This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft File: Ikchh2oR4tOkuYshvIT3jmT-yEY.mft (raw, json) Hash identifier: BI3Xkw9hOy9gt3jnYLYfH5PBsSJuatlwNC1uPi2YUFs= Subject key identifier: C7:14:B9:ED:5A:C5:B1:99:04:FD:F7:47:73:EE:8C:CC:A0:B7:2E:E7 Authority key identifier: 22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 Certificate issuer: /CN=A91CEE6D/serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft Manifest number: 40 Signing time: Fri 23 Jan 2026 06:25:37 +0000 Manifest this update: Fri 23 Jan 2026 06:25:36 +0000 Manifest next update: Fri 30 Jan 2026 06:25:36 +0000 Files and hashes: 1: Ikchh2oR4tOkuYshvIT3jmT-yEY.crl (hash: nkTm2PQwj16Lyw7VfOT6B7QHatsI78OLMIR5dQNONdE=) 2: 09F2A296A02E11F08BC71221C4F9AE02.roa (hash: 6x2cZtG1O8RYzD8OGoXsH+NShNfzIbk96k46lysq5xU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE6D, serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Validity Not Before: Jan 23 06:25:36 2026 GMT Not After : Jan 30 06:25:36 2026 GMT Subject: CN=69731460-de04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4d:b9:bf:66:89:b1:28:d5:71:ef:c7:5c:df: 40:41:11:16:05:cb:e2:b8:6d:e6:ab:3e:be:60:db: 07:69:b2:12:19:6c:71:75:27:63:00:2a:cc:ad:6e: ef:01:42:fb:c7:f5:1e:2d:72:48:52:c3:f2:d6:b7: 20:82:38:71:a4:98:28:06:cf:d1:6e:67:80:bb:43: 2c:a5:1b:67:c0:b6:25:9c:5b:5c:08:f8:43:9c:5e: 80:3c:80:f0:51:52:01:d3:e4:f1:38:7b:94:18:f8: 83:55:27:25:31:21:4b:85:6a:30:0f:5e:86:06:64: 71:2f:4a:1a:9a:70:c8:28:5c:4d:e0:b1:d9:f5:68: a4:53:b4:19:24:65:2e:03:e0:b9:af:fd:89:d8:56: 73:33:7d:54:d7:2d:44:57:87:ef:24:54:58:e1:c9: 61:c9:31:f2:9f:1e:b7:15:31:ca:91:2b:10:75:57: ae:91:be:23:e0:08:9f:4f:a9:cb:c3:8d:68:e1:2d: 19:6e:87:a3:c4:2f:b6:ef:b0:c4:ad:6c:b3:97:bb: c6:ce:7a:59:3e:01:97:59:5e:bf:86:f1:da:2a:a6: 26:14:17:18:bb:cd:79:04:5f:ec:d6:81:62:22:94: af:25:e2:3f:9b:92:82:c0:b8:1e:53:91:b9:f2:2e: fc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:14:B9:ED:5A:C5:B1:99:04:FD:F7:47:73:EE:8C:CC:A0:B7:2E:E7 X509v3 Authority Key Identifier: keyid:22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:bd:79:0d:39:03:83:7f:db:17:60:a3:58:ba:4f:94:d0:29: b2:3d:0b:b0:eb:b9:a7:bb:7b:fb:39:b9:5c:76:54:de:77:5e: 4d:a3:b0:64:95:80:c7:06:fc:3a:23:6c:3b:65:10:b3:9a:dc: 04:e5:12:76:c5:d8:89:85:fd:98:a0:3d:1d:76:48:0a:e8:5e: 73:58:64:91:2a:9a:cb:3f:2e:0b:b3:c7:4f:c5:ff:4b:ad:f8: 64:0b:32:85:40:2b:ac:fa:3e:2b:b2:26:68:0c:99:85:bc:27: 40:ce:7a:43:6a:1a:6a:01:12:3a:52:6f:ee:21:c0:e3:9a:cf: e3:56:b0:1f:72:b8:89:6b:14:51:46:29:78:7f:ba:4d:60:86: fd:1f:2d:88:fe:8c:9a:7e:1a:8e:7d:43:e3:e4:40:4a:e9:e4: 15:15:31:03:36:35:5f:31:51:c4:d5:88:18:8d:c1:c4:84:79: 0a:0b:09:00:d0:aa:62:fc:3a:4c:85:98:d8:67:89:7c:a6:a8: 20:7c:06:cd:3f:3e:9a:c6:aa:fc:d3:6e:65:21:35:56:15:47: ec:b0:80:43:65:11:70:74:83:d0:5c:9c:82:7b:9f:4d:e2:4c: 83:b4:cb:eb:da:96:ea:ca:e1:c6:f4:c5:8e:f6:0d:01:20:70: a5:a5:57:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU2RDExMC8GA1UEBRMoMjI0NzIxODc2QTExRTJEM0E0Qjk4QjIxQkM4NEY3OEU2 NEZFQzg0NjAeFw0yNjAxMjMwNjI1MzZaFw0yNjAxMzAwNjI1MzZaMBgxFjAUBgNV BAMMDTY5NzMxNDYwLWRlMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbTbm/ZomxKNVx78dc30BBERYFy+K4bearPr5g2wdpshIZbHF1J2MAKsytbu8B QvvH9R4tckhSw/LWtyCCOHGkmCgGz9FuZ4C7QyylG2fAtiWcW1wI+EOcXoA8gPBR UgHT5PE4e5QY+INVJyUxIUuFajAPXoYGZHEvShqacMgoXE3gsdn1aKRTtBkkZS4D 4Lmv/YnYVnMzfVTXLURXh+8kVFjhyWHJMfKfHrcVMcqRKxB1V66RviPgCJ9PqcvD jWjhLRluh6PEL7bvsMStbLOXu8bOelk+AZdZXr+G8doqpiYUFxi7zXkEX+zWgWIi lK8l4j+bkoLAuB5TkbnyLvxbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxxS57VrF sZkE/fdHc+6MzKC3LucwHwYDVR0jBBgwFoAUIkchh2oR4tOkuYshvIT3jmT+yEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTZELzUxMTEwQUZFOTc2 NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRPa3VZc2h2SVQzam1ULXlF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWtjaGgyb1I0dE9rdVlzaHZJVDNqbVQteUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTZELzUxMTEwQUZFOTc2NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRP a3VZc2h2SVQzam1ULXlFWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGe9eQ05A4N/2xdgo1i6T5TQKbI9C7Druae7e/s5uVx2VN53Xk2jsGSV gMcG/DojbDtlELOa3ATlEnbF2ImF/ZigPR12SAroXnNYZJEqmss/Lguzx0/F/0ut +GQLMoVAK6z6PiuyJmgMmYW8J0DOekNqGmoBEjpSb+4hwOOaz+NWsB9yuIlrFFFG KXh/uk1ghv0fLYj+jJp+Go59Q+PkQErp5BUVMQM2NV8xUcTViBiNwcSEeQoLCQDQ qmL8OkyFmNhniXymqCB8Bs0/PprGqvzTbmUhNVYVR+ywgENlEXB0g9BcnIJ7n03i TIO0y+valurK4cb0xY72DQEgcKWlV1I= -----END CERTIFICATE-----Generated at Sun Jan 25 08:58:34 2026 by rpki-client