This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: D0TXTR0Jfut18bYxQmeCq65HEdWd+TNZDxJhekdQcIc= Subject key identifier: 94:7E:77:A6:5C:AE:C8:80:3E:7A:DA:FF:D0:2E:A5:BB:1F:08:DE:FE Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 1091 Signing time: Sat 24 Jan 2026 17:25:19 +0000 Manifest this update: Sat 24 Jan 2026 17:25:19 +0000 Manifest next update: Sat 31 Jan 2026 17:25:19 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: vmMuEQJ/wUSq/v8ChjCal51gVOYJdWW7QoHtAJufaJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Jan 24 17:25:19 2026 GMT Not After : Jan 31 17:25:19 2026 GMT Subject: CN=6975007f-6302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c5:ab:80:2d:0a:01:ab:b1:48:85:21:71:d3: 39:b4:97:28:7b:18:9c:0c:6c:7a:29:10:37:50:d0: a1:49:40:a3:50:e9:06:66:16:d1:74:79:2c:67:8e: a5:d9:c8:e8:b2:e6:9c:10:48:19:d3:56:57:8d:ed: 14:08:de:ee:e9:70:c8:70:6e:11:53:f3:30:df:65: da:1f:61:ff:1a:94:97:41:73:f6:82:06:c6:1a:d4: 30:f0:99:c4:f7:38:ff:6e:4e:98:67:b0:13:99:4b: e8:42:eb:ee:37:ce:89:22:ff:5f:ff:e4:3a:01:13: f3:63:c6:4f:27:8e:e7:4b:cd:92:fe:52:9f:7d:65: 5c:92:49:45:03:e0:44:6f:a1:55:dc:14:06:56:0d: e0:23:e9:84:a3:bf:59:26:e3:c0:14:38:f8:f8:57: 89:51:08:10:92:5b:98:0b:7d:d4:08:91:09:b5:5c: a0:b8:f1:8d:e6:f9:a0:6a:1b:19:4c:64:ec:94:ba: e7:97:8a:ff:ae:89:e4:4b:d3:f7:7a:62:16:94:a3: a9:c4:63:48:da:7f:e8:fa:68:96:06:2a:10:ac:d6: ee:2e:ce:f6:32:6e:8d:64:9e:a0:2c:db:04:b8:a8: 9b:3e:a9:e4:5d:7f:74:ff:b4:20:1f:cd:4d:4b:b9: ab:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7E:77:A6:5C:AE:C8:80:3E:7A:DA:FF:D0:2E:A5:BB:1F:08:DE:FE X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:b6:4f:92:59:c9:9d:de:8f:a9:df:03:70:14:88:0e:31:fa: 64:2b:6a:c3:24:0e:f3:56:67:8c:27:eb:22:33:88:63:cd:17: 1b:70:e4:9b:5f:23:05:fd:86:d8:9f:f9:0a:8e:6d:4b:45:3e: 91:0e:62:4f:58:14:84:85:80:51:34:69:75:77:bf:16:5d:05: 86:4f:72:5d:93:95:59:46:1d:cb:a3:13:e4:c9:a5:06:3d:72: ed:ae:76:99:8f:f1:ff:24:1f:14:cf:38:14:08:90:9e:f8:9e: 76:88:17:8c:51:de:3e:27:96:47:e6:c9:0a:66:10:8f:60:a6: 71:a2:44:09:b4:2d:5f:68:4b:e0:de:ec:19:24:a6:ea:e8:a2: a1:70:ca:88:cf:e7:dc:e3:c8:b9:c9:ed:0e:8e:5d:d4:90:de: ec:22:a8:00:24:3b:c4:3e:32:f2:49:fc:5e:f5:4a:c3:41:b3: b3:2b:62:d8:cb:42:de:f2:60:85:32:58:be:f9:43:45:95:df: c9:39:ee:2f:37:25:ca:d7:6b:75:fd:60:8c:c5:44:3d:34:d1: 71:77:df:03:ee:23:d6:06:5d:33:1f:03:a6:97:ba:43:62:4d: 8c:8c:d1:be:99:18:f0:2d:ca:f5:05:b4:d6:3e:14:70:1b:de: 43:bf:1b:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjYwMTI0MTcyNTE5WhcNMjYwMTMxMTcyNTE5WjAYMRYwFAYD VQQDDA02OTc1MDA3Zi02MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsWrgC0KAauxSIUhcdM5tJcoexicDGx6KRA3UNChSUCjUOkGZhbRdHksZ46l 2cjosuacEEgZ01ZXje0UCN7u6XDIcG4RU/Mw32XaH2H/GpSXQXP2ggbGGtQw8JnE 9zj/bk6YZ7ATmUvoQuvuN86JIv9f/+Q6ARPzY8ZPJ47nS82S/lKffWVckklFA+BE b6FV3BQGVg3gI+mEo79ZJuPAFDj4+FeJUQgQkluYC33UCJEJtVyguPGN5vmgahsZ TGTslLrnl4r/ronkS9P3emIWlKOpxGNI2n/o+miWBioQrNbuLs72Mm6NZJ6gLNsE uKibPqnkXX90/7QgH81NS7mrQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJR+d6Zc rsiAPnra/9AupbsfCN7+MB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJtk+SWcmd3o+p3wNwFIgOMfpkK2rDJA7zVmeMJ+siM4hjzRcbcOSb XyMF/YbYn/kKjm1LRT6RDmJPWBSEhYBRNGl1d78WXQWGT3Jdk5VZRh3LoxPkyaUG PXLtrnaZj/H/JB8UzzgUCJCe+J52iBeMUd4+J5ZH5skKZhCPYKZxokQJtC1faEvg 3uwZJKbq6KKhcMqIz+fc48i5ye0Ojl3UkN7sIqgAJDvEPjLySfxe9UrDQbOzK2LY y0Le8mCFMli++UNFld/JOe4vNyXK12t1/WCMxUQ9NNFxd98D7iPWBl0zHwOml7pD Yk2MjNG+mRjwLcr1BbTWPhRwG95Dvxun -----END CERTIFICATE-----Generated at Sun Jan 25 08:16:16 2026 by rpki-client