This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: 8rA/ntkVlyJn17v4OGU0WSc459dLYpUvQxbP/CWCL8s= Subject key identifier: B8:E8:3B:CC:60:92:82:0E:38:3D:41:4E:4D:10:B7:30:50:FC:4D:8F Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 036E Signing time: Sun 25 Jan 2026 00:02:58 +0000 Manifest this update: Sun 25 Jan 2026 00:02:57 +0000 Manifest next update: Sun 01 Feb 2026 00:02:57 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: XWxhQWdCbQfpvxiYEtNHZGcdE0tYTopoGLrb7sSIn0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Jan 25 00:02:57 2026 GMT Not After : Feb 1 00:02:57 2026 GMT Subject: CN=69755db2-4e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b7:dc:89:6f:7c:fb:8b:ea:8f:01:29:c1:43: 2a:c3:1a:68:5c:6a:70:e5:54:d8:ac:e9:7b:a2:6d: 95:f5:a3:73:4a:62:5b:4a:dc:ae:3a:db:cf:e1:36: 1e:ef:fe:d1:0c:83:e9:ce:f3:fd:a9:09:fb:9d:19: 27:f7:0f:d0:3d:d1:2a:57:40:ec:60:03:1b:04:81: 9f:e5:02:d4:33:06:c4:c3:fe:a3:37:e1:ec:73:1a: 0d:a6:4b:04:1f:1e:2b:20:33:c8:a3:8d:cc:81:dc: 04:93:1f:d1:45:2c:e9:d4:c7:65:38:1a:30:8d:87: cf:b5:f5:56:d9:6e:2c:cd:5e:23:31:92:a7:c4:0c: 0e:01:c8:10:b9:e4:72:1f:45:fd:ef:da:33:e4:b4: fe:6e:92:f0:1f:de:19:6f:3b:bf:ab:65:04:49:a2: 83:b9:bd:15:3d:cc:26:b8:03:f7:53:3f:7a:2e:5a: 1b:dc:b1:19:66:c6:0f:6e:3e:d9:d5:9d:57:fc:b4: 94:28:57:01:2b:16:72:a2:3a:7a:e4:32:35:fc:9a: 65:c8:ee:c4:59:59:8f:b7:76:48:3c:4c:26:b8:5b: c8:74:9f:19:17:b0:dd:20:68:43:b5:b7:65:e2:a9: f8:29:54:4f:cd:7c:9a:22:71:16:28:9d:d0:11:d1: 76:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E8:3B:CC:60:92:82:0E:38:3D:41:4E:4D:10:B7:30:50:FC:4D:8F X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:2c:c8:c5:48:cf:6f:d1:94:3d:b3:fa:8d:51:4a:57:4e:eb: c9:8a:7d:b1:13:c0:03:19:16:8d:51:50:a6:77:6d:71:c1:bb: 0d:82:a6:8e:49:3c:5a:9c:97:e1:6b:e2:51:c6:20:28:22:7d: 48:0d:ad:1f:39:04:5d:e7:80:57:4b:48:65:aa:5a:71:61:21: db:89:d3:9f:35:75:4e:18:ea:3c:92:0f:30:d1:7f:16:bf:ad: 4b:9a:fc:4f:cf:0a:7c:6a:b4:13:33:15:fe:84:9f:1a:93:5c: 33:25:81:ce:71:6d:4c:fc:49:14:95:88:33:4a:32:b7:33:ef: 99:6f:87:1f:ad:45:57:3a:23:6e:c1:2c:bb:39:6c:d6:a4:a9: 7c:a1:dc:df:6a:f1:07:7a:af:f9:c2:c8:b1:68:a3:0b:8c:ff: 5d:c2:00:d7:32:08:f9:c7:00:47:57:34:d5:76:ae:fa:55:5d: 56:c7:6b:18:43:24:01:b9:36:c7:24:9b:ca:3f:f8:ec:c2:4d: 43:6d:d0:86:ba:11:f1:f3:49:2a:1e:24:88:5f:2c:6f:95:fa: 1a:0a:be:8b:14:ae:d7:b5:2e:ee:14:da:88:42:6d:99:dc:20: db:5f:b1:79:15:87:67:c8:32:26:6c:6b:d6:d2:e5:a8:42:4c: b5:7b:f6:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjYwMTI1MDAwMjU3WhcNMjYwMjAxMDAwMjU3WjAYMRYwFAYD VQQDDA02OTc1NWRiMi00ZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlbfciW98+4vqjwEpwUMqwxpoXGpw5VTYrOl7om2V9aNzSmJbStyuOtvP4TYe 7/7RDIPpzvP9qQn7nRkn9w/QPdEqV0DsYAMbBIGf5QLUMwbEw/6jN+HscxoNpksE Hx4rIDPIo43MgdwEkx/RRSzp1MdlOBowjYfPtfVW2W4szV4jMZKnxAwOAcgQueRy H0X979oz5LT+bpLwH94Zbzu/q2UESaKDub0VPcwmuAP3Uz96Llob3LEZZsYPbj7Z 1Z1X/LSUKFcBKxZyojp65DI1/JplyO7EWVmPt3ZIPEwmuFvIdJ8ZF7DdIGhDtbdl 4qn4KVRPzXyaInEWKJ3QEdF2ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjoO8xg koIOOD1BTk0QtzBQ/E2PMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsLMjFSM9v0ZQ9s/qNUUpXTuvJin2xE8ADGRaNUVCmd21xwbsNgqaO STxanJfha+JRxiAoIn1IDa0fOQRd54BXS0hlqlpxYSHbidOfNXVOGOo8kg8w0X8W v61LmvxPzwp8arQTMxX+hJ8ak1wzJYHOcW1M/EkUlYgzSjK3M++Zb4cfrUVXOiNu wSy7OWzWpKl8odzfavEHeq/5wsixaKMLjP9dwgDXMgj5xwBHVzTVdq76VV1Wx2sY QyQBuTbHJJvKP/jswk1DbdCGuhHx80kqHiSIXyxvlfoaCr6LFK7XtS7uFNqIQm2Z 3CDbX7F5FYdnyDImbGvW0uWoQky1e/bu -----END CERTIFICATE-----Generated at Sun Jan 25 04:35:15 2026 by rpki-client