This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: XWBzLFDFOgU+FeUWpToIbYwbA7Je+02a35cTr3YfQfk= Subject key identifier: 2D:A9:02:06:F4:4F:6A:32:D2:0E:B0:71:B8:19:6B:C6:7A:F0:B3:76 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 87 Signing time: Sun 25 Jan 2026 05:52:36 +0000 Manifest this update: Sun 25 Jan 2026 05:52:36 +0000 Manifest next update: Sun 01 Feb 2026 05:52:36 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: FEToRzETT5qgfEoxd1zrdei8ZkOpiYzs0rNBrywocbo=) 2: C3DCFE54EB2911F0BD7173483B6F56BC.roa (hash: P1bCh8NZHu89O2JXhqD66pQeX9ueew/dSonhzOMsaoU=) 3: 1FC17CE2EB2D11F0971959663D6F56BC.roa (hash: cDE3xKp+jZXdbfBYzrl27mukC0P3+LreHuJW5kB96qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Jan 25 05:52:36 2026 GMT Not After : Feb 1 05:52:36 2026 GMT Subject: CN=6975afa4-0933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:61:aa:2c:86:30:5d:89:fe:30:93:4d:7e:74: 53:30:e8:3b:41:f5:36:1c:07:77:31:5c:a8:8e:ab: 66:ed:42:7d:8c:4a:c8:41:5c:07:0e:d7:3b:1b:12: b3:89:0d:66:aa:80:f7:69:e2:4c:21:d4:19:49:ea: 35:c9:eb:a7:37:e4:95:14:6d:28:df:fa:c6:7e:ed: 2e:f5:d0:4c:41:73:ce:14:0d:8c:fa:99:ce:d8:86: 3c:79:9d:b3:79:35:6c:83:a9:90:ab:2e:92:b1:74: aa:81:45:49:b6:3e:d0:d1:4b:e5:c8:fa:b9:f9:91: 94:81:b2:fa:a6:51:ff:56:25:7d:ed:4a:2c:7f:99: 5b:72:f9:72:bc:95:50:b0:cb:40:16:4d:e4:25:8f: 60:53:66:33:99:62:48:c0:a7:b5:56:da:02:17:91: e8:15:8e:80:92:57:64:59:32:11:05:d0:4e:ac:75: d0:df:be:04:b1:44:46:70:09:bd:c1:75:78:75:af: ba:a9:f3:f3:90:a7:47:01:89:fd:ad:5b:1c:b2:60: 49:13:c7:07:c4:8b:1c:2b:50:e3:07:f9:aa:df:60: 5f:41:fe:f6:e2:f6:ab:62:28:e8:b9:43:1d:55:94: 7d:68:ea:67:f9:dd:c3:09:c6:8c:f7:b6:47:f3:44: ed:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A9:02:06:F4:4F:6A:32:D2:0E:B0:71:B8:19:6B:C6:7A:F0:B3:76 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:3e:ec:77:3e:36:b1:97:f0:30:4c:ae:98:08:e5:6b:55:50: be:0f:50:63:6b:4d:17:a5:a6:6b:82:6a:c5:12:ef:ed:1f:fc: b3:13:6b:88:73:1b:b9:fe:5b:3a:fe:5d:8c:0c:cb:38:48:69: 88:7b:5a:48:51:7b:13:d2:a7:d6:09:fc:b8:bb:03:e6:bd:2c: 18:f5:5c:be:e1:ae:99:01:20:9b:19:05:ac:50:46:d8:3d:99: 70:fd:44:c0:32:63:88:69:61:d8:1e:38:41:1d:a2:90:2d:40: 83:dc:b5:c8:4d:a5:83:86:fb:10:23:39:d3:13:22:a4:f0:45: d7:af:b1:07:b9:7a:e3:d3:52:ae:41:b6:a5:bd:3f:89:cf:74: f1:6c:b4:5a:da:56:e9:94:09:6d:07:71:34:e2:9d:f3:bb:80: ce:f0:9e:a1:21:b2:1c:00:10:69:a2:0b:0c:eb:8e:ea:74:eb: 56:b7:35:29:5e:2c:29:90:1c:6b:bf:40:ae:42:05:3e:98:26: d9:1f:d1:4a:e2:df:3f:34:36:11:27:c4:ee:5c:e8:44:e1:d0: 51:cf:6e:b0:9e:55:ca:0d:5e:e1:ad:d0:68:d1:be:2b:13:d4: 40:38:72:b6:5a:28:28:cc:a6:6d:3a:b6:85:63:b6:a4:06:ef: c3:5b:6c:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFNUIxMTAvBgNVBAUTKEFCNTNEOTkyODEwMkI5MTlEQjdDNTQ2NUM4REQ1RkYy NjY3NDQzQjMwHhcNMjYwMTI1MDU1MjM2WhcNMjYwMjAxMDU1MjM2WjAYMRYwFAYD VQQDDA02OTc1YWZhNC0wOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmGqLIYwXYn+MJNNfnRTMOg7QfU2HAd3MVyojqtm7UJ9jErIQVwHDtc7GxKz iQ1mqoD3aeJMIdQZSeo1yeunN+SVFG0o3/rGfu0u9dBMQXPOFA2M+pnO2IY8eZ2z eTVsg6mQqy6SsXSqgUVJtj7Q0UvlyPq5+ZGUgbL6plH/ViV97Uosf5lbcvlyvJVQ sMtAFk3kJY9gU2YzmWJIwKe1VtoCF5HoFY6AkldkWTIRBdBOrHXQ374EsURGcAm9 wXV4da+6qfPzkKdHAYn9rVscsmBJE8cHxIscK1DjB/mq32BfQf724varYijouUMd VZR9aOpn+d3DCcaM97ZH80TtBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2pAgb0 T2oy0g6wcbgZa8Z68LN2MB8GA1UdIwQYMBaAFKtT2ZKBArkZ23xUZcjdX/JmdEOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0U1Qi9EODRFN0JGMjND NkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VSbmJmRlJseU4xZjhtWjBR N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0U1Qi9EODRFN0JGMjNDNkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VS bmJmRlJseU4xZjhtWjBRN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8Pux3Pjaxl/AwTK6YCOVrVVC+D1Bja00XpaZrgmrFEu/tH/yzE2uI cxu5/ls6/l2MDMs4SGmIe1pIUXsT0qfWCfy4uwPmvSwY9Vy+4a6ZASCbGQWsUEbY PZlw/UTAMmOIaWHYHjhBHaKQLUCD3LXITaWDhvsQIznTEyKk8EXXr7EHuXrj01Ku QbalvT+Jz3TxbLRa2lbplAltB3E04p3zu4DO8J6hIbIcABBpogsM647qdOtWtzUp XiwpkBxrv0CuQgU+mCbZH9FK4t8/NDYRJ8TuXOhE4dBRz26wnlXKDV7hrdBo0b4r E9RAOHK2WigozKZtOraFY7akBu/DW2yp -----END CERTIFICATE-----Generated at Sun Jan 25 13:59:27 2026 by rpki-client