This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: AGlr2DxOryLFCfvTshsJnLRAKCVhrbCjeFtEVUpkdHA= Subject key identifier: 11:56:4C:47:F7:0B:E4:96:67:1B:FB:E6:43:83:1C:22:4A:CE:7F:D6 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 011F Signing time: Sun 25 Jan 2026 04:01:30 +0000 Manifest this update: Sun 25 Jan 2026 04:01:30 +0000 Manifest next update: Sun 01 Feb 2026 04:01:30 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: gwdiD1Hgm8QCeUYvfGBMpEM00WiqsvYfW1JJHNucNvU=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: EhK8/xLXAq8HktQOYDtYXFFFetl+/ika/P4aOFY5JJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Jan 25 04:01:30 2026 GMT Not After : Feb 1 04:01:30 2026 GMT Subject: CN=6975959a-ec4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3f:2e:d0:1a:94:57:6f:61:c2:46:47:89:91: 6d:7b:e4:b3:a6:ae:ed:bc:2d:32:15:2a:ad:9a:eb: 31:fd:9d:10:b6:3b:b4:a7:e4:d9:57:74:43:6e:e7: 42:46:7c:0a:fb:df:f3:80:bf:0d:f5:d8:a6:bd:bf: 76:6d:ed:a7:27:4e:d9:55:c5:83:de:04:8b:53:aa: a4:08:2b:4b:f6:6f:14:8b:03:4e:26:9a:64:34:b4: b4:7d:81:5b:44:e6:03:bb:d7:fa:b1:de:f2:1b:b4: 06:71:97:1f:56:17:d0:83:96:5d:8d:c4:ab:91:4c: a5:05:9d:05:29:30:bf:0c:16:66:99:00:e8:da:f3: 8f:f8:5e:c5:65:f9:3a:2f:bd:30:3c:b0:95:4b:70: 77:89:21:ea:d0:7e:71:e3:9e:7d:7b:a5:36:6c:e8: 7e:86:15:e4:f2:c8:0b:db:26:6a:03:56:91:26:c9: cd:88:6d:5c:8a:3b:db:d4:62:65:4f:a7:f3:b4:21: c0:b6:5e:b8:ef:c7:d0:14:dc:bf:1c:4c:5d:96:1b: 54:29:34:14:4f:bc:93:f5:55:16:96:1a:7b:d8:06: fa:6c:47:2b:de:e9:f7:ac:31:46:dc:ba:d0:5f:2c: 65:25:51:fa:84:1c:cd:b5:44:60:ea:85:4a:b8:1c: 2b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:56:4C:47:F7:0B:E4:96:67:1B:FB:E6:43:83:1C:22:4A:CE:7F:D6 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:2f:db:36:9d:6d:11:b8:48:ef:8b:8a:3d:37:05:ea:ba:d5: 32:56:e9:08:af:84:64:08:16:80:58:b6:ea:06:a7:03:f6:36: 1f:b3:ce:30:48:f9:d7:a5:c4:6c:ef:4d:56:a7:15:38:31:29: 85:1d:51:58:da:b8:32:7f:70:e8:b1:e7:0a:61:fc:54:87:6e: c4:66:52:8f:48:d9:3b:fb:fa:95:11:2c:84:ae:7d:54:98:7e: 11:85:0c:97:64:0b:d6:e4:9a:07:f1:ee:c8:79:59:80:35:16: 3f:c0:39:0b:7d:23:b6:eb:c5:90:96:bf:15:36:0c:b7:94:f4: cf:1c:c4:d1:26:33:b7:8d:ca:d4:ff:07:8c:03:b0:6b:87:81: af:59:8a:8f:9f:77:b1:42:02:9d:33:20:f3:c4:cc:28:7d:9c: 40:2d:fc:78:41:40:d8:e3:a1:13:d0:72:e6:0a:a1:7a:03:c2: 90:0e:0b:9d:17:31:3b:dc:83:30:34:23:fe:38:f8:38:5d:a4: d9:2b:6b:6d:62:e6:20:b1:1b:ba:9c:77:f9:75:79:eb:3c:57: b5:c2:39:97:e6:ab:cb:62:dc:b2:5a:05:0a:f3:01:b3:a9:9a: 38:36:de:e0:ef:87:19:cf:3c:4c:65:32:9e:05:3b:af:97:80: 95:13:2f:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjYwMTI1MDQwMTMwWhcNMjYwMjAxMDQwMTMwWjAYMRYwFAYD VQQDDA02OTc1OTU5YS1lYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApz8u0BqUV29hwkZHiZFte+Szpq7tvC0yFSqtmusx/Z0Qtju0p+TZV3RDbudC RnwK+9/zgL8N9dimvb92be2nJ07ZVcWD3gSLU6qkCCtL9m8UiwNOJppkNLS0fYFb ROYDu9f6sd7yG7QGcZcfVhfQg5ZdjcSrkUylBZ0FKTC/DBZmmQDo2vOP+F7FZfk6 L70wPLCVS3B3iSHq0H5x4559e6U2bOh+hhXk8sgL2yZqA1aRJsnNiG1cijvb1GJl T6fztCHAtl6478fQFNy/HExdlhtUKTQUT7yT9VUWlhp72Ab6bEcr3un3rDFG3LrQ XyxlJVH6hBzNtURg6oVKuBwrowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFWTEf3 C+SWZxv75kODHCJKzn/WMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgL9s2nW0RuEjvi4o9NwXqutUyVukIr4RkCBaAWLbqBqcD9jYfs84w SPnXpcRs701WpxU4MSmFHVFY2rgyf3DosecKYfxUh27EZlKPSNk7+/qVESyErn1U mH4RhQyXZAvW5JoH8e7IeVmANRY/wDkLfSO268WQlr8VNgy3lPTPHMTRJjO3jcrU /weMA7Brh4GvWYqPn3exQgKdMyDzxMwofZxALfx4QUDY46ET0HLmCqF6A8KQDgud FzE73IMwNCP+OPg4XaTZK2ttYuYgsRu6nHf5dXnrPFe1wjmX5qvLYtyyWgUK8wGz qZo4Nt7g74cZzzxMZTKeBTuvl4CVEy/A -----END CERTIFICATE-----Generated at Sun Jan 25 18:34:01 2026 by rpki-client