This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: n2Gm2F2WU885HT86blyeMmxbVM61D8P4GhYrnjQGsiM= Subject key identifier: 86:CF:8F:99:A6:89:F2:47:CE:19:69:A6:72:96:E8:07:D6:54:2A:F9 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 84 Signing time: Sun 25 Jan 2026 05:46:38 +0000 Manifest this update: Sun 25 Jan 2026 05:46:38 +0000 Manifest next update: Sun 01 Feb 2026 05:46:38 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: wg/aM2mxa4BN4LxuD+cqvL+PsF5E6TN6tjHLLvBJsEE=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Jan 25 05:46:38 2026 GMT Not After : Feb 1 05:46:38 2026 GMT Subject: CN=6975ae3e-209b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1e:49:8b:df:f8:ce:fc:99:b4:cb:20:bc:10: 87:9e:74:a9:54:12:b4:0d:01:27:4e:9c:9b:e5:ea: 2c:9b:89:0b:6f:ee:67:24:79:5b:e1:c8:00:07:97: 8f:a9:55:57:43:d2:46:52:8b:90:f4:48:d3:86:24: 36:f6:da:78:f9:4d:dd:2b:f8:1f:02:58:85:f3:12: 29:65:a7:b1:8f:18:7b:8f:cd:9e:27:40:16:d5:8b: 13:3a:b2:9a:36:f5:ec:fe:63:e1:01:0c:15:5c:16: 8a:73:99:5a:37:f8:69:93:eb:8d:89:c0:d7:40:f5: fb:7d:a4:b6:72:53:68:97:2c:22:5d:bb:36:60:29: a5:e8:97:45:40:1a:61:8d:7d:0d:f1:d2:a0:f6:06: 51:73:1a:64:cf:ed:43:a2:c9:12:d1:1e:d4:8b:6d: 17:c4:98:8d:95:5b:c5:d1:63:b7:14:f7:c4:3f:90: 0c:6b:c4:5d:11:0e:4e:a0:02:83:63:e8:79:70:58: 33:10:ea:67:80:8c:cd:06:c2:ea:96:45:33:f9:2f: ba:41:9c:a6:b5:a8:1c:d1:f8:45:81:d5:04:af:a3: 49:47:fd:7a:0e:3f:49:52:da:0d:b0:d1:68:33:5d: 4b:5a:da:81:a8:17:c5:bf:74:a0:20:ba:cd:00:e7: 8b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CF:8F:99:A6:89:F2:47:CE:19:69:A6:72:96:E8:07:D6:54:2A:F9 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1e:e8:95:10:06:64:62:10:59:c6:2a:5f:d2:c8:26:40:ef: f7:ef:5e:0d:9d:37:6c:05:f9:e4:6b:c3:ab:83:73:2c:44:1c: 6c:0e:9d:fb:04:06:06:62:b0:ae:63:c5:84:52:0a:be:cc:29: d2:94:da:be:eb:77:c3:ac:4c:f7:8a:ed:c7:d0:aa:55:67:68: 4e:9a:b9:12:07:a7:29:aa:d6:ff:c8:6a:37:5a:ed:9d:dd:ea: 24:1e:77:6b:bb:70:c6:b2:2a:ec:c9:63:4c:2e:48:d0:03:34: f2:73:81:3c:2e:d2:76:69:37:2a:02:39:e0:4b:de:21:da:8a: af:0b:8c:51:65:20:fb:eb:30:5f:90:b6:17:d5:00:8b:ae:59: d7:44:a2:f9:80:f9:83:93:ed:c6:78:43:cf:7d:4e:c3:84:ab: 3f:9a:73:3f:a6:2a:ae:92:7a:f9:7e:f5:8a:b1:6c:0c:e6:2c: a1:35:7e:35:dc:44:6c:37:54:eb:20:1d:3f:9c:21:31:85:67: 20:14:33:aa:e4:22:70:41:cf:f0:08:dd:67:fa:84:75:82:3c: 11:91:2f:e9:92:af:bd:85:f9:43:5a:99:c8:10:06:f1:cd:5a: 54:4a:e7:4b:0f:c4:01:ca:e4:db:9e:aa:3a:43:42:6f:9a:db: 0b:76:80:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQyMDQxMTAvBgNVBAUTKDQ3RTk2QkY4MzFCQjNDQzQzQjRGMDc4NDI2M0U3Mjk1 ODc1RDU1MTYwHhcNMjYwMTI1MDU0NjM4WhcNMjYwMjAxMDU0NjM4WjAYMRYwFAYD VQQDDA02OTc1YWUzZS0yMDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAox5Ji9/4zvyZtMsgvBCHnnSpVBK0DQEnTpyb5eosm4kLb+5nJHlb4cgAB5eP qVVXQ9JGUouQ9EjThiQ29tp4+U3dK/gfAliF8xIpZaexjxh7j82eJ0AW1YsTOrKa NvXs/mPhAQwVXBaKc5laN/hpk+uNicDXQPX7faS2clNolywiXbs2YCml6JdFQBph jX0N8dKg9gZRcxpkz+1DoskS0R7Ui20XxJiNlVvF0WO3FPfEP5AMa8RdEQ5OoAKD Y+h5cFgzEOpngIzNBsLqlkUz+S+6QZymtagc0fhFgdUEr6NJR/16Dj9JUtoNsNFo M11LWtqBqBfFv3SgILrNAOeLswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbPj5mm ifJHzhlppnKW6AfWVCr5MB8GA1UdIwQYMBaAFEfpa/gxuzzEO08HhCY+cpWHXVUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDIwNC80NDFCNTA1MjMw MDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BNUTdUd2VFSmo1eWxZZGRW UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDIwNC80NDFCNTA1MjMwMDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BN UTdUd2VFSmo1eWxZZGRWUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUHuiVEAZkYhBZxipf0sgmQO/3714NnTdsBfnka8Org3MsRBxsDp37 BAYGYrCuY8WEUgq+zCnSlNq+63fDrEz3iu3H0KpVZ2hOmrkSB6cpqtb/yGo3Wu2d 3eokHndru3DGsirsyWNMLkjQAzTyc4E8LtJ2aTcqAjngS94h2oqvC4xRZSD76zBf kLYX1QCLrlnXRKL5gPmDk+3GeEPPfU7DhKs/mnM/piquknr5fvWKsWwM5iyhNX41 3ERsN1TrIB0/nCExhWcgFDOq5CJwQc/wCN1n+oR1gjwRkS/pkq+9hflDWpnIEAbx zVpUSudLD8QByuTbnqo6Q0JvmtsLdoDU -----END CERTIFICATE-----Generated at Sun Jan 25 20:09:38 2026 by rpki-client