This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft File: -kF5Yn9bJllOVjA1Ogt3heDWksU.mft (raw, json) Hash identifier: 6gHlu7O1qinsvNG1qsYQaW9R7sv2uXLl87zXz0K+hHs= Subject key identifier: 38:D0:FF:98:DB:FD:D2:15:8F:54:FF:5D:40:CB:41:08:52:77:A8:AA Authority key identifier: FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 Certificate issuer: /CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft Manifest number: 351F Signing time: Sat 24 Jan 2026 14:16:12 +0000 Manifest this update: Sat 24 Jan 2026 14:16:12 +0000 Manifest next update: Sat 31 Jan 2026 14:16:12 +0000 Files and hashes: 1: -kF5Yn9bJllOVjA1Ogt3heDWksU.crl (hash: O+a/DN2zDN2otn11YCAKURdEgYe9kXl5ZeoaBzsh18I=) 2: CDE36D52DB9511E99F3F673EC4F9AE02.roa (hash: jPHSUiUkbozR5N6j9xgdL/cbld0Q8j3JedxabqO04KM=) 3: BB8F87B4D4B011ECAA427351C4F9AE02.roa (hash: eRpbjrs7GTwfzhpVzYBrg6AgI/qzL8mQbPqmgl8ihsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Validity Not Before: Jan 24 14:16:12 2026 GMT Not After : Jan 31 14:16:12 2026 GMT Subject: CN=6974d42c-86ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e8:69:3d:57:3b:6d:86:da:74:b4:44:bf:ac: f7:36:01:17:05:2c:01:88:df:ca:47:3a:01:a5:d0: 33:30:b2:ca:7a:81:73:39:99:b4:c1:c9:b5:3b:87: df:ec:d5:4a:96:fe:f8:12:8c:f8:f1:0b:78:5e:42: 4b:8d:c5:a2:13:15:de:74:48:62:65:d9:a6:6a:49: d6:8d:a7:ba:61:98:13:3a:28:02:41:f0:1a:6e:6a: cc:78:42:84:a2:5e:d7:0a:3a:c4:a1:fc:f3:5d:af: 53:78:48:aa:3f:63:69:76:6c:85:16:6e:25:9b:74: d1:76:b1:88:82:ea:6c:39:c4:98:e8:1d:b9:5a:87: 1c:fb:c1:56:bf:e0:60:13:58:d5:a5:06:72:05:20: b4:e9:6a:40:a6:5c:33:fa:30:86:fd:d4:ad:49:09: 1c:40:32:73:ad:4e:e7:e4:af:9c:a9:ce:67:70:b8: af:f5:94:6a:70:aa:c8:a7:8d:ce:7f:cb:6d:b5:be: 46:b2:7b:ae:b0:f5:42:6c:e6:f5:8d:82:f3:e8:6a: 37:1e:df:9b:25:5d:05:f1:c9:d9:5b:78:48:4e:32: 20:d8:68:9a:9a:c2:9e:ef:8a:3e:80:77:17:8d:10: ed:b4:4a:8e:bc:ca:f4:da:58:af:c8:38:64:63:b3: f6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D0:FF:98:DB:FD:D2:15:8F:54:FF:5D:40:CB:41:08:52:77:A8:AA X509v3 Authority Key Identifier: keyid:FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ba:23:99:66:00:3b:8b:f2:71:93:04:16:98:c8:3f:3f:70: 7c:f9:7f:70:69:46:c9:f3:6c:39:9e:74:0a:2a:0b:f4:97:21: 0a:78:e9:74:ce:bb:88:b5:06:06:4e:fc:b9:d4:13:0a:46:53: f6:c1:d1:0d:9b:96:96:23:54:51:3a:3b:37:08:56:3f:2c:9a: 5b:cc:53:34:dd:26:5d:43:d1:e8:0e:42:6a:b9:13:35:b0:bb: d1:36:0e:cb:64:ed:c8:f7:9e:fc:79:ef:16:cb:c7:24:0f:f5: 0a:a7:82:41:76:7f:37:0f:b4:ec:cc:4e:83:75:49:78:c9:4c: 53:0e:02:2c:c7:71:75:93:a4:9f:ff:a4:e6:a2:9d:7b:f5:c5: b1:47:e3:ef:33:a8:74:6b:1b:af:df:f0:e9:0c:fd:9b:72:37: 82:25:3b:94:b8:b2:4b:80:27:f6:aa:72:d9:0d:44:26:e7:35: 35:66:d0:01:8f:75:81:b5:29:53:75:ec:c8:f5:c7:34:4f:34: 11:6e:a5:2e:0d:54:e0:7c:d9:a0:1e:e0:9a:70:9d:b8:55:95: f2:66:44:09:5b:eb:ab:65:67:bd:90:ab:44:ab:f8:dc:80:67: 18:25:6c:d5:58:4e:74:c4:5c:91:4f:a1:52:41:01:c3:57:d5: 92:73:16:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEZBNDE3OTYyN0Y1QjI2NTk0RTU2MzAzNTNBMEI3Nzg1 RTBENjkyQzUwHhcNMjYwMTI0MTQxNjEyWhcNMjYwMTMxMTQxNjEyWjAYMRYwFAYD VQQDDA02OTc0ZDQyYy04NmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ehpPVc7bYbadLREv6z3NgEXBSwBiN/KRzoBpdAzMLLKeoFzOZm0wcm1O4ff 7NVKlv74Eoz48Qt4XkJLjcWiExXedEhiZdmmaknWjae6YZgTOigCQfAabmrMeEKE ol7XCjrEofzzXa9TeEiqP2NpdmyFFm4lm3TRdrGIgupsOcSY6B25Wocc+8FWv+Bg E1jVpQZyBSC06WpAplwz+jCG/dStSQkcQDJzrU7n5K+cqc5ncLiv9ZRqcKrIp43O f8tttb5GsnuusPVCbOb1jYLz6Go3Ht+bJV0F8cnZW3hITjIg2GiamsKe74o+gHcX jRDttEqOvMr02livyDhkY7P2IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjQ/5jb /dIVj1T/XUDLQQhSd6iqMB8GA1UdIwQYMBaAFPpBeWJ/WyZZTlYwNToLd4Xg1pLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS85OUQ2OERDRTFE NjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45YkpsbE9WakExT2d0M2hlRFdr c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1rRjVZbjliSmxsT1ZqQTFPZ3QzaGVEV2tzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS85OUQ2OERDRTFENjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45Ykps bE9WakExT2d0M2hlRFdrc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRuiOZZgA7i/JxkwQWmMg/P3B8+X9waUbJ82w5nnQKKgv0lyEKeOl0 zruItQYGTvy51BMKRlP2wdENm5aWI1RROjs3CFY/LJpbzFM03SZdQ9HoDkJquRM1 sLvRNg7LZO3I9578ee8Wy8ckD/UKp4JBdn83D7TszE6DdUl4yUxTDgIsx3F1k6Sf /6Tmop179cWxR+PvM6h0axuv3/DpDP2bcjeCJTuUuLJLgCf2qnLZDUQm5zU1ZtAB j3WBtSlTdezI9cc0TzQRbqUuDVTgfNmgHuCacJ24VZXyZkQJW+urZWe9kKtEq/jc gGcYJWzVWE50xFyRT6FSQQHDV9WScxYB -----END CERTIFICATE-----Generated at Sun Jan 25 13:26:39 2026 by rpki-client