This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: lxrRz+QfxO6wkDN6vIwBzj6nxr2vLHBT9bBpA98qoKE= Subject key identifier: A4:8C:92:C8:76:AB:B0:6B:8C:F5:C3:53:E8:0F:3B:EA:B6:39:48:AD Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 0454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 044F Signing time: Sat 24 Jan 2026 23:25:05 +0000 Manifest this update: Sat 24 Jan 2026 23:25:05 +0000 Manifest next update: Sat 31 Jan 2026 23:25:05 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: 53CxeaJRs3MqWGEX8UEmPxA0tslKYga4TE3HRG5cO1g=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Jan 24 23:25:05 2026 GMT Not After : Jan 31 23:25:05 2026 GMT Subject: CN=697554d1-12ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:fe:fb:1e:00:ab:7d:54:89:16:e4:55:89: 26:8f:12:40:34:9a:25:72:4d:7a:51:25:2c:83:70: 6f:d8:e5:e2:f2:d8:77:6f:f1:b4:79:99:d3:7e:13: 2e:ca:4e:ee:39:c7:95:a4:e4:90:e3:45:78:b4:11: 88:f3:51:4c:30:e4:8b:85:95:70:af:92:7c:6f:c9: af:dd:ba:bc:92:e3:72:ca:50:dc:fd:cc:62:11:a0: 83:1d:30:33:bb:b3:b7:e4:06:7e:0f:77:39:c7:97: d7:e9:07:67:53:15:18:d0:f0:f1:51:d8:65:aa:4e: d6:42:db:bc:0c:ef:05:54:ed:11:65:31:dc:bf:a8: 59:0d:e8:de:8f:30:5d:7d:e3:5e:cc:23:5a:5c:fe: 97:01:a2:25:90:08:57:1f:d0:b1:6d:8d:05:b7:20: ef:31:a0:f7:3e:68:41:6c:87:d1:81:1f:e9:ad:7b: ab:97:22:6d:10:59:a7:72:12:f9:33:cb:7b:8a:82: bc:ce:08:1f:9b:80:16:1d:6f:08:37:db:30:1a:d2: cd:14:80:69:8f:d7:0b:66:d0:40:bc:ce:45:e3:6c: 30:90:c9:70:fd:3b:66:8e:0e:42:42:f8:b3:48:4c: b4:fd:d1:54:84:f2:11:a8:a6:b3:5e:63:a1:6a:e7: 34:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8C:92:C8:76:AB:B0:6B:8C:F5:C3:53:E8:0F:3B:EA:B6:39:48:AD X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:f2:57:ff:cc:ac:1e:9b:6d:76:3a:a2:b8:90:c5:8f:a2:1d: 59:2c:d5:b2:40:31:4d:69:fd:5c:90:04:a1:4f:2f:1d:ba:81: 9b:61:27:74:d1:fc:f3:cc:91:af:a1:f0:1c:1b:d5:ec:dc:a5: 24:bd:00:e5:c8:29:a2:6e:18:d4:90:13:f2:32:4a:5a:b8:0f: d4:86:8c:76:09:f0:19:6e:fd:d1:de:7f:94:80:b8:3c:a7:94: 9f:6a:57:c9:b8:a4:df:00:26:48:64:c8:86:79:81:c2:ac:78: 2d:fd:86:8f:5e:3f:b4:cf:49:14:f3:d8:5b:fd:cc:70:92:ba: 00:3b:dd:db:49:95:cc:a9:2f:86:8b:90:ce:fd:68:d9:51:51: 41:2d:38:0b:25:c9:9f:f1:dc:e0:db:0b:f3:df:96:42:2f:22: 9a:10:1c:5b:1c:10:f6:47:3e:7f:69:24:a7:f5:99:1c:5d:de: 5f:69:65:d8:c2:39:84:16:6d:9d:01:a4:06:6d:64:57:ef:b3: 2b:2e:13:e9:2c:86:93:14:01:c3:3a:c4:5e:01:9a:5a:a1:05: 1b:2d:9c:26:cd:f2:9f:2c:93:aa:e3:32:b4:9a:15:f4:d4:ef: e6:22:25:59:e8:d5:df:89:c5:66:2f:f8:a6:90:b5:03:98:ee: a2:a1:71:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjYwMTI0MjMyNTA1WhcNMjYwMTMxMjMyNTA1WjAYMRYwFAYD VQQDDA02OTc1NTRkMS0xMmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY/++x4Aq31UiRbkVYkmjxJANJolck16USUsg3Bv2OXi8th3b/G0eZnTfhMu yk7uOceVpOSQ40V4tBGI81FMMOSLhZVwr5J8b8mv3bq8kuNyylDc/cxiEaCDHTAz u7O35AZ+D3c5x5fX6QdnUxUY0PDxUdhlqk7WQtu8DO8FVO0RZTHcv6hZDejejzBd feNezCNaXP6XAaIlkAhXH9CxbY0FtyDvMaD3PmhBbIfRgR/prXurlyJtEFmnchL5 M8t7ioK8zggfm4AWHW8IN9swGtLNFIBpj9cLZtBAvM5F42wwkMlw/Ttmjg5CQviz SEy0/dFUhPIRqKazXmOhauc0fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSMksh2 q7BrjPXDU+gPO+q2OUitMB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF8lf/zKwem212OqK4kMWPoh1ZLNWyQDFNaf1ckAShTy8duoGbYSd0 0fzzzJGvofAcG9Xs3KUkvQDlyCmibhjUkBPyMkpauA/Uhox2CfAZbv3R3n+UgLg8 p5SfalfJuKTfACZIZMiGeYHCrHgt/YaPXj+0z0kU89hb/cxwkroAO93bSZXMqS+G i5DO/WjZUVFBLTgLJcmf8dzg2wvz35ZCLyKaEBxbHBD2Rz5/aSSn9ZkcXd5faWXY wjmEFm2dAaQGbWRX77MrLhPpLIaTFAHDOsReAZpaoQUbLZwmzfKfLJOq4zK0mhX0 1O/mIiVZ6NXficVmL/imkLUDmO6ioXG1 -----END CERTIFICATE-----Generated at Sun Jan 25 07:51:42 2026 by rpki-client