This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: 4YMZCjbBGc9+q0++ri8UnoE65Crr/wbEdn4CU3HA59w= Subject key identifier: FF:3B:FB:EE:30:B3:17:5F:04:89:1D:0F:F9:E5:76:40:B6:1F:7A:FA Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: D5 Signing time: Sun 25 Jan 2026 04:54:51 +0000 Manifest this update: Sun 25 Jan 2026 04:54:50 +0000 Manifest next update: Sun 01 Feb 2026 04:54:50 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: SJMYCJqpwMWzymfq3OC1yhLkCg8WRmPxMIBr1opcOs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: Jan 25 04:54:50 2026 GMT Not After : Feb 1 04:54:50 2026 GMT Subject: CN=6975a21b-6bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ca:63:3d:9a:e0:fa:cc:0e:ca:79:20:c9:0f: 29:68:15:55:fa:b3:b5:d8:21:7f:ec:92:5c:7e:17: e3:ef:94:b3:b2:f2:67:13:b0:6e:43:9d:66:48:48: b1:82:93:08:9a:a1:c6:d0:48:15:6b:46:50:f1:92: be:e0:a7:76:fe:6e:65:91:53:fe:92:a0:2b:8a:66: 27:35:a6:64:d6:98:6b:d1:0b:2b:ee:da:6b:e5:79: 5b:43:80:87:c6:61:3d:48:40:c1:7d:00:43:19:18: 3e:c7:61:ad:74:ff:30:cd:fe:c8:ae:0f:04:a9:c2: 63:45:9a:1b:76:47:62:53:23:80:72:e2:cc:90:f1: ab:9e:43:ef:7c:09:77:c0:25:49:92:a0:9a:32:aa: c8:a2:59:0b:d0:fb:16:f7:17:a3:fb:44:6e:86:59: 5c:77:f9:5e:9f:6c:4a:5a:6e:af:81:bc:a8:74:ae: 11:14:94:69:e1:63:47:74:a6:81:69:52:fc:fc:9f: 80:e2:fd:1e:45:f6:92:97:09:d9:e2:28:0e:47:86: 9c:56:3e:15:99:51:02:91:e8:50:9b:45:79:78:a7: 5a:d4:2c:71:6c:58:e7:b9:b7:a5:27:64:1d:fd:19: e4:23:0d:3e:41:88:41:8c:1f:f8:e1:7f:b0:38:4e: b8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3B:FB:EE:30:B3:17:5F:04:89:1D:0F:F9:E5:76:40:B6:1F:7A:FA X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:dc:98:bf:3b:f5:fe:5c:1d:18:92:29:f3:58:ac:ae:cb:2f: a0:e9:3b:2a:37:f1:a4:b7:89:a5:64:23:ab:a0:3e:d5:5b:fa: 6c:23:04:1e:80:ed:b0:7b:e2:8c:3e:93:77:f1:f1:64:a0:22: 0b:34:24:91:7f:10:f3:5c:cc:b9:e1:48:44:cb:24:5e:9e:8c: 55:a0:e1:f0:11:5b:72:c6:de:a2:80:45:f5:87:cd:ce:54:b6: 1d:6d:35:5e:ec:59:26:f9:82:f5:dd:85:7b:14:f5:7e:e1:82: b8:15:b9:f9:15:14:79:91:f0:87:cc:fe:d9:25:3e:14:0e:55: fa:fc:da:a0:61:2f:c3:10:d5:c7:f9:cf:e2:2e:dc:c1:25:68: fd:f5:70:4c:5c:42:16:68:d1:43:af:1b:e0:70:42:65:48:34: fa:c3:06:7e:b8:1b:b6:1e:2d:86:0c:11:ae:02:ce:3b:33:55: 01:2b:2e:45:7e:11:4a:dd:e3:b2:59:d0:03:20:ed:83:25:e3: 9e:63:2f:3f:4e:6f:07:4b:ea:23:de:57:11:22:3b:47:6a:97: 91:65:fc:6c:fc:66:f8:a2:05:e1:d3:58:7d:01:df:36:c7:ac: 30:35:20:1b:04:12:3e:6a:bd:12:b1:92:fd:db:40:c7:71:d4: 62:43:9a:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjczMkExMTAvBgNVBAUTKERDMTEzMEQ4NjE2QkFCQzZDRTA4OEY1RjIwRTY5NzE5 QTk5QzMyQkIwHhcNMjYwMTI1MDQ1NDUwWhcNMjYwMjAxMDQ1NDUwWjAYMRYwFAYD VQQDDA02OTc1YTIxYi02YmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cpjPZrg+swOynkgyQ8paBVV+rO12CF/7JJcfhfj75SzsvJnE7BuQ51mSEix gpMImqHG0EgVa0ZQ8ZK+4Kd2/m5lkVP+kqArimYnNaZk1phr0Qsr7tpr5XlbQ4CH xmE9SEDBfQBDGRg+x2GtdP8wzf7Irg8EqcJjRZobdkdiUyOAcuLMkPGrnkPvfAl3 wCVJkqCaMqrIolkL0PsW9xej+0Ruhllcd/len2xKWm6vgbyodK4RFJRp4WNHdKaB aVL8/J+A4v0eRfaSlwnZ4igOR4acVj4VmVECkehQm0V5eKda1CxxbFjnubelJ2Qd /RnkIw0+QYhBjB/44X+wOE64yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP87++4w sxdfBIkdD/nldkC2H3r6MB8GA1UdIwQYMBaAFNwRMNhha6vGzgiPXyDmlxmpnDK7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS8wODlCQzRFNkI2 MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4Yk9DSTlmSU9hWEdhbWNN cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS8wODlCQzRFNkI2MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4 Yk9DSTlmSU9hWEdhbWNNcnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu3Ji/O/X+XB0YkinzWKyuyy+g6TsqN/Gkt4mlZCOroD7VW/psIwQe gO2we+KMPpN38fFkoCILNCSRfxDzXMy54UhEyyRenoxVoOHwEVtyxt6igEX1h83O VLYdbTVe7Fkm+YL13YV7FPV+4YK4Fbn5FRR5kfCHzP7ZJT4UDlX6/NqgYS/DENXH +c/iLtzBJWj99XBMXEIWaNFDrxvgcEJlSDT6wwZ+uBu2Hi2GDBGuAs47M1UBKy5F fhFK3eOyWdADIO2DJeOeYy8/Tm8HS+oj3lcRIjtHapeRZfxs/Gb4ogXh01h9Ad82 x6wwNSAbBBI+ar0SsZL920DHcdRiQ5oJ -----END CERTIFICATE-----Generated at Sun Jan 25 12:10:35 2026 by rpki-client