This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: 5VgX/o5gLA72ZnPMNSLCMinMtc9sNtytKaKb0U1MOj8= Subject key identifier: C4:84:09:00:31:60:08:41:DD:C5:1B:75:DB:22:B6:6E:44:3D:C6:4C Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 0134 Signing time: Sat 24 Jan 2026 15:34:14 +0000 Manifest this update: Sat 24 Jan 2026 15:34:13 +0000 Manifest next update: Sat 31 Jan 2026 15:34:13 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: y8vqaREz5foLJZfbpN+4kC6wsus0O6Sf/XGoQ0ORPbc=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Jan 24 15:34:13 2026 GMT Not After : Jan 31 15:34:13 2026 GMT Subject: CN=6974e675-ef18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ec:47:3e:34:ca:33:ab:85:7d:77:eb:e3:42: 5d:0a:6f:06:3e:6c:a3:5a:e6:da:57:16:1b:68:16: 7e:1e:10:5f:92:dc:6b:6c:5d:bd:77:c7:8b:ee:c0: ae:58:cb:f5:9b:20:2b:0d:3c:ac:ab:f7:9b:90:55: 42:72:2b:a3:af:df:d7:10:d4:fc:10:7c:7c:4a:c5: b8:c1:9a:e4:8d:13:e2:6d:a5:5a:72:d3:44:1e:b5: 1e:4f:10:a4:66:26:67:2b:3f:5f:c1:63:0c:78:92: f1:00:88:5b:ea:de:42:2d:1e:a3:e7:28:70:a8:2e: ec:d3:26:0d:65:4f:e9:88:0d:47:2c:b4:e1:32:d2: 7c:8c:f1:bb:0c:75:c2:c3:ce:ca:83:60:0f:0c:1e: 0d:7c:2e:ed:a8:00:aa:95:59:7f:a2:30:87:c4:94: 17:64:46:f3:bd:14:2f:81:3e:46:2f:2c:d6:d4:a2: 18:dd:25:ad:79:d6:c1:4a:54:32:08:d7:41:f9:31: 8a:0b:f3:cd:f1:09:50:2e:1b:23:f5:cf:3e:d4:ac: 9d:51:5c:a7:be:3d:84:28:68:f7:1c:b6:54:2b:f1: f3:42:36:b8:5b:56:ad:d9:d7:a0:ec:31:32:1c:69: de:b5:a0:9c:39:6c:94:fa:c8:99:77:57:24:b3:23: 7a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:84:09:00:31:60:08:41:DD:C5:1B:75:DB:22:B6:6E:44:3D:C6:4C X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:4a:f6:7d:a7:25:c5:b7:08:e9:49:6b:f5:9e:cf:62:46:d3: 52:15:06:00:e8:c4:14:11:7a:66:fa:78:91:a1:99:10:b6:aa: 71:70:28:78:f3:f5:0a:e6:1c:c4:48:2c:f7:28:f0:c2:98:75: 24:1f:1e:88:eb:51:47:32:21:3c:16:4f:0c:95:8f:0d:4c:f1: e9:7f:06:07:4f:0c:25:f2:dd:8d:a5:fb:5e:e3:f8:a1:9a:9f: 56:bf:e8:b2:cf:86:0a:2f:61:7a:0e:77:d4:09:23:da:5f:9f: f9:c2:67:a6:96:f2:4f:13:63:e9:13:8f:1e:d9:48:20:7c:38: a2:b6:fc:af:58:40:08:27:d2:a1:43:4c:ec:6b:8a:3a:73:1a: a8:53:c5:de:8d:13:3f:b3:a1:98:12:e6:ef:77:f2:e1:39:a1: 17:2f:77:cf:e0:e6:50:2e:b1:88:c9:a4:bd:2b:b8:91:1e:66: 49:87:e1:28:53:c1:33:e7:b1:0c:fb:88:4a:68:f9:50:41:05: 5b:84:d9:fd:0b:22:5f:f4:86:24:d0:3c:83:f6:69:f5:0b:bd: f6:16:42:15:07:fc:d2:99:e3:cd:36:a5:50:dc:9d:ed:fa:38: fa:f7:f2:53:31:e6:06:a1:bd:ef:76:2e:21:ea:2a:2d:bd:ad: 6b:59:76:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjYwMTI0MTUzNDEzWhcNMjYwMTMxMTUzNDEzWjAYMRYwFAYD VQQDDA02OTc0ZTY3NS1lZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjOxHPjTKM6uFfXfr40JdCm8GPmyjWubaVxYbaBZ+HhBfktxrbF29d8eL7sCu WMv1myArDTysq/ebkFVCciujr9/XENT8EHx8SsW4wZrkjRPibaVactNEHrUeTxCk ZiZnKz9fwWMMeJLxAIhb6t5CLR6j5yhwqC7s0yYNZU/piA1HLLThMtJ8jPG7DHXC w87Kg2APDB4NfC7tqACqlVl/ojCHxJQXZEbzvRQvgT5GLyzW1KIY3SWtedbBSlQy CNdB+TGKC/PN8QlQLhsj9c8+1KydUVynvj2EKGj3HLZUK/HzQja4W1at2deg7DEy HGnetaCcOWyU+siZd1cksyN6GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSECQAx YAhB3cUbddsitm5EPcZMMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAASvZ9pyXFtwjpSWv1ns9iRtNSFQYA6MQUEXpm+niRoZkQtqpxcCh4 8/UK5hzESCz3KPDCmHUkHx6I61FHMiE8Fk8MlY8NTPHpfwYHTwwl8t2Npfte4/ih mp9Wv+iyz4YKL2F6DnfUCSPaX5/5wmemlvJPE2PpE48e2UggfDiitvyvWEAIJ9Kh Q0zsa4o6cxqoU8XejRM/s6GYEubvd/LhOaEXL3fP4OZQLrGIyaS9K7iRHmZJh+Eo U8Ez57EM+4hKaPlQQQVbhNn9CyJf9IYk0DyD9mn1C732FkIVB/zSmePNNqVQ3J3t +jj69/JTMeYGob3vdi4h6iotva1rWXbO -----END CERTIFICATE-----Generated at Sun Jan 25 11:50:43 2026 by rpki-client