3:f4:c0:8f:f9:95:51:6e:30: bd:82:ac:da:98:a0:4e:b1:b7:9b:b0:d2:8a:d2:54: 6c:20:1a:7c:68:11:a4:5b:19:3e:df:14:f5:fc:73: 09:fb:c1:70:57:3c:47:d5:9a:05:25:dd:26:7b:f4: fc:65:ed:b6:cc:1f:97:cb:bf:93:86:d4:ab:76:6d: b9:96:04:cc:28:66:ab:19:b8:f2:99:63:33:98:57: 05:ba:bf:4f:bb:0b:9a:f9:a8:68:8c:46:4b:8d:44: 0e:94:79:00:2c:70:21:b0:df:2f:99:60:d3:d7:9e: f5:74:8f:dc:31:8b:37:99:20:57:ae:d0:7c:46:53: f1:71:24:16:40:93:82:e3:ad:99:1f:9e:2f:fd:64: d4:12:05:05:ef:c3:35:22:8d:f9:78:b3:50:40:17: 9e:a3:f1:07:7b:45:95:9f:97:09:fa:be:68:fd:39: 3d:db:9d:3f:a9:8c:0f:7b:47:f9:a9:65:ff:88:97: 14:46:c9:bd:f1:78:e1:1f:f7:f7:36:f8:d7:2e:a1: 8b:0d:e4:c1:b6:62:e3:54:0a:c6:3d:c8:65:68:66: 5e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:BE:CE:8E:B7:B4:54:43:33:49:67:E5:5E:24:27:DA:BA:37:48:BD X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0e:d7:ab:f4:c2:16:d0:a2:0e:23:c6:41:00:22:b3:71:10: 90:80:77:72:fc:90:9d:d3:76:6f:32:0a:b2:d4:4c:dd:4b:4f: ff:dd:0e:a6:4b:fb:67:a8:e1:5d:d0:29:15:45:71:cf:a2:53: ee:bb:6b:8b:28:1b:95:bc:b1:71:91:e9:c4:8b:ab:12:fb:cb: 64:1e:94:db:c6:1d:15:3b:8b:bd:2f:78:af:5e:5e:52:b4:10: 00:8c:17:85:01:5d:c4:04:0f:88:b7:d2:3e:0f:b2:0b:8b:68: c9:30:d8:f5:ca:c4:93:1c:dd:f4:3c:5f:7e:cc:50:1c:2d:ba: fd:91:95:f3:b9:75:ec:4a:60:76:9f:89:64:ae:63:09:d9:40: 80:a5:18:53:12:6c:97:26:c5:48:84:18:d3:1c:4d:06:c0:9f: 9f:8f:5c:53:0c:bc:ad:15:78:a0:a0:f7:c0:53:2d:a0:38:53: 23:21:c5:f2:46:04:57:3c:9d:3c:bb:ad:cb:5d:98:c7:06:33: 72:82:5d:ab:50:6c:af:df:b8:d3:88:d5:64:35:ce:21:ac:25: 6e:a5:1f:b9:6b:c8:d8:1b:d0:4c:06:66:2c:81:86:09:b9:6a: b9:7c:69:df:d5:33:bc:de:cc:5e:f2:72:03:6c:d0:d7:e5:9e: 96:b3:5e:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNjAxMjUwNjUxMTNaFw0yNjAyMDEwNjUxMTNaMBgxFjAUBgNV BAMMDTY5NzViZDYyLThhZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDalmBQL5v/kvq2ZPficvO/3LaMUX5kQ0cJBZ1ZJlsfyI93YuP0wI/5lVFuML2C rNqYoE6xt5uw0orSVGwgGnxoEaRbGT7fFPX8cwn7wXBXPEfVmgUl3SZ79Pxl7bbM H5fLv5OG1Kt2bbmWBMwoZqsZuPKZYzOYVwW6v0+7C5r5qGiMRkuNRA6UeQAscCGw 3y+ZYNPXnvV0j9wxizeZIFeu0HxGU/FxJBZAk4LjrZkfni/9ZNQSBQXvwzUijfl4 s1BAF56j8Qd7RZWflwn6vmj9OT3bnT+pjA97R/mpZf+IlxRGyb3xeOEf9/c2+Ncu oYsN5MG2YuNUCsY9yGVoZl4fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEL7Ojre0 VEMzSWflXiQn2ro3SL0wHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB4O16v0whbQog4jxkEAIrNxEJCAd3L8kJ3Tdm8yCrLUTN1LT//dDqZL +2eo4V3QKRVFcc+iU+67a4soG5W8sXGR6cSLqxL7y2QelNvGHRU7i70veK9eXlK0 EACMF4UBXcQED4i30j4PsguLaMkw2PXKxJMc3fQ8X37MUBwtuv2RlfO5dexKYHaf iWSuYwnZQIClGFMSbJcmxUiEGNMcTQbAn5+PXFMMvK0VeKCg98BTLaA4UyMhxfJG BFc8nTy7rctdmMcGM3KCXatQbK/fuNOI1WQ1ziGsJW6lH7lryNgb0EwGZiyBhgm5 arl8ad/VM7zezF7ycgNs0NflnpazXp8= -----END CERTIFICATE-----Generated at Sun Jan 25 10:23:07 2026 by rpki-client