This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: zASnoA1xlXajaP2f/itgHEO/P6nDfo0ph+2pQoiDXTM= Subject key identifier: A3:E8:66:C8:F4:F2:D6:6A:96:F0:B8:23:EC:52:D2:BD:20:C9:5C:31 Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 01A6 Signing time: Sun 25 Jan 2026 02:36:57 +0000 Manifest this update: Sun 25 Jan 2026 02:36:57 +0000 Manifest next update: Sun 01 Feb 2026 02:36:57 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: Cw+b/8J6S56euq8drb7g7rglBhEc0jzbINS/LV+g8aU=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: WlVbAYT9fiHzzxm704tgTYSSn+rIKNtEXDFFKehNTaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Jan 25 02:36:57 2026 GMT Not After : Feb 1 02:36:57 2026 GMT Subject: CN=697581c9-0f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:96:0d:36:70:d4:3a:b8:43:42:97:f7:62:9d: cd:12:08:01:70:62:a0:0c:71:93:6e:5e:5d:02:31: a2:41:43:6f:1e:c3:ba:dd:e2:88:71:7f:20:c2:22: f5:22:9a:be:b2:d3:62:ca:23:1d:dd:f1:9b:05:37: 0e:34:00:93:6c:01:a3:ae:55:27:1e:d1:9c:66:e0: 87:9b:65:3a:b7:56:1b:02:6a:00:f4:8a:16:fb:bd: db:3d:7c:e2:fc:49:56:9a:03:1c:1e:31:a1:df:78: ed:24:5f:7e:b4:fb:df:93:4a:2a:da:35:52:6d:aa: ea:63:59:ad:d0:a1:56:fd:fa:5c:e8:3d:95:b4:3f: f4:ed:b0:fc:75:7f:7f:a5:0d:e0:da:7f:93:ad:de: 7c:b8:e5:0c:79:0e:09:b8:4a:19:d7:d3:55:52:07: 84:6e:56:88:84:1b:7c:d4:76:65:87:1c:34:2d:b8: 54:dc:e1:bc:33:10:ad:9a:76:c6:1d:1f:46:fd:c0: 5f:48:21:9a:c5:dc:2d:15:d1:66:d5:7c:1f:95:f9: da:0a:09:74:7e:41:5f:30:6c:5a:21:ac:c0:d8:b4: be:4e:02:ed:4a:ec:56:28:66:60:71:23:87:c0:fe: 22:26:ff:75:a5:41:2f:26:c3:55:2a:94:3d:b7:d0: 6e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E8:66:C8:F4:F2:D6:6A:96:F0:B8:23:EC:52:D2:BD:20:C9:5C:31 X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:5f:d0:6f:ec:5b:3b:31:cd:48:87:98:a7:90:f9:4b:5d:cd: 16:af:c4:eb:c9:d7:df:b0:ef:82:13:ab:38:a4:a7:e9:2a:92: 84:3d:35:41:23:b6:36:35:13:70:5c:ea:72:86:06:0c:4c:ba: e5:ef:3e:a1:9e:ec:47:2a:b4:e2:9a:8a:ab:a6:3e:88:54:3f: 06:2e:6c:25:55:d6:33:e6:e5:c0:de:9e:95:e6:d5:11:9f:23: 6e:be:c6:9f:00:48:05:11:30:22:cb:1d:e2:60:81:e7:e7:1d: 01:71:dd:ab:ef:02:ee:96:a6:6b:1a:34:2e:1a:e2:9b:2c:6d: 9e:09:46:4f:4a:52:b5:d9:7e:12:64:d1:15:d2:81:bf:79:ec: 90:ee:86:a7:08:46:44:52:f4:f8:f6:6e:b1:66:2c:87:d0:b6: 10:45:33:fd:3d:1d:9e:58:ff:3a:bc:63:2c:55:d9:fd:4f:ff: c1:a1:5e:78:1d:a7:7a:9f:10:6d:42:be:df:bf:ec:97:76:56: b2:af:b5:48:93:61:3f:c7:c6:63:1c:32:9d:55:81:bb:63:bc: af:f0:7e:5d:4c:54:0e:20:83:be:36:61:a9:14:c6:1c:47:00: 72:f8:8d:ca:7c:a7:55:e0:9a:4b:a5:17:75:27:d4:ae:ec:9e: 08:06:97:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjYwMTI1MDIzNjU3WhcNMjYwMjAxMDIzNjU3WjAYMRYwFAYD VQQDDA02OTc1ODFjOS0wZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5YNNnDUOrhDQpf3Yp3NEggBcGKgDHGTbl5dAjGiQUNvHsO63eKIcX8gwiL1 Ipq+stNiyiMd3fGbBTcONACTbAGjrlUnHtGcZuCHm2U6t1YbAmoA9IoW+73bPXzi /ElWmgMcHjGh33jtJF9+tPvfk0oq2jVSbarqY1mt0KFW/fpc6D2VtD/07bD8dX9/ pQ3g2n+Trd58uOUMeQ4JuEoZ19NVUgeEblaIhBt81HZlhxw0LbhU3OG8MxCtmnbG HR9G/cBfSCGaxdwtFdFm1XwflfnaCgl0fkFfMGxaIazA2LS+TgLtSuxWKGZgcSOH wP4iJv91pUEvJsNVKpQ9t9BuEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPoZsj0 8tZqlvC4I+xS0r0gyVwxMB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGX9Bv7Fs7Mc1Ih5inkPlLXc0Wr8TrydffsO+CE6s4pKfpKpKEPTVB I7Y2NRNwXOpyhgYMTLrl7z6hnuxHKrTimoqrpj6IVD8GLmwlVdYz5uXA3p6V5tUR nyNuvsafAEgFETAiyx3iYIHn5x0Bcd2r7wLulqZrGjQuGuKbLG2eCUZPSlK12X4S ZNEV0oG/eeyQ7oanCEZEUvT49m6xZiyH0LYQRTP9PR2eWP86vGMsVdn9T//BoV54 Had6nxBtQr7fv+yXdlayr7VIk2E/x8ZjHDKdVYG7Y7yv8H5dTFQOIIO+NmGpFMYc RwBy+I3KfKdV4JpLpRd1J9Su7J4IBpfw -----END CERTIFICATE-----Generated at Sun Jan 25 06:18:06 2026 by rpki-client