This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: E8jaEJ//IIFfoe342CF2cp+IJn2wfzvex73NUaFtU1k= Subject key identifier: A4:EA:D9:F2:8F:F1:84:38:66:26:E0:CE:BE:05:EB:AD:54:97:39:29 Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 28 Signing time: Sun 25 Jan 2026 06:44:42 +0000 Manifest this update: Sun 25 Jan 2026 06:44:42 +0000 Manifest next update: Sun 01 Feb 2026 06:44:42 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: 1T0mKZlGKH3jq/2dNLwVJH1+fG7bnVTtPp9T9sbJobs=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: 7K3qRA/N7rz2jfT0m6Hcbsd9SkfThsmVfXsBZYNY3Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Jan 25 06:44:42 2026 GMT Not After : Feb 1 06:44:42 2026 GMT Subject: CN=6975bbda-bf71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7e:21:c6:04:8b:a0:e0:4f:d2:d4:f7:74:00: d7:da:95:86:65:17:f3:ab:83:2e:12:e5:80:91:0e: 75:20:42:3f:cf:b1:a4:56:05:c1:d0:d4:98:5b:2c: 6d:bb:76:a9:86:eb:d3:4b:f6:ce:aa:f5:00:a1:83: 4a:a2:50:34:9a:87:97:8e:b1:a5:6c:a2:49:2c:96: 33:25:2e:73:b7:11:da:c6:b0:9d:54:85:86:3c:1b: 38:a0:0d:74:0e:42:1a:33:14:43:1a:20:b5:48:37: 55:cd:75:b0:f2:28:36:78:1a:59:71:27:b7:9f:5a: 95:81:4c:48:f3:40:27:5c:c7:35:63:71:86:3e:9b: b6:f9:13:91:71:3b:d2:03:63:7b:26:92:10:97:fa: b8:e1:64:10:22:e6:ed:7d:19:29:5d:98:87:27:08: c5:91:6d:03:9c:ae:91:9b:7c:0c:29:02:97:27:2d: 60:a7:1f:2c:a0:20:5a:f2:f9:61:4d:e9:bb:0f:e0: 59:ea:bb:a8:b9:5b:be:07:d1:af:05:fc:af:92:a5: d2:a2:29:e9:b3:bd:63:5d:70:18:c0:45:42:a8:c3: 61:15:4e:c1:f7:f2:32:15:07:5e:aa:b6:93:db:f3: 92:a7:55:34:50:14:5e:bc:bf:4b:90:cb:f6:96:f1: 1e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EA:D9:F2:8F:F1:84:38:66:26:E0:CE:BE:05:EB:AD:54:97:39:29 X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3f:cb:ed:2d:b2:b3:12:65:8f:e7:b9:1b:cc:d5:c2:91:14: 48:24:2c:83:45:b6:9f:d7:b4:e8:a0:bf:fc:e0:3e:7e:8b:82: d7:00:81:17:af:25:4f:c8:a0:0f:a5:bb:4b:eb:12:6f:d0:7d: d7:63:7a:c8:8b:5d:80:61:76:7e:eb:d3:fb:42:7c:b8:40:28: ee:cf:f9:7f:f2:a5:41:fc:ec:88:ba:8c:d4:16:3d:52:55:b6: d2:5a:51:31:da:4e:b8:36:c5:8c:40:8b:85:b2:5d:e3:89:2e: 46:7f:df:2b:63:a3:89:9f:15:18:5b:4a:7f:a9:fd:7e:0d:b8: 19:f5:ce:99:a8:24:23:03:99:c5:09:41:79:9c:8f:fb:82:fe: c3:c9:8b:40:ee:ea:c5:c1:e2:6b:c9:6e:7c:da:bd:c8:05:3e: 92:8f:11:b3:ee:8b:0f:83:61:c0:e3:d3:6f:0c:1f:4b:a8:95: db:49:c3:e1:1a:db:bb:32:79:af:fa:5c:a0:97:cf:15:37:4f: 5e:6f:2c:60:d7:8f:70:c9:f3:0f:6b:92:b3:b4:14:4d:d6:89: 6d:53:76:cb:7f:07:e4:3f:a4:b4:3a:f3:22:cf:1d:10:33:64: 42:43:6b:25:08:e5:a5:f4:3a:7d:41:3c:d5:44:6e:a9:65:17: ed:7d:f7:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNjAxMjUwNjQ0NDJaFw0yNjAyMDEwNjQ0NDJaMBgxFjAUBgNV BAMMDTY5NzViYmRhLWJmNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLfiHGBIug4E/S1Pd0ANfalYZlF/Orgy4S5YCRDnUgQj/PsaRWBcHQ1JhbLG27 dqmG69NL9s6q9QChg0qiUDSah5eOsaVsokksljMlLnO3EdrGsJ1UhYY8GzigDXQO QhozFEMaILVIN1XNdbDyKDZ4GllxJ7efWpWBTEjzQCdcxzVjcYY+m7b5E5FxO9ID Y3smkhCX+rjhZBAi5u19GSldmIcnCMWRbQOcrpGbfAwpApcnLWCnHyygIFry+WFN 6bsP4Fnqu6i5W74H0a8F/K+SpdKiKemzvWNdcBjARUKow2EVTsH38jIVB16qtpPb 85KnVTRQFF68v0uQy/aW8R6HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpOrZ8o/x hDhmJuDOvgXrrVSXOSkwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC4/y+0tsrMSZY/nuRvM1cKRFEgkLINFtp/XtOigv/zgPn6LgtcAgRev JU/IoA+lu0vrEm/QfddjesiLXYBhdn7r0/tCfLhAKO7P+X/ypUH87Ii6jNQWPVJV ttJaUTHaTrg2xYxAi4WyXeOJLkZ/3ytjo4mfFRhbSn+p/X4NuBn1zpmoJCMDmcUJ QXmcj/uC/sPJi0Du6sXB4mvJbnzavcgFPpKPEbPuiw+DYcDj028MH0uoldtJw+Ea 27syea/6XKCXzxU3T15vLGDXj3DJ8w9rkrO0FE3WiW1Tdst/B+Q/pLQ68yLPHRAz ZEJDayUI5aX0On1BPNVEbqllF+1996U= -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:28 2026 by rpki-client