This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: gS/7ekK9u81tAt7XQ/fjVapnCRqvKxW7iOcj4KNLFBk= Subject key identifier: F7:70:A5:B5:CC:E6:AC:D4:11:08:45:71:DA:B2:4C:08:6E:91:59:4A Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 026B Signing time: Sun 25 Jan 2026 00:46:50 +0000 Manifest this update: Sun 25 Jan 2026 00:46:50 +0000 Manifest next update: Sun 01 Feb 2026 00:46:50 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: Gjfa/+7TX1zfbMzKWEVNg6tipty0dwA1iXai5rUoZN4=) 2: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) 3: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Jan 25 00:46:50 2026 GMT Not After : Feb 1 00:46:50 2026 GMT Subject: CN=697567fa-0c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:84:9a:1e:36:12:9e:d2:62:f6:71:e2:4b:fd: a3:16:4d:7c:21:27:f5:f0:e6:6e:e9:16:5f:4d:d5: fa:14:01:f6:a8:46:0a:55:33:2d:09:44:f8:ab:52: 65:76:32:95:d3:7b:97:ea:fc:73:0f:79:09:b2:c9: b1:c1:2e:1a:b0:de:3e:cb:eb:12:d2:54:a6:78:55: 8d:c0:74:b5:53:2b:79:87:4b:36:c2:e6:35:c5:c3: 56:97:de:d0:bd:93:cd:a3:5d:13:40:2a:5c:c2:72: f6:2e:db:88:38:80:d0:1f:41:60:20:23:3a:ac:0b: be:42:c4:f2:50:da:73:01:88:a3:a6:53:98:6d:45: 9b:0b:5b:67:6a:97:df:22:ee:65:4b:c5:13:ab:7f: d3:08:7e:92:69:e1:0d:03:3b:0a:12:78:61:a0:72: e1:3a:4f:a6:61:9b:f6:30:78:47:35:64:23:08:94: c3:fe:e1:d6:75:f7:e7:79:da:f5:e0:35:c4:4b:44: 9e:22:01:a8:49:20:4d:c6:a7:19:02:23:db:2d:41: 88:bc:e7:62:89:d4:03:7a:82:52:2f:dc:f0:ab:b3: 7c:9f:af:89:26:02:c2:f6:04:46:fc:90:53:02:fd: 15:d1:9d:2c:94:99:f1:89:2c:24:94:6e:3d:bb:34: 8f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:70:A5:B5:CC:E6:AC:D4:11:08:45:71:DA:B2:4C:08:6E:91:59:4A X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6c:49:47:7c:aa:4a:4a:06:95:fd:0a:e4:39:b4:b4:fb:ed: dc:5f:a2:21:2e:65:3b:61:fb:18:cf:eb:e4:5f:42:82:76:5d: ac:01:6a:ca:d7:12:d7:e6:97:2f:39:73:be:0b:f6:2e:46:78: 12:a3:2c:58:eb:2b:d8:f4:57:26:e6:0f:1f:fe:59:51:8e:4e: 04:a1:81:6f:f2:5f:de:71:6f:cf:3e:44:a2:3a:d5:71:9a:db: 54:62:62:b6:55:79:1e:d0:ed:0e:69:13:77:14:47:96:e0:12: 47:50:a6:64:1d:2d:b7:81:37:e5:9b:b6:96:cd:42:7d:3d:24: 58:1f:25:98:a5:ed:99:06:d3:cc:51:37:04:6a:3e:02:a9:3f: 2c:41:33:05:1c:9f:54:1f:d9:58:77:cd:ea:ba:18:c6:7c:84: fd:3f:dd:82:46:b2:ed:71:27:a7:6a:78:95:83:e8:28:9f:64: fd:ee:e0:95:75:ea:51:7a:c4:0d:42:1f:33:07:26:10:f1:6c: 59:fc:53:8e:c4:5f:03:6e:1f:83:b8:e2:9d:81:ee:fc:35:39: a7:3b:41:9e:e6:cb:d4:0f:82:9b:7c:b9:2f:cb:60:42:8b:00: 8f:02:a6:bd:49:0c:bd:19:7e:45:ae:1b:2a:31:d4:68:6e:1e: dc:14:1e:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjYwMTI1MDA0NjUwWhcNMjYwMjAxMDA0NjUwWjAYMRYwFAYD VQQDDA02OTc1NjdmYS0wYzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oSaHjYSntJi9nHiS/2jFk18ISf18OZu6RZfTdX6FAH2qEYKVTMtCUT4q1Jl djKV03uX6vxzD3kJssmxwS4asN4+y+sS0lSmeFWNwHS1Uyt5h0s2wuY1xcNWl97Q vZPNo10TQCpcwnL2LtuIOIDQH0FgICM6rAu+QsTyUNpzAYijplOYbUWbC1tnapff Iu5lS8UTq3/TCH6SaeENAzsKEnhhoHLhOk+mYZv2MHhHNWQjCJTD/uHWdffnedr1 4DXES0SeIgGoSSBNxqcZAiPbLUGIvOdiidQDeoJSL9zwq7N8n6+JJgLC9gRG/JBT Av0V0Z0slJnxiSwklG49uzSP/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdwpbXM 5qzUEQhFcdqyTAhukVlKMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXbElHfKpKSgaV/QrkObS0++3cX6IhLmU7YfsYz+vkX0KCdl2sAWrK 1xLX5pcvOXO+C/YuRngSoyxY6yvY9Fcm5g8f/llRjk4EoYFv8l/ecW/PPkSiOtVx mttUYmK2VXke0O0OaRN3FEeW4BJHUKZkHS23gTflm7aWzUJ9PSRYHyWYpe2ZBtPM UTcEaj4CqT8sQTMFHJ9UH9lYd83quhjGfIT9P92CRrLtcSenaniVg+gon2T97uCV depResQNQh8zByYQ8WxZ/FOOxF8Dbh+DuOKdge78NTmnO0Ge5svUD4KbfLkvy2BC iwCPAqa9SQy9GX5FrhsqMdRobh7cFB6F -----END CERTIFICATE-----Generated at Sun Jan 25 10:49:54 2026 by rpki-client