This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: PN2ahNiMX1rp+gQKWXsyTtkOGNVCfiG9z0Pw5oKWxlk= Subject key identifier: 37:7E:A4:86:BC:91:B3:3D:DA:E2:8E:24:C6:F2:91:8C:A8:AB:96:39 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 017E Signing time: Sat 24 Jan 2026 14:48:23 +0000 Manifest this update: Sat 24 Jan 2026 14:48:23 +0000 Manifest next update: Sat 31 Jan 2026 14:48:23 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: C374wyEIDbHwF0KRCuGm6p5n6vJVy8wU2upQgsc6N+g=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Jan 24 14:48:23 2026 GMT Not After : Jan 31 14:48:23 2026 GMT Subject: CN=6974dbb7-a22b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:5c:af:47:8a:1c:0c:b3:46:e0:66:14:93: cf:85:b9:81:60:b6:a6:33:c3:ef:48:6d:c6:8a:2b: 04:07:20:a7:7e:f0:35:83:f4:67:78:d3:54:90:07: 31:dc:90:dc:2f:e5:87:80:ae:73:17:b6:76:f0:79: 3c:de:4b:30:18:39:fb:4a:e4:e1:4c:ff:51:51:92: 68:ed:03:64:9e:50:52:10:13:8d:52:f2:db:ad:8b: 55:e0:6e:6d:84:8e:b7:5c:2f:04:49:1c:9f:d3:9d: 78:c6:61:41:51:d2:36:64:a3:1e:8d:2d:5a:1d:59: cb:7b:1e:f5:f0:05:66:6d:9a:bd:e5:78:72:3a:03: 4e:0f:4c:f9:8b:a6:e2:ae:a4:64:88:1e:65:e7:3e: 6f:34:8a:d2:57:5c:54:04:7c:98:88:cf:8f:22:d4: 33:d3:01:b6:a1:dd:d4:46:65:b3:66:5d:8d:eb:81: 5e:a7:86:d6:84:39:ca:b9:62:84:d9:7e:7f:d9:77: 2e:cd:16:d8:05:ab:11:60:15:70:f1:61:e3:89:4e: 60:d6:09:7d:67:43:b5:97:a5:76:0d:3f:56:06:c0: 2f:0d:43:f9:d6:dc:9e:05:28:46:40:cb:8a:89:0f: 9a:32:8d:f0:f2:a1:bf:47:2d:c9:34:25:bf:25:ca: 65:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7E:A4:86:BC:91:B3:3D:DA:E2:8E:24:C6:F2:91:8C:A8:AB:96:39 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:17:39:0b:a8:60:82:11:c0:c4:30:d8:9f:fc:e2:40:d9:66: aa:06:d0:79:3f:11:32:86:11:ef:e5:91:bd:98:f0:db:5e:98: 62:7b:3d:2c:eb:99:b9:94:44:c7:79:05:6e:56:2b:b5:21:17: 0d:2d:86:73:92:09:4f:be:08:c4:9e:7d:98:b3:26:96:9d:a0: 9f:3b:4f:6c:d1:a4:ec:a1:b1:54:3b:1c:77:d8:dd:89:a5:6d: 92:c2:56:63:85:7e:13:5c:0e:7d:63:89:26:0b:a9:c0:8b:cf: 03:e5:fb:d9:0f:00:e0:b9:94:ff:44:14:e1:21:95:f4:2a:9f: 9c:2b:c8:c9:84:9b:63:fe:d8:83:f1:bc:f0:ed:f0:99:d0:9c: f3:0d:7b:5b:15:f5:23:1b:a5:6e:46:d9:e3:a9:39:8c:c1:be: e8:5b:e1:4a:ec:5b:c3:bc:b9:a4:c3:d0:b1:c3:99:22:73:33: c1:a0:d7:cf:50:c3:0e:40:fd:19:7e:14:cd:9c:8f:15:a4:07: e8:83:92:49:1f:92:63:87:4d:ff:b6:d4:16:3c:7e:d1:93:53: 99:11:86:50:4c:58:fc:4f:0d:d6:b9:df:71:86:39:67:a9:7e: 89:7f:97:54:7f:7a:a2:75:de:e8:53:fb:53:b9:a8:8e:d1:ba: 12:2d:24:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjYwMTI0MTQ0ODIzWhcNMjYwMTMxMTQ0ODIzWjAYMRYwFAYD VQQDDA02OTc0ZGJiNy1hMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAordcr0eKHAyzRuBmFJPPhbmBYLamM8PvSG3GiisEByCnfvA1g/RneNNUkAcx 3JDcL+WHgK5zF7Z28Hk83kswGDn7SuThTP9RUZJo7QNknlBSEBONUvLbrYtV4G5t hI63XC8ESRyf0514xmFBUdI2ZKMejS1aHVnLex718AVmbZq95XhyOgNOD0z5i6bi rqRkiB5l5z5vNIrSV1xUBHyYiM+PItQz0wG2od3URmWzZl2N64Fep4bWhDnKuWKE 2X5/2XcuzRbYBasRYBVw8WHjiU5g1gl9Z0O1l6V2DT9WBsAvDUP51tyeBShGQMuK iQ+aMo3w8qG/Ry3JNCW/JcplWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDd+pIa8 kbM92uKOJMbykYyoq5Y5MB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2FzkLqGCCEcDEMNif/OJA2WaqBtB5PxEyhhHv5ZG9mPDbXphiez0s 65m5lETHeQVuViu1IRcNLYZzkglPvgjEnn2YsyaWnaCfO09s0aTsobFUOxx32N2J pW2SwlZjhX4TXA59Y4kmC6nAi88D5fvZDwDguZT/RBThIZX0Kp+cK8jJhJtj/tiD 8bzw7fCZ0JzzDXtbFfUjG6VuRtnjqTmMwb7oW+FK7FvDvLmkw9Cxw5kiczPBoNfP UMMOQP0ZfhTNnI8VpAfog5JJH5Jjh03/ttQWPH7Rk1OZEYZQTFj8Tw3Wud9xhjln qX6Jf5dUf3qidd7oU/tTuaiO0boSLSRT -----END CERTIFICATE-----Generated at Sun Jan 25 21:43:31 2026 by rpki-client