This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: ET5rLG3S9A6pu1+QhV5insud82ZJ0OuYoWTHtoqHHdM= Subject key identifier: 0E:C3:BF:5F:B9:95:F5:7C:5E:B2:23:A0:0C:41:FD:EC:98:7E:FD:5C Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0460 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0512 Signing time: Sat 24 Jan 2026 23:24:23 +0000 Manifest this update: Sat 24 Jan 2026 23:24:22 +0000 Manifest next update: Sat 31 Jan 2026 23:24:22 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: kyKoz5Sjf+MgX/K/esP3jPoyZrPCzT0YuCWnvdFvwjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Jan 24 23:24:22 2026 GMT Not After : Jan 31 23:24:22 2026 GMT Subject: CN=697554a7-30a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:37:37:2a:eb:47:30:1f:79:4e:c9:93:57:33: cd:e8:f9:42:b4:18:dc:c5:cc:68:fd:8c:af:b2:4d: fa:c3:77:7c:b7:43:13:12:d1:bd:2c:86:7e:9d:18: 1a:46:e4:78:4d:06:5e:b7:a0:cc:5b:14:df:87:3b: 70:40:0b:e6:66:43:6e:51:64:14:86:3b:a6:8c:7e: 37:33:e3:88:c9:58:e3:56:84:50:90:72:29:3b:87: dc:08:6c:21:4a:ab:5a:e1:d0:fc:b3:a8:4e:45:e6: b1:df:e6:d2:fc:30:01:a7:ac:01:4a:ca:0c:99:17: 31:aa:8a:fd:dd:0f:1c:db:42:5c:37:1b:30:df:b8: be:6a:aa:50:0a:11:10:1b:d8:80:db:cf:af:8c:b7: d7:46:4f:2c:7c:64:6e:9c:98:63:b7:75:f4:5a:3b: 30:03:1f:ee:d1:3e:0a:11:b9:11:e2:ab:6e:f3:97: 96:d3:8b:f7:47:d3:aa:b6:03:39:1a:51:80:67:a6: 5d:6e:83:1b:f8:3e:51:18:67:20:ea:bd:d8:ae:37: 3f:9c:83:44:35:2d:c0:af:51:18:36:31:ff:f5:83: de:d5:5d:f7:28:41:98:7c:e8:1f:99:8a:4e:e1:a0: be:6a:e3:a7:e0:48:16:df:03:19:91:32:d3:de:da: c3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C3:BF:5F:B9:95:F5:7C:5E:B2:23:A0:0C:41:FD:EC:98:7E:FD:5C X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:60:f0:0a:fb:a2:e0:3f:4c:b0:4d:f9:a0:e4:51:72:61:dd: 0a:2f:d1:02:88:fb:43:75:8c:af:43:76:f8:4b:c9:70:4a:63: 0d:ab:5f:4d:25:5f:8a:c9:51:db:3e:53:9f:43:1c:51:60:e8: 4c:55:7c:1f:db:d6:5c:69:b8:ef:49:14:8e:f6:f6:7b:48:61: 68:9f:6e:7d:bb:8a:08:ee:67:c1:03:c8:9e:ec:7d:3e:6f:da: e9:d3:30:38:5f:84:aa:4f:c5:82:e9:c8:b7:e0:29:9b:be:7e: f7:2f:e2:3b:9c:1f:03:7a:87:25:18:1b:99:b7:87:7f:36:c2: 67:93:45:71:af:93:dc:4b:d2:d2:d0:5f:81:7b:60:8c:85:42: d6:97:8e:d3:cb:8a:7b:a9:49:e5:38:a1:9d:75:a8:c8:32:93: 8f:80:98:1a:26:2d:52:b7:06:a5:f2:4d:67:60:d4:86:65:0d: 2f:5c:e0:bb:d9:a5:62:99:9d:be:d5:5d:d5:18:fa:43:fc:d7: 24:0e:7b:18:1e:b2:c7:98:23:9c:d9:42:37:b1:cf:4d:cd:50: 85:e7:78:bb:82:09:75:3b:01:85:e4:6e:ef:3a:b6:4b:94:52: fd:16:3d:4d:8a:86:64:37:2c:45:6e:84:cf:3d:d2:6a:8f:cc: 70:a7:69:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjYwMTI0MjMyNDIyWhcNMjYwMTMxMjMyNDIyWjAYMRYwFAYD VQQDDA02OTc1NTRhNy0zMGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzc3KutHMB95TsmTVzPN6PlCtBjcxcxo/Yyvsk36w3d8t0MTEtG9LIZ+nRga RuR4TQZet6DMWxTfhztwQAvmZkNuUWQUhjumjH43M+OIyVjjVoRQkHIpO4fcCGwh Sqta4dD8s6hOReax3+bS/DABp6wBSsoMmRcxqor93Q8c20JcNxsw37i+aqpQChEQ G9iA28+vjLfXRk8sfGRunJhjt3X0WjswAx/u0T4KEbkR4qtu85eW04v3R9OqtgM5 GlGAZ6ZdboMb+D5RGGcg6r3Yrjc/nINENS3Ar1EYNjH/9YPe1V33KEGYfOgfmYpO 4aC+auOn4EgW3wMZkTLT3trDEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7Dv1+5 lfV8XrIjoAxB/eyYfv1cMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvYPAK+6LgP0ywTfmg5FFyYd0KL9ECiPtDdYyvQ3b4S8lwSmMNq19N JV+KyVHbPlOfQxxRYOhMVXwf29ZcabjvSRSO9vZ7SGFon259u4oI7mfBA8ie7H0+ b9rp0zA4X4SqT8WC6ci34Cmbvn73L+I7nB8DeoclGBuZt4d/NsJnk0Vxr5PcS9LS 0F+Be2CMhULWl47Ty4p7qUnlOKGddajIMpOPgJgaJi1Stwal8k1nYNSGZQ0vXOC7 2aVimZ2+1V3VGPpD/NckDnsYHrLHmCOc2UI3sc9NzVCF53i7ggl1OwGF5G7vOrZL lFL9Fj1NioZkNyxFboTPPdJqj8xwp2kk -----END CERTIFICATE-----Generated at Sun Jan 25 17:05:35 2026 by rpki-client