This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: WK3EIELM8kiXKt2PNBY2mEnArFeY176Eek8mSIlloPI= Subject key identifier: DC:5A:CD:83:1A:21:A2:D0:78:F5:DC:1D:BB:65:B2:DC:4F:B3:AA:14 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C89 Signing time: Sat 24 Jan 2026 18:07:28 +0000 Manifest this update: Sat 24 Jan 2026 18:07:27 +0000 Manifest next update: Sat 31 Jan 2026 18:07:27 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: DwALuswKN3qIaHLevbv97fdqbykXmbvAAUx9AV+5Olo=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: ft/ZmUMult3UW/hGoWnnHI/0VP/gMrTykIcZOvK6Eqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Jan 24 18:07:27 2026 GMT Not After : Jan 31 18:07:27 2026 GMT Subject: CN=69750a5f-e410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:91:8c:a2:17:98:98:76:7c:fd:bc:2d:12: ee:b8:97:9d:4b:14:56:36:39:90:67:5e:d8:a3:08: 3d:03:96:af:36:87:76:88:4b:fb:33:20:f4:50:33: 6b:f3:a6:13:12:3f:55:07:3b:e9:43:30:20:cd:a7: c2:25:50:96:bb:f9:bd:58:db:a4:6f:2a:03:00:9f: 52:89:02:a4:94:d2:48:8e:46:4d:a6:ed:92:52:58: 89:40:b5:48:f3:b7:ad:78:1f:27:2e:d7:d8:dc:ad: a2:dc:47:1e:34:e8:94:54:96:43:6d:dd:35:7e:b2: 19:81:8b:69:e5:98:97:47:1c:a6:cc:46:47:1b:3e: dd:7f:63:a0:9d:7f:39:67:68:fb:6a:1e:b3:11:66: 82:71:1e:92:c3:0f:a9:d2:6b:ba:87:cc:48:64:18: 14:7e:36:2f:98:f5:67:53:ff:75:b5:6d:bd:89:8c: 56:1f:97:c3:40:d5:4e:53:dc:29:5d:00:10:46:e8: 60:73:71:10:6d:a8:46:70:0a:34:87:34:0e:f8:34: df:63:e4:04:72:b4:8f:94:0f:ef:04:ef:a4:6f:eb: 9a:55:16:2e:80:ea:04:41:66:7c:93:c4:f9:af:3a: 42:5b:c7:3f:79:08:07:fd:55:80:9b:f3:47:cd:40: dd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5A:CD:83:1A:21:A2:D0:78:F5:DC:1D:BB:65:B2:DC:4F:B3:AA:14 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6f:ca:05:71:2d:9e:57:f0:e0:aa:bc:de:c0:9c:0b:17:16: 64:28:9b:e9:fd:19:11:1b:7b:b7:26:95:a3:d8:c8:4b:6d:24: ee:37:7a:13:1d:7e:60:c3:2d:4e:d2:9b:34:21:a5:8e:e5:55: 4e:aa:c5:bf:b8:15:d4:6b:83:fc:67:81:2c:6e:83:3c:e4:50: 8f:51:20:e2:e2:5a:ce:58:ec:25:ce:e1:dd:d0:01:c4:05:c7: c5:f4:f4:84:6d:d5:02:c8:23:9e:01:2a:da:91:b8:e6:eb:96: 1e:ad:8c:f7:c8:6e:c5:9b:5e:8f:36:b2:b7:ad:be:ab:59:e9: 5c:4f:27:6d:64:de:45:43:1b:61:b5:51:59:8c:12:25:12:e2: 19:65:b2:af:c6:23:14:cd:92:23:e4:e8:0b:03:7a:d8:d8:21: 49:e3:d2:3c:fa:4d:00:78:b7:e2:d8:9d:b7:bf:ad:d7:ff:15: 3a:59:cd:0c:78:da:62:5b:0b:02:39:b9:55:ec:0d:42:ae:43: 49:f1:29:d3:b1:15:7d:d2:a3:b8:b8:87:17:96:ba:b4:55:5d: 74:7e:76:35:63:98:d9:b6:18:28:7b:64:57:9a:6b:e7:6e:cf: 6a:22:ce:3c:bd:eb:df:16:3e:48:04:ac:76:9c:f8:29:bb:cf: 58:c0:7c:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjYwMTI0MTgwNzI3WhcNMjYwMTMxMTgwNzI3WjAYMRYwFAYD VQQDDA02OTc1MGE1Zi1lNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLaRjKIXmJh2fP28LRLuuJedSxRWNjmQZ17Yowg9A5avNod2iEv7MyD0UDNr 86YTEj9VBzvpQzAgzafCJVCWu/m9WNukbyoDAJ9SiQKklNJIjkZNpu2SUliJQLVI 87eteB8nLtfY3K2i3EceNOiUVJZDbd01frIZgYtp5ZiXRxymzEZHGz7df2OgnX85 Z2j7ah6zEWaCcR6Sww+p0mu6h8xIZBgUfjYvmPVnU/91tW29iYxWH5fDQNVOU9wp XQAQRuhgc3EQbahGcAo0hzQO+DTfY+QEcrSPlA/vBO+kb+uaVRYugOoEQWZ8k8T5 rzpCW8c/eQgH/VWAm/NHzUDd4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxazYMa IaLQePXcHbtlstxPs6oUMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKb8oFcS2eV/DgqrzewJwLFxZkKJvp/RkRG3u3JpWj2MhLbSTuN3oT HX5gwy1O0ps0IaWO5VVOqsW/uBXUa4P8Z4EsboM85FCPUSDi4lrOWOwlzuHd0AHE BcfF9PSEbdUCyCOeASrakbjm65YerYz3yG7Fm16PNrK3rb6rWelcTydtZN5FQxth tVFZjBIlEuIZZbKvxiMUzZIj5OgLA3rY2CFJ49I8+k0AeLfi2J23v63X/xU6Wc0M eNpiWwsCOblV7A1CrkNJ8SnTsRV90qO4uIcXlrq0VV10fnY1Y5jZthgoe2RXmmvn bs9qIs48vevfFj5IBKx2nPgpu89YwHyq -----END CERTIFICATE-----Generated at Sun Jan 25 09:06:36 2026 by rpki-client