This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft File: iP8qX1-BdhNDU35LVLXmoW8gfqk.mft (raw, json) Hash identifier: l5564Fl/gKKzZsY9JEyZPh4rMHUuT3ZpKRTJTMvz/HY= Subject key identifier: 4E:4C:80:4E:55:33:A8:50:60:2C:36:3A:1E:03:1E:F9:7A:50:24:8A Authority key identifier: 88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 Certificate issuer: /CN=A91CF1E7/serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft Manifest number: 01BE Signing time: Fri 23 Jan 2026 02:12:28 +0000 Manifest this update: Fri 23 Jan 2026 02:12:27 +0000 Manifest next update: Fri 30 Jan 2026 02:12:27 +0000 Files and hashes: 1: iP8qX1-BdhNDU35LVLXmoW8gfqk.crl (hash: moNm9BWJs4o6rt78zNoKLKy5L/T1CsuR7Q1xjggPVwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 02:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF1E7, serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Validity Not Before: Jan 23 02:12:27 2026 GMT Not After : Jan 30 02:12:27 2026 GMT Subject: CN=6972d90c-b778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7b:c5:fa:4d:e0:f3:ce:a8:fd:c5:be:59:e7: 8f:f7:35:ae:0a:91:2c:63:53:45:24:29:79:b5:1c: 26:03:b0:a0:1b:49:e9:f4:d6:e5:bc:41:dd:98:f4: 6c:2b:ef:59:b7:7f:20:86:1f:48:07:3b:a6:79:23: d6:42:a5:6f:dc:12:cd:d4:3c:84:61:42:51:a8:0a: bf:2d:37:2b:64:2b:6b:a4:c0:bd:12:c1:36:08:6b: 52:99:2e:d1:8b:fd:fc:b3:1b:94:f3:7c:dd:f5:5e: c6:23:08:03:30:68:5c:49:89:b4:10:70:1b:e9:96: e3:08:2d:21:ce:a3:98:47:9b:d6:4c:03:00:b5:06: 24:b2:78:ba:28:f4:98:61:43:93:67:d5:27:2d:ea: 86:48:c1:4c:80:ce:8c:96:28:77:14:4e:b6:70:03: 1e:9e:a5:76:ee:12:a7:0b:7f:20:55:21:32:ff:a0: a9:74:94:6d:b7:0a:31:4c:17:5b:88:0a:c8:0e:d2: ca:f7:5d:7e:64:25:75:c4:13:a4:c6:05:6d:20:a6: fa:b7:53:08:22:b0:d4:0f:17:90:d8:f3:d8:1a:10: 5c:4c:7f:4a:5e:d2:9f:f2:b9:d7:30:c3:4f:9d:8c: 30:24:ca:05:00:9d:3a:2c:e0:c5:6a:c4:ee:35:ff: ec:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4C:80:4E:55:33:A8:50:60:2C:36:3A:1E:03:1E:F9:7A:50:24:8A X509v3 Authority Key Identifier: keyid:88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:1b:06:a5:5a:32:60:67:f7:63:cf:7f:c6:08:79:c5:7e:83: d1:60:c8:b5:f8:8d:c1:e4:aa:6e:37:d6:10:6a:da:81:dd:89: 7f:ae:cb:fe:d5:33:ea:84:7a:3f:bf:22:76:d5:4e:d0:85:b1: fd:83:87:79:a7:a0:1d:63:b9:e8:a6:cd:5c:6c:85:85:ba:77: 0c:19:0e:3f:d4:49:2a:a3:52:04:f0:7c:c1:fa:08:85:fe:23: d7:92:d6:40:68:e9:cb:53:7a:9d:1d:1d:f3:84:dc:85:0b:12: d6:6e:e7:7f:ad:6d:57:15:66:a2:88:03:8d:27:27:9f:ae:ab: 25:60:eb:ce:df:70:76:a0:4c:34:1d:94:78:6a:ae:d2:0a:43: 47:91:05:02:de:de:cc:b4:1b:54:20:b7:7f:bc:17:9d:8c:bd: 5e:0b:d6:64:5d:92:e0:df:06:3b:62:62:4c:3a:2f:27:a1:0e: 44:36:92:5e:4b:ac:cc:58:f2:99:84:9e:18:1f:d6:72:92:b2: 4e:d3:26:17:5f:35:bf:58:33:29:25:b8:e8:92:45:8d:85:3a: ad:f0:e6:47:9d:7b:30:4b:4b:0b:98:e7:54:6d:9e:4b:3b:60: c7:68:15:f7:2b:80:ad:2a:20:a9:86:6d:db:3d:3d:9c:78:e6: a7:9e:16:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YxRTcxMTAvBgNVBAUTKDg4RkYyQTVGNUY4MTc2MTM0MzUzN0U0QjU0QjVFNkEx NkYyMDdFQTkwHhcNMjYwMTIzMDIxMjI3WhcNMjYwMTMwMDIxMjI3WjAYMRYwFAYD VQQDDA02OTcyZDkwYy1iNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nvF+k3g886o/cW+WeeP9zWuCpEsY1NFJCl5tRwmA7CgG0np9NblvEHdmPRs K+9Zt38ghh9IBzumeSPWQqVv3BLN1DyEYUJRqAq/LTcrZCtrpMC9EsE2CGtSmS7R i/38sxuU83zd9V7GIwgDMGhcSYm0EHAb6ZbjCC0hzqOYR5vWTAMAtQYksni6KPSY YUOTZ9UnLeqGSMFMgM6Mlih3FE62cAMenqV27hKnC38gVSEy/6CpdJRttwoxTBdb iArIDtLK911+ZCV1xBOkxgVtIKb6t1MIIrDUDxeQ2PPYGhBcTH9KXtKf8rnXMMNP nYwwJMoFAJ06LODFasTuNf/sswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5MgE5V M6hQYCw2Oh4DHvl6UCSKMB8GA1UdIwQYMBaAFIj/Kl9fgXYTQ1N+S1S15qFvIH6p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjFFNy8xREJFMUEzMjQ3 QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRoTkRVMzVMVkxYbW9XOGdm cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lQOHFYMS1CZGhORFUzNUxWTFhtb1c4Z2Zxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjFFNy8xREJFMUEzMjQ3QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRo TkRVMzVMVkxYbW9XOGdmcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6GwalWjJgZ/djz3/GCHnFfoPRYMi1+I3B5KpuN9YQatqB3Yl/rsv+ 1TPqhHo/vyJ21U7QhbH9g4d5p6AdY7nops1cbIWFuncMGQ4/1Ekqo1IE8HzB+giF /iPXktZAaOnLU3qdHR3zhNyFCxLWbud/rW1XFWaiiAONJyefrqslYOvO33B2oEw0 HZR4aq7SCkNHkQUC3t7MtBtUILd/vBedjL1eC9ZkXZLg3wY7YmJMOi8noQ5ENpJe S6zMWPKZhJ4YH9ZykrJO0yYXXzW/WDMpJbjokkWNhTqt8OZHnXswS0sLmOdUbZ5L O2DHaBX3K4CtKiCphm3bPT2ceOannhYd -----END CERTIFICATE-----Generated at Sun Jan 25 02:49:24 2026 by rpki-client