This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft File: 3dzECt5nfyP4p5ukFo729r7wZcc.mft (raw, json) Hash identifier: 8mA9h+2SIv44Uu9abwY9KB8iBqeNJxVNeIka9fDBZEw= Subject key identifier: FF:E2:6F:2A:C1:AB:42:61:BE:A3:AC:89:2C:9F:17:60:13:72:95:78 Authority key identifier: DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 Certificate issuer: /CN=A91CB2E2/serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft Manifest number: 48 Signing time: Fri 23 Jan 2026 06:20:41 +0000 Manifest this update: Fri 23 Jan 2026 06:20:41 +0000 Manifest next update: Fri 30 Jan 2026 06:20:41 +0000 Files and hashes: 1: 3dzECt5nfyP4p5ukFo729r7wZcc.crl (hash: uib4fle2pGT4ywqDG/g2a2PKU6hIywvCIYUWkQHnIvc=) 2: 240EF95E896311F0B911053BC4F9AE02.roa (hash: l/wARrq1lISnaNIca31Ucy5U5vcCEK4kZC3D4iFHaJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB2E2, serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Validity Not Before: Jan 23 06:20:41 2026 GMT Not After : Jan 30 06:20:41 2026 GMT Subject: CN=69731339-c7c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:80:c3:92:88:83:52:a5:4a:a9:65:61:3d: 8c:9f:bf:35:a2:1f:8c:ba:fe:d7:c4:2c:0b:e9:38: a1:ad:bb:b8:4f:84:ae:87:c1:d4:bf:37:6f:83:d4: 86:13:4f:c4:03:ef:37:64:01:1d:a7:b8:4e:5b:76: d3:2f:4e:e1:be:f7:fc:ef:dc:bc:ae:de:b6:c6:10: a2:c3:d2:14:5e:f1:df:68:14:2c:66:ce:c6:28:f4: 2d:0f:31:32:d7:ce:5c:9a:7b:b1:22:08:1d:1e:f0: 54:a3:60:31:75:0c:85:82:bd:43:50:a1:ba:21:1d: 78:b9:8a:25:b1:22:8b:ca:9c:84:f7:0b:00:57:b6: c3:32:d0:16:73:c5:08:15:28:44:15:70:7a:f3:48: f8:fc:ff:27:7f:36:6c:9f:bc:7e:e7:5f:39:ab:49: 34:a7:20:f0:03:ae:7b:32:ca:f0:b2:bf:c2:e0:0e: aa:d9:10:38:d7:f4:9e:74:27:0c:69:a6:6d:9b:f5: 32:d1:c0:35:65:fb:50:4c:e1:1c:9f:1f:bd:c4:d0: bb:b5:5c:d8:a7:c3:64:e3:46:7e:2a:58:b0:9f:44: ac:6f:90:24:37:b3:70:27:f9:48:2f:44:a5:90:5e: 86:53:aa:e0:50:fd:79:00:35:40:70:18:ac:c7:68: 3f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E2:6F:2A:C1:AB:42:61:BE:A3:AC:89:2C:9F:17:60:13:72:95:78 X509v3 Authority Key Identifier: keyid:DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ce:4a:1f:90:4e:49:ba:9e:49:c2:01:f8:fd:ad:60:7f:1b: a1:dc:1c:a8:e3:fd:06:3e:a2:50:69:ee:1a:e6:82:f8:6c:46: dc:ac:5b:a4:97:8a:cf:76:c2:c7:b3:ff:58:97:1c:e6:ad:e4: 8b:cf:7a:1a:e3:73:bf:c3:64:85:16:10:e8:a3:88:00:36:09: c2:c9:b3:e4:b3:1b:8f:ce:81:12:f2:46:da:bd:e3:b4:1f:9e: 95:05:d6:77:5f:44:fe:9e:4f:19:5b:59:cf:99:9c:17:80:f3: fc:42:b6:2c:66:b0:ee:c0:cf:c3:f7:2f:55:d8:ff:0a:fd:ff: d0:77:83:76:d1:e5:8e:cb:43:21:e6:88:7e:b6:4a:02:e7:98: c9:56:36:88:82:c1:85:99:18:67:c8:a4:0e:f9:4a:98:dd:47: 1c:8e:ef:ab:6f:3a:44:04:c8:07:dd:26:18:dc:8e:65:7d:33: 83:f2:9e:28:df:f8:2d:9e:c4:24:8d:11:5c:5d:fb:01:d2:56: 2b:1b:a3:48:2d:07:d4:a9:ac:38:bf:1f:40:77:a1:0d:31:31: 1c:1d:7a:7e:03:54:fc:6b:89:4c:69:71:73:ee:b1:49:ff:b0: 4f:30:98:69:b4:4a:05:6f:6e:81:4c:7a:4c:e9:3e:4e:fb:78: 58:43:8a:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjJFMjExMC8GA1UEBRMoREREQ0M0MEFERTY3N0YyM0Y4QTc5QkE0MTY4RUY2RjZC RUYwNjVDNzAeFw0yNjAxMjMwNjIwNDFaFw0yNjAxMzAwNjIwNDFaMBgxFjAUBgNV BAMMDTY5NzMxMzM5LWM3YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCeYDDkoiDUqVKqWVhPYyfvzWiH4y6/tfELAvpOKGtu7hPhK6HwdS/N2+D1IYT T8QD7zdkAR2nuE5bdtMvTuG+9/zv3Lyu3rbGEKLD0hRe8d9oFCxmzsYo9C0PMTLX zlyae7EiCB0e8FSjYDF1DIWCvUNQobohHXi5iiWxIovKnIT3CwBXtsMy0BZzxQgV KEQVcHrzSPj8/yd/NmyfvH7nXzmrSTSnIPADrnsyyvCyv8LgDqrZEDjX9J50Jwxp pm2b9TLRwDVl+1BM4RyfH73E0Lu1XNinw2TjRn4qWLCfRKxvkCQ3s3An+UgvRKWQ XoZTquBQ/XkANUBwGKzHaD9lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/+JvKsGr QmG+o6yJLJ8XYBNylXgwHwYDVR0jBBgwFoAU3dzECt5nfyP4p5ukFo729r7wZccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMkUyLzQxMUM2M0IwODk1 OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQNHA1dWtGbzcyOXI3d1pj Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2R6RUN0NW5meVA0cDV1a0ZvNzI5cjd3WmNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MkUyLzQxMUM2M0IwODk1OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQ NHA1dWtGbzcyOXI3d1pjYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKPOSh+QTkm6nknCAfj9rWB/G6HcHKjj/QY+olBp7hrmgvhsRtysW6SX is92wsez/1iXHOat5IvPehrjc7/DZIUWEOijiAA2CcLJs+SzG4/OgRLyRtq947Qf npUF1ndfRP6eTxlbWc+ZnBeA8/xCtixmsO7Az8P3L1XY/wr9/9B3g3bR5Y7LQyHm iH62SgLnmMlWNoiCwYWZGGfIpA75SpjdRxyO76tvOkQEyAfdJhjcjmV9M4Pynijf +C2exCSNEVxd+wHSVisbo0gtB9SprDi/H0B3oQ0xMRwden4DVPxriUxpcXPusUn/ sE8wmGm0SgVvboFMekzpPk77eFhDih8= -----END CERTIFICATE-----Generated at Sun Jan 25 04:32:29 2026 by rpki-client