This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: 27jilNOVLXtacZo7elWgjyfzvrlx5Lp397OS2tBzvK8= Subject key identifier: 51:1D:99:F6:8D:AF:FA:83:96:C1:E4:88:15:88:6B:78:4A:3E:D0:03 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 8C Signing time: Sun 25 Jan 2026 05:40:57 +0000 Manifest this update: Sun 25 Jan 2026 05:40:57 +0000 Manifest next update: Sun 01 Feb 2026 05:40:57 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: 06aLFQdghMcCqVYqxce5lRhgRqudqcxhSfvx9YQBqIE=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Jan 25 05:40:57 2026 GMT Not After : Feb 1 05:40:57 2026 GMT Subject: CN=6975ace9-aaae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:ef:74:70:e1:f5:de:b9:4b:e2:5e:b6:6a: 73:0f:8d:3d:af:d8:26:ff:07:85:a3:0f:55:2d:5d: 7e:de:40:4a:e5:f0:ba:be:5b:14:56:17:f4:19:d7: 54:ef:10:92:0b:8a:11:73:46:44:6b:4d:e1:dc:2d: 2e:4b:02:37:7b:83:9f:2d:a2:7c:4d:c2:04:21:4a: bb:39:4f:bc:1c:a4:db:ad:3a:c3:89:67:f7:b5:33: 46:d2:07:61:0a:ca:ce:96:5e:91:7a:d6:90:40:6a: 0b:9b:f6:bc:0d:0b:06:1d:46:84:6e:25:5d:21:1d: 1b:cb:92:6c:e8:f8:43:d5:39:10:12:5d:ee:73:40: 94:9d:b7:26:dd:bb:ed:e2:bb:08:9f:e1:1f:00:cc: 1c:f3:57:d6:ac:83:cf:d2:75:89:fd:3c:b5:c9:4d: 72:d7:17:67:a4:ee:e2:df:7d:17:e9:c0:17:df:99: cf:2d:92:29:63:de:e9:24:3e:d7:7b:fc:b7:07:56: 59:32:4a:45:c8:a9:57:b2:d0:7b:e4:f2:c3:1c:4a: 33:f9:e8:99:8e:91:64:68:62:db:9c:16:27:43:a1: b6:df:59:f5:9f:e8:55:30:80:ca:a1:7d:fa:17:6b: 99:6c:0f:7e:5d:6b:b0:17:bb:20:ec:71:c3:dd:91: 4a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1D:99:F6:8D:AF:FA:83:96:C1:E4:88:15:88:6B:78:4A:3E:D0:03 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f7:5b:0f:1b:ec:aa:17:26:5b:05:9c:18:9c:0c:9c:ca:68: 92:ab:6c:b3:84:7f:cd:9b:0c:ce:ee:88:7b:f6:5d:56:84:f2: 57:c6:55:2d:75:35:b2:23:35:55:a3:a4:3d:0e:5e:20:db:a2: 05:bb:45:a6:0a:77:82:15:d5:17:82:5a:b6:4e:ac:73:0c:12: bf:9d:d5:29:94:c5:78:3a:20:17:83:84:80:44:e2:5c:39:cd: d7:ff:2c:a0:6f:d4:26:d8:50:09:96:75:c7:60:aa:43:14:04: 05:ea:06:82:7b:90:3a:d7:40:91:eb:32:cc:19:b9:02:52:70: 33:bc:3a:37:2d:4a:8e:b9:11:b4:27:10:69:df:cb:8b:0e:36: 5c:88:c1:87:a4:46:a8:1f:bb:ce:6f:bf:01:ff:2a:f4:2e:0d: 3b:c8:51:8b:e2:d1:e6:cf:3a:4c:2f:21:06:d6:69:41:f6:5b: 57:e5:0e:06:87:3c:09:5a:0c:5a:e5:53:76:21:f8:86:44:52: eb:01:b4:d1:ff:cd:0e:7b:ae:4c:58:e7:7a:13:2b:fb:15:3a: e4:c5:6e:bd:42:39:bb:1f:79:0d:c7:62:0f:34:95:7f:56:a0: 4a:ce:d0:6c:94:d8:c4:2f:2f:b3:7a:ca:db:f0:82:21:da:08: 4a:86:02:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjIxMTAvBgNVBAUTKDNGMzFGQjVEOEVGNDdEQUQzOEREOTJFQTFBODlFODg4 NzE0MDNBMzEwHhcNMjYwMTI1MDU0MDU3WhcNMjYwMjAxMDU0MDU3WjAYMRYwFAYD VQQDDA02OTc1YWNlOS1hYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjfvdHDh9d65S+JetmpzD409r9gm/weFow9VLV1+3kBK5fC6vlsUVhf0GddU 7xCSC4oRc0ZEa03h3C0uSwI3e4OfLaJ8TcIEIUq7OU+8HKTbrTrDiWf3tTNG0gdh CsrOll6RetaQQGoLm/a8DQsGHUaEbiVdIR0by5Js6PhD1TkQEl3uc0CUnbcm3bvt 4rsIn+EfAMwc81fWrIPP0nWJ/Ty1yU1y1xdnpO7i330X6cAX35nPLZIpY97pJD7X e/y3B1ZZMkpFyKlXstB75PLDHEoz+eiZjpFkaGLbnBYnQ6G231n1n+hVMIDKoX36 F2uZbA9+XWuwF7sg7HHD3ZFKrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEdmfaN r/qDlsHkiBWIa3hKPtADMB8GA1UdIwQYMBaAFD8x+12O9H2tON2S6hqJ6IhxQDox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCMi9DNEYxNTQ3MjIw MTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZhMDQzWkxxR29ub2lIRkFP akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9qRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjZCMi9DNEYxNTQ3MjIwMTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZh MDQzWkxxR29ub2lIRkFPakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX91sPG+yqFyZbBZwYnAycymiSq2yzhH/NmwzO7oh79l1WhPJXxlUt dTWyIzVVo6Q9Dl4g26IFu0WmCneCFdUXglq2TqxzDBK/ndUplMV4OiAXg4SAROJc Oc3X/yygb9Qm2FAJlnXHYKpDFAQF6gaCe5A610CR6zLMGbkCUnAzvDo3LUqOuRG0 JxBp38uLDjZciMGHpEaoH7vOb78B/yr0Lg07yFGL4tHmzzpMLyEG1mlB9ltX5Q4G hzwJWgxa5VN2IfiGRFLrAbTR/80Oe65MWOd6Eyv7FTrkxW69Qjm7H3kNx2IPNJV/ VqBKztBslNjELy+zesrb8IIh2ghKhgIf -----END CERTIFICATE-----Generated at Sun Jan 25 07:51:55 2026 by rpki-client