This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: K2MvdoDUeId6cgZ7Jr05guMfxEHKxIF5l4ExQ5E5wGg= Subject key identifier: F1:D0:1C:BE:8F:E4:3E:2F:22:00:05:B5:8E:FC:8A:E7:90:A2:FA:50 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 097D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 0969 Signing time: Sat 24 Jan 2026 19:34:22 +0000 Manifest this update: Sat 24 Jan 2026 19:34:21 +0000 Manifest next update: Sat 31 Jan 2026 19:34:21 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: zIzTMb2IbKg7wbTZsKuxXvlaYZmXfcrrLLxIpSNvoOk=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: 16iyVUl1us+C5aneeiDrqUhIKgGXREeaDcDEtZkcKLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2429 (0x97d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Jan 24 19:34:21 2026 GMT Not After : Jan 31 19:34:21 2026 GMT Subject: CN=69751ebe-1290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:f9:87:11:0e:8b:e8:4c:f5:a4:4c:10:99: c6:a1:c9:5f:e8:a4:1f:90:33:9f:6a:7e:70:f4:4b: ae:aa:0f:28:c1:ec:e6:f7:d5:99:cb:f5:87:f0:29: 5b:59:e2:c3:a3:0f:be:dc:08:c7:7b:d1:39:99:60: 5b:56:79:91:1d:fe:70:2e:9a:6a:bb:eb:a8:72:ff: ed:7d:d6:13:7e:f5:e5:41:53:36:d0:e3:4b:63:77: 63:27:64:d1:61:ed:58:71:3c:2a:61:38:bb:9d:97: 51:37:c4:c9:ae:a3:a1:c7:fe:de:25:71:6e:95:17: 0c:4e:75:95:69:52:13:72:4c:66:bb:db:c7:84:f5: d2:d2:ea:d3:9a:fa:49:d5:5d:56:92:b6:71:95:cd: 66:c4:29:01:a1:60:c0:0a:87:10:f1:d5:0d:d0:03: f6:60:40:b3:9c:d8:75:8b:b2:92:2d:65:e4:c4:32: 6c:64:38:44:eb:f9:42:4a:f6:91:93:a3:bc:c5:98: 4b:c5:32:eb:91:de:82:69:af:c9:e8:e2:d7:87:e1: 68:f7:8f:97:c3:4b:d0:71:3b:48:76:48:97:94:27: 9c:91:0d:9f:d7:47:7c:8e:74:7d:cf:0e:3a:16:50: 10:6a:03:98:e3:af:30:f6:9b:ba:60:b3:11:e5:58: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D0:1C:BE:8F:E4:3E:2F:22:00:05:B5:8E:FC:8A:E7:90:A2:FA:50 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:5f:b9:28:de:ce:0a:85:61:64:68:68:7b:b3:7f:f5:e7:3b: 9d:94:63:90:f3:6c:cb:3a:ca:2b:8d:45:9d:30:d8:89:1d:60: cd:4d:16:8f:49:21:ce:71:74:1d:c0:3d:8b:0a:e3:59:a8:fa: 4e:9e:57:0f:fe:ba:22:aa:f3:4a:f7:8d:2a:8c:1e:1a:26:d0: 16:00:11:57:ce:96:31:78:64:29:06:0f:f9:a7:9f:9e:c0:b3: c8:26:bc:64:4f:1f:1f:01:15:a4:eb:40:3f:8f:03:10:75:d2: b7:33:24:60:b3:6b:8a:4c:25:39:ab:0f:3a:43:ee:82:7c:e3: f3:c5:47:8a:b5:18:8b:15:12:f1:40:94:78:ac:f5:6a:0a:03: a8:63:59:92:e6:41:3e:75:26:eb:4e:f4:84:32:21:65:c1:99: bc:ed:b0:00:3a:bd:c7:f2:2f:8e:4e:85:94:bf:42:21:ce:32: d2:fa:d3:3b:8e:d0:7d:0b:12:e3:16:a7:c8:25:71:2d:9f:26: 24:27:be:08:bb:69:2c:22:e7:21:cb:c6:5b:e8:e5:87:00:bb: 0d:ec:29:d8:45:42:f8:bb:dc:4f:ff:b3:53:89:5b:c2:2e:24: db:9b:07:65:3d:7f:31:4b:a3:1a:f8:eb:cd:a9:74:4f:c8:1b: eb:eb:5e:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjYwMTI0MTkzNDIxWhcNMjYwMTMxMTkzNDIxWjAYMRYwFAYD VQQDDA02OTc1MWViZS0xMjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7D5hxEOi+hM9aRMEJnGoclf6KQfkDOfan5w9Euuqg8owezm99WZy/WH8Clb WeLDow++3AjHe9E5mWBbVnmRHf5wLppqu+uocv/tfdYTfvXlQVM20ONLY3djJ2TR Ye1YcTwqYTi7nZdRN8TJrqOhx/7eJXFulRcMTnWVaVITckxmu9vHhPXS0urTmvpJ 1V1WkrZxlc1mxCkBoWDACocQ8dUN0AP2YECznNh1i7KSLWXkxDJsZDhE6/lCSvaR k6O8xZhLxTLrkd6Caa/J6OLXh+Fo94+Xw0vQcTtIdkiXlCeckQ2f10d8jnR9zw46 FlAQagOY468w9pu6YLMR5VgeWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHQHL6P 5D4vIgAFtY78iueQovpQMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6X7ko3s4KhWFkaGh7s3/15zudlGOQ82zLOsorjUWdMNiJHWDNTRaP SSHOcXQdwD2LCuNZqPpOnlcP/roiqvNK940qjB4aJtAWABFXzpYxeGQpBg/5p5+e wLPIJrxkTx8fARWk60A/jwMQddK3MyRgs2uKTCU5qw86Q+6CfOPzxUeKtRiLFRLx QJR4rPVqCgOoY1mS5kE+dSbrTvSEMiFlwZm87bAAOr3H8i+OToWUv0IhzjLS+tM7 jtB9CxLjFqfIJXEtnyYkJ74Iu2ksIuchy8Zb6OWHALsN7CnYRUL4u9xP/7NTiVvC LiTbmwdlPX8xS6Ma+OvNqXRPyBvr615S -----END CERTIFICATE-----Generated at Sun Jan 25 02:51:58 2026 by rpki-client