This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: l6X+/ASJJ4IyL/KbV0lf7oqRvLK98X15nlArRHXmW/8= Subject key identifier: 88:FD:41:02:E3:72:3F:C9:72:B7:65:DB:70:CB:2D:00:C4:CB:9C:8A Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: CD Signing time: Sun 25 Jan 2026 04:58:03 +0000 Manifest this update: Sun 25 Jan 2026 04:58:02 +0000 Manifest next update: Sun 01 Feb 2026 04:58:02 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: YX3bIMhdWOcAW1tIKspkGGcEtLn4FbWLZUbld4/E4K4=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Jan 25 04:58:02 2026 GMT Not After : Feb 1 04:58:02 2026 GMT Subject: CN=6975a2db-e30b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:eb:e4:ad:87:56:98:99:94:25:f5:d0:73: e8:a5:3f:e8:f5:96:4b:d9:d2:55:55:40:e9:9c:db: d0:b9:46:9d:aa:41:54:84:56:2c:6d:6a:26:d8:2f: d1:ac:9e:74:1b:b0:8a:bf:e9:af:8c:9e:4c:39:be: 13:c9:8b:46:80:94:8b:38:e3:a5:34:33:81:07:a8: df:c4:bc:ef:43:53:87:0b:8a:aa:76:24:30:fd:df: 6c:d4:33:be:ee:64:fa:f9:b6:d4:cf:aa:44:81:bb: 34:39:51:7e:c2:7e:ff:12:1e:da:be:0c:38:42:7a: d1:20:cc:b2:ef:07:96:ec:1d:c3:51:6d:87:70:10: f4:a8:be:95:76:e6:36:51:20:32:d5:a0:7a:9a:cc: 0f:e9:b8:bb:18:e7:03:8c:aa:6f:e9:d0:52:4d:31: c9:86:17:b7:7c:cb:a3:09:a3:0b:6a:36:b9:31:ed: 2d:74:b8:ae:17:51:2c:b3:c8:f8:e0:c0:9c:c6:11: 0b:29:cf:6a:1e:98:be:ee:67:27:cd:79:55:cd:29: 0f:70:31:95:36:80:ad:b7:41:33:1c:57:f6:4c:60: e3:e3:5b:52:a6:a2:8a:e6:ec:3e:00:97:c6:67:bf: 5a:8a:ca:af:ab:41:79:15:c0:35:5a:0c:c1:13:14: da:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FD:41:02:E3:72:3F:C9:72:B7:65:DB:70:CB:2D:00:C4:CB:9C:8A X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b7:1f:95:76:62:91:10:ed:c1:97:d0:d8:0f:3b:06:62:a3: 91:3d:6e:db:17:7b:e5:cf:56:96:47:d0:40:62:fc:b8:47:bf: 79:85:07:35:86:1b:87:2d:8b:b6:b6:6d:b4:e6:5b:5b:50:d4: a2:00:2a:83:9f:f4:2e:9f:92:98:0a:f7:ef:4d:33:14:ed:d1: bd:3a:93:7a:6a:fd:49:f3:84:92:f4:5c:95:20:57:ce:04:c6: c9:16:05:0d:4b:63:9b:57:ca:50:08:ff:b1:17:40:aa:46:32: 2b:70:de:e0:63:27:71:55:6b:1b:5a:bb:d6:b2:a0:ca:0e:7c: 3c:33:47:54:5a:72:89:90:8a:70:f2:bb:b9:30:24:f8:f3:3e: 24:e8:f1:ef:f6:0b:08:ea:77:53:f0:62:f5:85:34:02:c2:fc: 6b:56:d4:cf:3e:fd:74:90:af:5e:68:1c:97:31:34:c8:55:00: fb:31:1d:61:17:f4:af:49:6c:3c:83:bf:ad:3d:56:8e:8f:bb: f3:41:91:e0:59:ef:f3:6a:03:65:6a:ba:28:15:60:c5:f9:7e: ce:59:d7:b9:24:b1:d9:47:38:5a:d5:02:2f:b1:ed:bc:1c:7e: 9e:1f:ed:51:22:9e:2d:c0:24:37:10:f7:c9:cf:73:47:26:11: 95:49:06:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjYwMTI1MDQ1ODAyWhcNMjYwMjAxMDQ1ODAyWjAYMRYwFAYD VQQDDA02OTc1YTJkYi1lMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6/r5K2HVpiZlCX10HPopT/o9ZZL2dJVVUDpnNvQuUadqkFUhFYsbWom2C/R rJ50G7CKv+mvjJ5MOb4TyYtGgJSLOOOlNDOBB6jfxLzvQ1OHC4qqdiQw/d9s1DO+ 7mT6+bbUz6pEgbs0OVF+wn7/Eh7avgw4QnrRIMyy7weW7B3DUW2HcBD0qL6VduY2 USAy1aB6mswP6bi7GOcDjKpv6dBSTTHJhhe3fMujCaMLaja5Me0tdLiuF1Ess8j4 4MCcxhELKc9qHpi+7mcnzXlVzSkPcDGVNoCtt0EzHFf2TGDj41tSpqKK5uw+AJfG Z79aisqvq0F5FcA1WgzBExTafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj9QQLj cj/Jcrdl23DLLQDEy5yKMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7tx+VdmKREO3Bl9DYDzsGYqORPW7bF3vlz1aWR9BAYvy4R795hQc1 hhuHLYu2tm205ltbUNSiACqDn/Qun5KYCvfvTTMU7dG9OpN6av1J84SS9FyVIFfO BMbJFgUNS2ObV8pQCP+xF0CqRjIrcN7gYydxVWsbWrvWsqDKDnw8M0dUWnKJkIpw 8ru5MCT48z4k6PHv9gsI6ndT8GL1hTQCwvxrVtTPPv10kK9eaByXMTTIVQD7MR1h F/SvSWw8g7+tPVaOj7vzQZHgWe/zagNlarooFWDF+X7OWde5JLHZRzha1QIvse28 HH6eH+1RIp4twCQ3EPfJz3NHJhGVSQaK -----END CERTIFICATE-----Generated at Sun Jan 25 09:24:48 2026 by rpki-client