This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: Q6OA7V2uoJovw265J2FgaS0c63CxHxGpvd1jK8A63Iw= Subject key identifier: 67:CB:EA:32:44:0E:FF:BD:F8:62:95:63:F8:89:83:F2:83:E3:A3:0D Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 13AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1B44 Signing time: Sat 24 Jan 2026 16:41:49 +0000 Manifest this update: Sat 24 Jan 2026 16:41:49 +0000 Manifest next update: Sat 31 Jan 2026 16:41:49 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: 6vx7zbrwXvq3SkIRGAC58lQsNoXJWLSyyW2BpWCnzy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5037 (0x13ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Jan 24 16:41:49 2026 GMT Not After : Jan 31 16:41:49 2026 GMT Subject: CN=6974f64d-dd56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ee:a5:49:f0:f9:f4:ff:07:ee:73:8c:e4:0a: b1:35:74:68:a4:f0:30:81:a9:39:85:1e:e5:32:69: 29:67:bd:3a:f2:34:d3:16:f3:b2:f8:6a:5e:75:1d: 10:ab:79:24:5a:fe:1d:d9:16:c5:41:53:6a:ec:d8: fe:b3:ae:4f:9b:fc:29:1c:60:aa:6d:f7:a6:f1:87: b8:02:49:f2:b3:89:7f:71:fa:76:2b:6b:71:65:4c: ec:b7:8e:bd:07:ad:2f:2d:81:fc:f0:8a:8a:4e:03: f9:69:01:a2:67:9e:c4:fd:51:55:74:48:fa:7b:b4: a8:b2:ee:c4:a8:7b:d3:c7:20:d3:61:25:50:80:15: 1a:6f:99:50:6b:9f:4b:8c:19:f6:c4:1f:5c:ef:39: 12:cf:76:1b:b4:ab:da:5d:54:a3:8d:70:c9:ec:89: 23:00:ca:88:17:23:65:4f:ab:5a:e4:15:49:c6:47: e9:f5:8e:56:a2:2a:45:84:8f:62:16:81:8b:0b:ea: 35:93:a7:44:83:6e:4f:8b:2f:9b:91:16:be:05:03: 98:83:7d:73:2b:f8:bc:0e:90:08:ca:60:97:c9:af: df:4e:cc:69:99:a5:0b:78:15:84:61:47:85:06:04: f9:28:92:90:a9:93:f8:85:47:7e:5b:d8:a0:aa:b9: b1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CB:EA:32:44:0E:FF:BD:F8:62:95:63:F8:89:83:F2:83:E3:A3:0D X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:5c:de:b4:7e:f0:e4:45:88:b9:9a:39:d0:a4:ca:d6:c5:78: ac:72:46:fd:c1:82:dc:3a:a4:95:a2:f7:d5:30:b3:c6:ca:81: ac:0a:d3:6d:0a:71:3c:b5:89:9f:5f:b5:2c:e8:36:5e:56:95: 7f:71:74:74:ff:7e:45:07:8b:af:57:58:29:6c:f7:d8:1a:db: fc:fc:6b:7b:0a:24:0f:eb:38:4e:ab:07:9e:6a:90:60:a1:64: 43:f4:6b:02:cd:14:ab:69:ba:0a:7d:ff:97:66:31:9d:a1:82: 44:5c:0a:65:a5:9c:19:4d:90:06:a3:68:37:77:3d:d7:d0:b2: 61:d3:32:9e:d2:be:72:00:98:99:a3:f0:fa:86:d1:13:c4:5c: cf:9d:6f:e4:8f:a6:48:4e:c3:a8:eb:2c:fb:49:6c:c7:1e:39: 7f:51:52:19:b4:d3:98:ba:a0:df:40:79:95:88:c2:78:da:40: e4:82:69:e8:74:a8:7a:da:84:a1:57:63:5d:c8:31:8c:88:f8: 35:95:ac:a1:5b:06:72:75:b2:df:e4:1e:8d:bb:33:29:4d:28: 7b:3c:7c:b0:70:5d:75:65:32:3c:0b:bc:3e:99:c9:7f:49:fa: 90:a6:07:f9:91:f8:60:3e:e0:9b:8a:8c:9f:bf:86:8b:b2:c7: 6e:0d:18:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjYwMTI0MTY0MTQ5WhcNMjYwMTMxMTY0MTQ5WjAYMRYwFAYD VQQDDA02OTc0ZjY0ZC1kZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoe6lSfD59P8H7nOM5AqxNXRopPAwgak5hR7lMmkpZ7068jTTFvOy+GpedR0Q q3kkWv4d2RbFQVNq7Nj+s65Pm/wpHGCqbfem8Ye4Aknys4l/cfp2K2txZUzst469 B60vLYH88IqKTgP5aQGiZ57E/VFVdEj6e7Sosu7EqHvTxyDTYSVQgBUab5lQa59L jBn2xB9c7zkSz3YbtKvaXVSjjXDJ7IkjAMqIFyNlT6ta5BVJxkfp9Y5WoipFhI9i FoGLC+o1k6dEg25Piy+bkRa+BQOYg31zK/i8DpAIymCXya/fTsxpmaULeBWEYUeF BgT5KJKQqZP4hUd+W9igqrmxiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfL6jJE Dv+9+GKVY/iJg/KD46MNMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsXN60fvDkRYi5mjnQpMrWxXisckb9wYLcOqSVovfVMLPGyoGsCtNt CnE8tYmfX7Us6DZeVpV/cXR0/35FB4uvV1gpbPfYGtv8/Gt7CiQP6zhOqweeapBg oWRD9GsCzRSraboKff+XZjGdoYJEXAplpZwZTZAGo2g3dz3X0LJh0zKe0r5yAJiZ o/D6htETxFzPnW/kj6ZITsOo6yz7SWzHHjl/UVIZtNOYuqDfQHmViMJ42kDkgmno dKh62oShV2NdyDGMiPg1layhWwZydbLf5B6NuzMpTSh7PHywcF11ZTI8C7w+mcl/ SfqQpgf5kfhgPuCbioyfv4aLssduDRi8 -----END CERTIFICATE-----Generated at Sun Jan 25 18:31:58 2026 by rpki-client