This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: m9KnOQLiGe7jW2BWRNtjv4/ESs6Q9otgFYyEd0e6+VY= Subject key identifier: 4E:10:F9:8B:2B:88:0E:B5:BF:B5:DB:6D:69:A0:42:C6:CB:5E:C6:C1 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 011C Signing time: Sun 25 Jan 2026 04:00:58 +0000 Manifest this update: Sun 25 Jan 2026 04:00:57 +0000 Manifest next update: Sun 01 Feb 2026 04:00:57 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: Rwm8F7m9eI7A78P9KRpGOxNbKZllELaQzxqoJ7Q3Xqc=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Jan 25 04:00:57 2026 GMT Not After : Feb 1 04:00:57 2026 GMT Subject: CN=6975957a-1d58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3c:82:e0:fb:c7:67:8c:24:99:77:a1:c4:d6: b5:c2:ed:23:bf:d0:85:76:d8:95:c7:0f:07:87:61: 4c:97:c6:4b:3c:86:77:f8:a3:96:e9:de:d6:aa:5d: ca:6f:40:c0:a3:f3:4e:19:a9:6c:9a:3f:e9:b9:35: 44:99:8e:ea:f3:00:bb:23:30:b7:e0:e1:ca:e7:ff: 50:78:0d:26:ab:4d:2a:eb:15:3f:ea:67:e3:73:66: 64:8f:ad:f3:23:6d:bc:9a:95:29:ae:68:e0:4d:79: 66:55:33:57:e1:c0:04:03:d5:d0:7f:e4:21:93:b2: 20:74:4b:89:15:78:f9:1a:b3:e1:37:c5:0b:a2:8a: ea:67:f8:77:e8:cf:ea:0a:35:7b:1e:3f:74:05:19: cf:76:b6:e6:df:e7:8d:44:18:d5:4a:09:8e:a9:c4: 11:04:70:85:37:a1:9f:bb:94:2c:43:ad:1f:5b:6a: aa:97:ca:ab:2d:95:00:59:ae:86:d9:a1:ee:2c:b8: be:45:2c:4b:1f:b3:88:6d:95:55:a0:6a:4e:cb:14: 91:5e:ad:6b:99:4c:97:a1:f5:74:b1:d9:67:50:e6: 2c:67:fc:56:db:4c:9f:35:48:12:25:78:d6:04:13: ed:3b:6a:5e:e7:84:23:0c:eb:5f:82:88:68:b6:02: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:10:F9:8B:2B:88:0E:B5:BF:B5:DB:6D:69:A0:42:C6:CB:5E:C6:C1 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:c1:2e:94:4a:e1:58:b6:92:54:e0:af:13:b6:71:0f:b6:37: aa:1b:5f:f2:f2:78:0a:90:b9:77:eb:85:64:70:7d:03:d0:7b: 72:29:5b:c7:97:35:81:26:0a:18:4c:f2:49:4a:26:d8:07:75: 60:65:2b:10:4d:0e:d9:8b:b4:09:c7:3f:f2:4f:48:39:c6:85: 35:2d:39:11:3d:ae:a8:d2:24:6c:0b:ff:c3:07:e4:9d:65:a9: 36:45:b4:4e:99:f0:d7:dc:b7:80:c4:45:02:4c:c3:10:07:65: d9:c4:94:d7:e0:a0:8e:73:42:a4:24:51:74:9d:3e:f8:bd:10: cd:ec:22:a7:94:1d:74:66:de:3d:e7:4f:e8:d0:d3:ee:6c:6f: 7d:c7:0a:00:b2:42:13:28:d1:7e:ba:20:6c:b4:16:87:87:92: d4:58:6e:a0:d3:9d:d7:18:01:9e:61:3b:2f:89:09:38:d6:b9: 93:5f:b4:5f:8b:21:46:45:4d:dc:d2:e2:fa:77:19:62:90:b3: 98:70:74:ec:cd:f0:71:45:67:37:d5:0e:a8:64:47:d2:42:60: e0:ea:ad:2a:44:15:8c:b8:fb:0b:1b:93:88:41:34:5f:25:e1: 52:9a:42:4e:59:d0:16:a6:8d:ef:ba:89:36:fa:63:52:b0:96: 22:f1:76:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjYwMTI1MDQwMDU3WhcNMjYwMjAxMDQwMDU3WjAYMRYwFAYD VQQDDA02OTc1OTU3YS0xZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zyC4PvHZ4wkmXehxNa1wu0jv9CFdtiVxw8Hh2FMl8ZLPIZ3+KOW6d7Wql3K b0DAo/NOGalsmj/puTVEmY7q8wC7IzC34OHK5/9QeA0mq00q6xU/6mfjc2Zkj63z I228mpUprmjgTXlmVTNX4cAEA9XQf+Qhk7IgdEuJFXj5GrPhN8ULoorqZ/h36M/q CjV7Hj90BRnPdrbm3+eNRBjVSgmOqcQRBHCFN6Gfu5QsQ60fW2qql8qrLZUAWa6G 2aHuLLi+RSxLH7OIbZVVoGpOyxSRXq1rmUyXofV0sdlnUOYsZ/xW20yfNUgSJXjW BBPtO2pe54QjDOtfgohotgJNOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4Q+Ysr iA61v7XbbWmgQsbLXsbBMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFwS6USuFYtpJU4K8TtnEPtjeqG1/y8ngKkLl364VkcH0D0HtyKVvH lzWBJgoYTPJJSibYB3VgZSsQTQ7Zi7QJxz/yT0g5xoU1LTkRPa6o0iRsC//DB+Sd Zak2RbROmfDX3LeAxEUCTMMQB2XZxJTX4KCOc0KkJFF0nT74vRDN7CKnlB10Zt49 50/o0NPubG99xwoAskITKNF+uiBstBaHh5LUWG6g053XGAGeYTsviQk41rmTX7Rf iyFGRU3c0uL6dxlikLOYcHTszfBxRWc31Q6oZEfSQmDg6q0qRBWMuPsLG5OIQTRf JeFSmkJOWdAWpo3vuok2+mNSsJYi8XYo -----END CERTIFICATE-----Generated at Sun Jan 25 09:36:42 2026 by rpki-client