This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: qUucvDywg5/RHua+KVKcUyNagt9gn4g7PlQYmNSmDcQ= Subject key identifier: DB:E5:EE:4B:D6:46:F3:62:2C:95:4C:9A:E5:26:C3:1B:16:DC:86:50 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0D5F Signing time: Sat 24 Jan 2026 17:39:02 +0000 Manifest this update: Sat 24 Jan 2026 17:39:01 +0000 Manifest next update: Sat 31 Jan 2026 17:39:01 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: 9i7/mcoZsrkFEXGadFtwdpDJuojq5Svx3wi7nsjhNBM=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: 8PBc7rJDdj900RPfyfsyZOspVRuDEqIjR6MwkbVEKO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Jan 24 17:39:01 2026 GMT Not After : Jan 31 17:39:01 2026 GMT Subject: CN=697503b6-c6fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ab:b4:8e:ad:51:1d:53:3b:6d:39:3f:89:7b: 3a:7a:67:0e:aa:56:bf:10:29:c4:c5:a2:3c:db:5b: a4:76:c0:09:cb:1b:fb:22:2d:57:ae:ee:0b:43:99: f4:4b:d6:fa:5d:59:31:b6:b8:64:a5:42:57:fe:4c: 2f:84:33:5d:48:6b:d1:b1:a6:5e:2b:d5:fd:da:be: 84:b8:9d:52:4b:12:37:4f:bc:78:fa:1b:41:ec:01: 1a:04:e4:4f:8c:29:5b:7f:cb:f7:58:d7:4d:47:0d: e7:59:dd:e5:40:a8:5c:ce:a2:37:b9:d0:2e:e9:f9: 27:e4:80:1c:00:9d:08:25:9c:7b:41:82:dc:86:d4: 00:09:62:5c:62:5b:ff:89:0f:ef:6c:ca:4a:be:c9: 5e:83:e1:2e:01:84:05:83:e5:b4:e7:d3:d3:c0:9f: 52:10:5f:28:a1:8f:ab:ef:91:f8:c4:b0:1c:9e:e3: 44:79:4f:d0:12:d7:a6:02:71:5c:9f:85:02:7f:b2: a1:7d:d6:09:62:4e:ec:48:9b:58:8f:1e:6a:3e:b6: 0b:ce:95:c2:d6:0f:a1:b3:63:cb:29:20:94:13:26: fe:c2:99:a9:b8:98:2c:11:31:68:dc:87:b5:b0:75: 7b:16:e7:bd:49:cf:70:dc:3e:1c:0d:08:8d:04:f6: 47:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E5:EE:4B:D6:46:F3:62:2C:95:4C:9A:E5:26:C3:1B:16:DC:86:50 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:8e:61:98:7e:6f:6d:19:6a:db:2a:98:ca:24:03:f4:5e:b0: c2:d1:ec:ce:1e:6e:44:57:07:2c:7e:12:f9:02:57:d8:3f:f7: fa:6e:a3:fd:dc:72:87:73:aa:9b:e2:9b:f2:75:7f:48:36:f4: b7:a7:fb:46:ad:30:25:62:01:79:b2:70:4b:29:1c:a7:cc:77: f3:0b:5f:47:33:63:68:16:96:9a:3f:fd:ae:b9:ee:45:04:3c: 23:e1:25:ac:34:e5:d2:8e:25:9f:03:3b:76:99:85:10:d2:42: 1b:4e:b8:a0:9c:0b:e3:be:60:12:6c:58:63:11:46:12:f7:15: eb:e6:56:f4:01:cb:24:a0:43:66:40:4c:19:ed:1d:76:ee:a7: 01:21:fe:7c:8f:ba:a7:a1:cd:c2:75:c9:9a:aa:35:a0:e1:33: 4f:7c:16:7f:84:50:f6:70:9e:c9:2f:46:a9:b1:68:b1:2c:ec: c1:74:9d:a2:35:4d:7f:8a:2f:42:dd:76:f6:3c:89:26:fc:dc: 20:f8:1e:08:0d:17:ff:c0:ac:8e:cb:07:1f:06:ae:93:c4:88: eb:5a:ce:6c:1c:96:7f:d1:f5:cf:a0:bf:ca:27:4c:1f:9e:99: ac:76:f2:b2:18:22:87:84:18:27:02:31:64:ab:ee:73:49:46: 9e:a3:f8:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjYwMTI0MTczOTAxWhcNMjYwMTMxMTczOTAxWjAYMRYwFAYD VQQDDA02OTc1MDNiNi1jNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqau0jq1RHVM7bTk/iXs6emcOqla/ECnExaI821ukdsAJyxv7Ii1Xru4LQ5n0 S9b6XVkxtrhkpUJX/kwvhDNdSGvRsaZeK9X92r6EuJ1SSxI3T7x4+htB7AEaBORP jClbf8v3WNdNRw3nWd3lQKhczqI3udAu6fkn5IAcAJ0IJZx7QYLchtQACWJcYlv/ iQ/vbMpKvsleg+EuAYQFg+W059PTwJ9SEF8ooY+r75H4xLAcnuNEeU/QEtemAnFc n4UCf7KhfdYJYk7sSJtYjx5qPrYLzpXC1g+hs2PLKSCUEyb+wpmpuJgsETFo3Ie1 sHV7Fue9Sc9w3D4cDQiNBPZHnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvl7kvW RvNiLJVMmuUmwxsW3IZQMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+jmGYfm9tGWrbKpjKJAP0XrDC0ezOHm5EVwcsfhL5AlfYP/f6bqP9 3HKHc6qb4pvydX9INvS3p/tGrTAlYgF5snBLKRynzHfzC19HM2NoFpaaP/2uue5F BDwj4SWsNOXSjiWfAzt2mYUQ0kIbTrignAvjvmASbFhjEUYS9xXr5lb0AcskoENm QEwZ7R127qcBIf58j7qnoc3CdcmaqjWg4TNPfBZ/hFD2cJ7JL0apsWixLOzBdJ2i NU1/ii9C3Xb2PIkm/Nwg+B4IDRf/wKyOywcfBq6TxIjrWs5sHJZ/0fXPoL/KJ0wf npmsdvKyGCKHhBgnAjFkq+5zSUaeo/hJ -----END CERTIFICATE-----Generated at Sun Jan 25 09:29:55 2026 by rpki-client