This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft File: vELDvIdcBnayn9eryfgbSpH9iok.mft (raw, json) Hash identifier: zWVo5g0dNIIOOTWzMkEjwuX7/5D9EoS10Rr/nTfv3Tk= Subject key identifier: 7A:0D:E7:EA:E3:16:52:97:6B:7F:88:32:25:2E:1F:78:C5:B7:53:A6 Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft Manifest number: 0100 Signing time: Sun 25 Jan 2026 04:22:50 +0000 Manifest this update: Sun 25 Jan 2026 04:22:50 +0000 Manifest next update: Sun 01 Feb 2026 04:22:50 +0000 Files and hashes: 1: vELDvIdcBnayn9eryfgbSpH9iok.crl (hash: hCqXVAA6Cfa2Y3nDRyMDV6wfEkbSTQgZkipBOs8lp8M=) 2: AAA33A7A74B011EF85E1C348C4F9AE02.roa (hash: Yfem0ULzhAFhugiZ6EqgmTLw2PppG/xG3d5GVT5T2K4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: Jan 25 04:22:50 2026 GMT Not After : Feb 1 04:22:50 2026 GMT Subject: CN=69759a9a-9e4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ef:bd:4b:65:92:df:3d:c3:6e:6c:10:26:2d: 22:c9:6a:30:e7:64:63:2d:d6:ab:5a:94:36:c4:b3: 97:b2:bc:bd:cf:ea:4c:8d:c9:90:10:c3:eb:5c:2a: 4c:cd:e9:12:e2:1a:07:09:c3:2f:92:f3:14:e0:f5: 26:9d:f4:9b:a7:b6:48:45:89:9a:96:06:c9:38:88: d0:ed:c9:b1:5d:38:2f:1f:ad:c3:05:cb:ef:bf:f3: 23:46:d9:a4:23:29:72:8c:45:aa:2a:f9:55:b2:c6: a8:80:f3:3b:c5:a6:8a:56:4d:35:c1:23:4a:c7:d8: 38:96:c5:52:ce:ab:67:41:97:bc:15:ba:6d:38:ad: 4f:34:78:84:a8:e5:86:6e:fb:ca:09:06:4f:25:64: aa:9f:7f:2f:08:80:54:99:f8:0f:b0:49:56:87:a9: f1:36:57:b4:32:c3:73:54:5b:c9:8b:ef:04:db:33: 97:59:f7:8f:3f:79:b9:38:ff:66:95:d9:c2:55:15: 09:64:42:e3:d6:35:a2:b9:ce:50:80:30:ef:29:80: 96:a7:c4:03:dc:d5:8c:8d:9c:3e:8b:fc:23:1a:d4: 3f:d8:d3:7d:ee:d0:92:3a:31:0f:3e:f2:1d:b9:0c: 35:7d:7d:a3:2e:13:bf:a1:8a:86:03:de:a3:9e:6d: 9c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:0D:E7:EA:E3:16:52:97:6B:7F:88:32:25:2E:1F:78:C5:B7:53:A6 X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:f7:9a:ff:55:9b:d0:e4:4d:52:2b:70:1e:ed:72:d6:ef:98: b1:ae:f2:f1:cd:54:c2:71:30:31:6f:93:96:b1:85:00:1d:c3: d6:98:88:5b:7d:73:44:20:fd:de:1e:58:73:c0:d8:e7:d4:3e: 4d:ad:96:8d:f6:7b:a9:7f:10:f2:d0:06:73:4a:fe:55:dd:71: 8e:41:4b:f6:19:94:64:08:26:03:cf:2c:2e:10:72:48:4d:8b: 83:a0:ae:20:4a:0b:bc:83:c6:db:50:d0:a6:e2:06:4a:92:29: 83:40:ea:52:75:44:bf:01:01:56:5d:d4:5f:7b:d7:a5:55:f3: 06:a6:91:e2:04:6d:36:11:a3:6b:1a:91:2b:5b:51:82:fa:c5: f2:b9:f5:a0:31:1b:01:a2:dd:93:37:35:73:07:4a:6a:61:04: bc:55:22:7f:42:c5:01:5d:37:af:c7:be:e0:14:92:1a:a7:2a: bb:ca:ee:29:fd:69:d6:16:ac:69:b1:aa:83:c4:89:f1:51:f4: 10:5f:df:77:4e:f5:5f:a5:d4:61:f9:9a:9d:d4:37:83:68:71: a9:a7:98:77:bb:c8:1e:a7:e6:c1:b4:99:3b:68:00:17:ca:a6: 9e:23:cf:2e:e2:7f:bc:22:b3:be:18:dc:a8:06:a0:97:18:8b: 86:82:64:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEMTQxMTAvBgNVBAUTKEJDNDJDM0JDODc1QzA2NzZCMjlGRDdBQkM5RjgxQjRB OTFGRDhBODkwHhcNMjYwMTI1MDQyMjUwWhcNMjYwMjAxMDQyMjUwWjAYMRYwFAYD VQQDDA02OTc1OWE5YS05ZTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze+9S2WS3z3DbmwQJi0iyWow52RjLdarWpQ2xLOXsry9z+pMjcmQEMPrXCpM zekS4hoHCcMvkvMU4PUmnfSbp7ZIRYmalgbJOIjQ7cmxXTgvH63DBcvvv/MjRtmk IylyjEWqKvlVssaogPM7xaaKVk01wSNKx9g4lsVSzqtnQZe8FbptOK1PNHiEqOWG bvvKCQZPJWSqn38vCIBUmfgPsElWh6nxNle0MsNzVFvJi+8E2zOXWfePP3m5OP9m ldnCVRUJZELj1jWiuc5QgDDvKYCWp8QD3NWMjZw+i/wjGtQ/2NN97tCSOjEPPvId uQw1fX2jLhO/oYqGA96jnm2cQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoN5+rj FlKXa3+IMiUuH3jFt1OmMB8GA1UdIwQYMBaAFLxCw7yHXAZ2sp/Xq8n4G0qR/YqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QxNC9DREIzQjlBQTc0 QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0JuYXluOWVyeWZnYlNwSDlp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QxNC9DREIzQjlBQTc0QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0Ju YXluOWVyeWZnYlNwSDlpb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB595r/VZvQ5E1SK3Ae7XLW75ixrvLxzVTCcTAxb5OWsYUAHcPWmIhb fXNEIP3eHlhzwNjn1D5NrZaN9nupfxDy0AZzSv5V3XGOQUv2GZRkCCYDzywuEHJI TYuDoK4gSgu8g8bbUNCm4gZKkimDQOpSdUS/AQFWXdRfe9elVfMGppHiBG02EaNr GpErW1GC+sXyufWgMRsBot2TNzVzB0pqYQS8VSJ/QsUBXTevx77gFJIapyq7yu4p /WnWFqxpsaqDxInxUfQQX993TvVfpdRh+Zqd1DeDaHGpp5h3u8gep+bBtJk7aAAX yqaeI88u4n+8IrO+GNyoBqCXGIuGgmQw -----END CERTIFICATE-----Generated at Sun Jan 25 14:07:36 2026 by rpki-client