This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: UYMNpjwyUuQcGanE/c1nNhcxw0yeO62htmsQMESSRvg= Subject key identifier: FF:4C:28:96:9B:FA:FA:69:C1:6E:52:A3:90:B4:C1:50:57:BD:38:7D Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 023A Signing time: Sun 25 Jan 2026 01:20:23 +0000 Manifest this update: Sun 25 Jan 2026 01:20:22 +0000 Manifest next update: Sun 01 Feb 2026 01:20:22 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: 7vEJSm/iw7P8ffDApj23RuVaW5dIWmaSkNbx4+mApFw=) 2: D8D317ACE7CE11F0AC86B9F45C6F56BC.roa (hash: vsTUw206l1auqFVbmz2vzluecexhQZaC872q8GqZIqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Jan 25 01:20:22 2026 GMT Not After : Feb 1 01:20:22 2026 GMT Subject: CN=69756fd7-6294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c6:4f:bc:42:2c:08:d1:6c:77:a3:c2:c6:4c: 0e:5c:4c:bc:e1:86:92:eb:07:3d:25:08:79:67:83: 0b:ff:02:1b:33:d6:b7:93:c6:c9:c2:95:f3:0b:5e: ec:dc:7b:71:ae:3f:83:1f:cb:e5:42:7d:5f:b1:db: 1d:f8:e6:99:bc:f2:d1:9c:96:fd:90:f1:a7:e3:25: f2:2f:c4:03:b6:48:8d:9d:55:51:cb:e9:ed:1f:b9: 02:18:71:a8:ad:86:2f:0d:32:20:67:fd:9a:6e:e1: bb:df:ee:f0:cd:22:93:b5:d7:27:b8:5f:a6:0c:f5: 57:69:36:76:5d:a8:f6:6f:0a:bd:47:3a:54:c2:3e: e9:7c:99:d8:08:9f:95:fb:ad:25:f9:63:20:7a:c4: 96:73:f7:1e:74:cd:35:7f:96:c0:bb:6d:d0:9f:c0: 8d:a9:9a:0c:e6:e4:e2:b3:8d:64:e4:5b:aa:6a:0d: aa:e3:94:cd:39:15:cd:99:fa:bb:c2:97:8d:cd:52: aa:21:06:64:5d:5b:68:01:0a:85:63:c7:96:4f:10: e1:9d:c2:33:5d:b4:1c:65:50:ba:23:ce:7b:6a:2c: 6a:c8:6c:de:ce:26:8f:3d:00:04:bf:58:f0:c9:50: 02:54:a9:2c:c3:a3:e2:d5:32:a8:ed:48:33:0e:4e: 95:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4C:28:96:9B:FA:FA:69:C1:6E:52:A3:90:B4:C1:50:57:BD:38:7D X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:40:a9:d7:dc:16:5a:4d:7a:94:50:c1:0d:06:9b:5b:cc:a2: 27:d4:5f:de:b3:40:84:97:0b:29:98:7b:73:ec:c2:c2:e0:7c: 16:22:78:de:12:75:e1:e7:dc:93:38:3c:49:56:1f:d2:1c:b0: cd:85:38:8e:a1:36:28:90:76:4d:90:a2:9d:55:e6:66:2f:c7: ba:d9:65:47:d4:c3:70:cb:e2:71:3f:5b:7c:20:07:ba:74:22: fb:2e:b4:b5:c0:81:88:0c:ab:79:8d:13:12:79:dc:00:3b:e2: e9:85:2b:e2:0b:5c:99:21:64:2c:84:f6:16:f9:66:68:29:aa: 73:ff:eb:dc:38:f1:18:74:f1:bf:d2:03:57:74:bf:e8:0d:ff: 49:23:9d:50:89:c0:42:ac:f1:0e:a9:ac:4c:47:b5:24:fd:4d: ad:69:82:94:25:8c:60:6b:02:78:bb:fe:62:fa:65:d1:95:b7: c8:8c:ec:5d:3a:bc:4d:47:2d:ce:ee:7e:84:25:30:e9:0d:c1: f2:e9:1d:98:75:20:f2:8e:e9:8c:5f:b4:41:a7:57:f6:50:66: fa:ba:22:4f:f7:db:f8:ba:f7:bf:f9:ea:ee:e7:c4:96:33:48: 3e:0a:97:04:bf:2f:46:dd:5c:48:01:f3:78:19:b6:bc:fc:00: 8d:13:14:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjYwMTI1MDEyMDIyWhcNMjYwMjAxMDEyMDIyWjAYMRYwFAYD VQQDDA02OTc1NmZkNy02Mjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlMZPvEIsCNFsd6PCxkwOXEy84YaS6wc9JQh5Z4ML/wIbM9a3k8bJwpXzC17s 3Htxrj+DH8vlQn1fsdsd+OaZvPLRnJb9kPGn4yXyL8QDtkiNnVVRy+ntH7kCGHGo rYYvDTIgZ/2abuG73+7wzSKTtdcnuF+mDPVXaTZ2Xaj2bwq9RzpUwj7pfJnYCJ+V +60l+WMgesSWc/cedM01f5bAu23Qn8CNqZoM5uTis41k5Fuqag2q45TNORXNmfq7 wpeNzVKqIQZkXVtoAQqFY8eWTxDhncIzXbQcZVC6I857aixqyGzeziaPPQAEv1jw yVACVKksw6Pi1TKo7UgzDk6VJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9MKJab +vppwW5So5C0wVBXvTh9MB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoQKnX3BZaTXqUUMENBptbzKIn1F/es0CElwspmHtz7MLC4HwWInje EnXh59yTODxJVh/SHLDNhTiOoTYokHZNkKKdVeZmL8e62WVH1MNwy+JxP1t8IAe6 dCL7LrS1wIGIDKt5jRMSedwAO+LphSviC1yZIWQshPYW+WZoKapz/+vcOPEYdPG/ 0gNXdL/oDf9JI51QicBCrPEOqaxMR7Uk/U2taYKUJYxgawJ4u/5i+mXRlbfIjOxd OrxNRy3O7n6EJTDpDcHy6R2YdSDyjumMX7RBp1f2UGb6uiJP99v4uve/+eru58SW M0g+CpcEvy9G3VxIAfN4Gba8/ACNExRk -----END CERTIFICATE-----Generated at Sun Jan 25 07:44:19 2026 by rpki-client