This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: csewMjF5Bv6deSZqWlcbsksWcxBf1NgUy+Iy/m5PDBU= Subject key identifier: F7:B9:E7:92:C7:C7:69:9A:4C:F5:EE:78:87:E6:44:36:31:C8:40:57 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0EE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0EC6 Signing time: Sat 24 Jan 2026 17:21:35 +0000 Manifest this update: Sat 24 Jan 2026 17:21:35 +0000 Manifest next update: Sat 31 Jan 2026 17:21:35 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: 0DJNAjHB8r6mFVRBEfEEu6tNOdcpbGCNxfoJopKYxKE=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: k08HrzQA4orJaDMpNJ4cYiGD96bVzWAF2REZWm3ObQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3809 (0xee1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Jan 24 17:21:35 2026 GMT Not After : Jan 31 17:21:35 2026 GMT Subject: CN=6974ff9f-9edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:60:b4:83:a0:a4:55:d3:8a:2b:e0:3a:3e:97: 20:2e:82:dc:63:b4:43:2d:f0:8a:74:c5:79:53:e5: e8:9c:c4:c4:37:cf:b2:e1:e8:d9:2a:64:53:d9:6c: c5:2b:49:7b:cf:db:50:49:7f:a4:18:29:22:d4:01: 1e:51:c7:ad:2f:77:c2:37:3f:07:3d:5e:59:d1:da: 1d:99:53:67:73:17:dd:3e:79:de:c3:df:17:72:d9: 6d:6b:d9:de:df:1f:8e:c4:32:fc:b9:ed:2c:9f:a7: 43:6f:34:56:7a:46:a1:2d:17:d6:52:16:d2:c9:38: 40:5e:ac:84:45:9a:5f:d9:98:1c:79:90:43:ed:d7: 81:fb:78:ec:c7:23:db:11:86:84:e9:bd:4b:e5:2c: ac:4f:29:e3:85:36:4f:c3:fa:2a:b6:43:55:35:04: f8:28:b8:9e:b5:00:ff:cb:9f:4c:3c:7c:e6:98:be: 51:3f:4b:bf:28:dc:d7:07:0f:e5:38:bc:d3:ec:aa: b7:df:21:a2:fa:ee:bd:9f:43:d8:a3:dc:3d:77:9c: 37:10:ab:7b:05:e8:3a:2f:37:76:b3:78:bf:5a:57: f2:f3:2c:a8:e1:9e:dd:9e:86:e9:0d:5f:60:52:df: e6:31:32:9b:3d:ae:54:9f:ba:39:61:c2:52:33:1b: 03:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B9:E7:92:C7:C7:69:9A:4C:F5:EE:78:87:E6:44:36:31:C8:40:57 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a3:ec:fc:0d:b0:d5:c7:f8:6a:9a:42:c1:c7:79:3e:b1:b6: 64:9b:7c:15:8f:e7:ce:ca:c7:62:c9:c2:26:c7:ab:8f:c5:68: 57:95:1b:93:b3:8a:69:65:6d:73:57:a2:53:e8:5c:a1:30:47: f7:52:92:eb:6c:2c:78:1b:ef:b3:d7:ca:f8:f7:2c:61:3c:46: 88:ed:57:e1:0e:2d:be:51:c5:24:b8:e8:30:9c:00:af:ef:f7: 4d:0e:d7:91:fa:c6:bf:8b:3e:4b:17:05:46:12:91:ad:d7:0e: e2:b6:61:f0:81:5d:8d:0f:e0:31:0f:d2:27:27:15:7c:f7:df: da:a6:48:bd:3a:20:f2:96:40:d1:85:6d:48:0d:a9:66:4c:7f: ad:05:d3:85:e8:8f:5a:7e:4b:e6:96:f3:1c:2d:ac:3a:f0:a2: ef:72:6b:cb:80:12:02:d2:b3:0a:94:b7:c0:57:ca:7f:76:5f: 91:f2:c1:32:c0:ed:2a:7b:fb:c1:5e:94:0f:19:b7:25:24:1d: 0b:ba:48:56:a6:ac:b1:a6:c0:f7:59:68:3d:e9:2c:a6:a6:14: fb:4c:cb:12:7f:c1:d7:02:40:07:ff:fe:8f:aa:f1:9f:da:52: a5:f7:ce:45:e9:8d:9d:b4:4f:07:df:bd:cd:69:13:4c:cd:18: 27:24:df:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjYwMTI0MTcyMTM1WhcNMjYwMTMxMTcyMTM1WjAYMRYwFAYD VQQDDA02OTc0ZmY5Zi05ZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGC0g6CkVdOKK+A6PpcgLoLcY7RDLfCKdMV5U+XonMTEN8+y4ejZKmRT2WzF K0l7z9tQSX+kGCki1AEeUcetL3fCNz8HPV5Z0dodmVNncxfdPnnew98Xctlta9ne 3x+OxDL8ue0sn6dDbzRWekahLRfWUhbSyThAXqyERZpf2ZgceZBD7deB+3jsxyPb EYaE6b1L5SysTynjhTZPw/oqtkNVNQT4KLietQD/y59MPHzmmL5RP0u/KNzXBw/l OLzT7Kq33yGi+u69n0PYo9w9d5w3EKt7Beg6Lzd2s3i/Wlfy8yyo4Z7dnobpDV9g Ut/mMTKbPa5Un7o5YcJSMxsD7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPe555LH x2maTPXueIfmRDYxyEBXMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAo+z8DbDVx/hqmkLBx3k+sbZkm3wVj+fOysdiycImx6uPxWhXlRuT s4ppZW1zV6JT6FyhMEf3UpLrbCx4G++z18r49yxhPEaI7VfhDi2+UcUkuOgwnACv 7/dNDteR+sa/iz5LFwVGEpGt1w7itmHwgV2ND+AxD9InJxV899/apki9OiDylkDR hW1IDalmTH+tBdOF6I9afkvmlvMcLaw68KLvcmvLgBIC0rMKlLfAV8p/dl+R8sEy wO0qe/vBXpQPGbclJB0LukhWpqyxpsD3WWg96SymphT7TMsSf8HXAkAH//6PqvGf 2lKl985F6Y2dtE8H373NaRNMzRgnJN/V -----END CERTIFICATE-----Generated at Sun Jan 25 06:08:46 2026 by rpki-client