This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: Y+HjgAUoZpLhejqd2zdqif8sGAViGumIkR0ATsJ74+c= Subject key identifier: EF:A8:2A:AC:BB:23:73:88:6A:2E:80:8C:6D:65:8D:0D:6C:A6:D9:36 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 3A Signing time: Sun 25 Jan 2026 06:33:50 +0000 Manifest this update: Sun 25 Jan 2026 06:33:50 +0000 Manifest next update: Sun 01 Feb 2026 06:33:50 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: tSPWoRRf4yviG7PPZX1uE/gKBYOWZowczGFZkGkz4K4=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: u+cn9UutTPsBz+rSTM9fD/qL+39w/7zRbkPYbDsgfs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Jan 25 06:33:50 2026 GMT Not After : Feb 1 06:33:50 2026 GMT Subject: CN=6975b94e-9aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a0:41:c7:84:04:6a:dc:1d:0f:0e:b0:11:c7: ae:99:2e:3e:bb:5a:a5:44:26:4e:65:b0:00:63:5b: 2e:67:fa:5f:28:a8:43:01:67:8c:ae:89:28:40:ea: 14:a1:39:77:9d:00:28:89:81:f3:cd:dd:0b:79:13: c0:48:3f:4e:08:e7:96:a4:85:30:8c:58:0a:c0:54: b5:48:b9:bf:15:5e:20:33:5e:8f:85:fb:86:75:25: 62:ef:ad:bd:ef:e8:03:bf:09:9c:79:ae:42:86:98: bd:84:b1:99:72:db:85:8b:cf:b1:c2:c8:82:54:64: c1:2c:e5:c6:e7:11:48:74:1a:3c:1b:4b:c3:77:c1: 3c:00:87:ad:07:35:98:e8:38:ed:04:fa:51:5d:e2: da:08:9d:3f:ae:1f:ac:5b:80:09:d3:be:68:ae:34: 7d:2a:b9:f7:12:b8:4b:62:62:7d:92:a0:45:2a:5f: e7:95:15:5d:f7:62:f5:aa:7b:a3:1a:92:34:b0:19: b4:c3:68:be:a5:2f:18:2e:9e:ba:68:5d:b2:32:d3: 34:76:6c:7a:9f:30:7d:6a:98:89:19:4c:47:9e:e0: 6d:1d:ea:1e:e4:68:69:f0:28:e7:6a:b1:bd:b8:3a: 41:d2:77:0d:09:41:a2:26:ba:8a:a6:c7:e1:eb:38: 5a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A8:2A:AC:BB:23:73:88:6A:2E:80:8C:6D:65:8D:0D:6C:A6:D9:36 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e6:bc:f6:68:56:e1:fd:64:c3:5a:79:ca:ff:7b:ab:7a:ac: 6e:59:51:0c:1f:aa:f0:f7:93:53:7f:ca:59:d3:10:36:f8:22: 99:f9:9d:ee:23:b7:4e:12:e3:21:57:61:91:94:64:37:97:18: 22:58:2c:12:17:e2:37:52:a7:3e:51:7d:f3:57:ea:4d:1d:2e: 39:cc:91:78:77:00:80:ee:3c:13:39:9e:50:ab:0a:a5:3b:94: 54:66:36:f3:c0:d0:e5:f1:74:47:68:00:e3:d9:bc:9a:82:fe: 4d:14:a3:3f:f3:bc:de:b1:85:30:08:1c:9b:8f:ef:22:1d:ef: e1:c4:c1:af:b1:a0:4f:d4:b4:91:a1:2f:03:99:26:cd:77:ec: 07:8d:a7:4b:a4:09:c0:4b:18:f3:01:d1:24:22:7f:a1:4c:f0: 45:62:09:b8:f4:2e:9e:91:8f:e9:13:f8:0a:b8:59:b7:bc:df: f5:e5:56:00:d9:23:44:9d:80:e0:c2:d9:48:d5:d0:f1:69:f4: 04:1f:db:3f:22:24:3d:d2:f7:4d:f8:b9:a3:6b:dc:45:f8:b8: c4:9e:94:e8:19:71:f5:9c:4e:0b:e0:fc:89:a9:23:45:50:71: 64:79:b7:b7:d0:eb:56:82:29:22:a8:5c:c1:0e:a7:ba:6d:00: 17:f1:e0:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNjAxMjUwNjMzNTBaFw0yNjAyMDEwNjMzNTBaMBgxFjAUBgNV BAMMDTY5NzViOTRlLTlhYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWoEHHhARq3B0PDrARx66ZLj67WqVEJk5lsABjWy5n+l8oqEMBZ4yuiShA6hSh OXedACiJgfPN3Qt5E8BIP04I55akhTCMWArAVLVIub8VXiAzXo+F+4Z1JWLvrb3v 6AO/CZx5rkKGmL2EsZly24WLz7HCyIJUZMEs5cbnEUh0GjwbS8N3wTwAh60HNZjo OO0E+lFd4toInT+uH6xbgAnTvmiuNH0qufcSuEtiYn2SoEUqX+eVFV33YvWqe6Ma kjSwGbTDaL6lLxgunrpoXbIy0zR2bHqfMH1qmIkZTEee4G0d6h7kaGnwKOdqsb24 OkHSdw0JQaImuoqmx+HrOFpHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU76gqrLsj c4hqLoCMbWWNDWym2TYwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALrmvPZoVuH9ZMNaecr/e6t6rG5ZUQwfqvD3k1N/ylnTEDb4Ipn5ne4j t04S4yFXYZGUZDeXGCJYLBIX4jdSpz5RffNX6k0dLjnMkXh3AIDuPBM5nlCrCqU7 lFRmNvPA0OXxdEdoAOPZvJqC/k0Uoz/zvN6xhTAIHJuP7yId7+HEwa+xoE/UtJGh LwOZJs137AeNp0ukCcBLGPMB0SQif6FM8EViCbj0Lp6Rj+kT+Aq4Wbe83/XlVgDZ I0SdgODC2UjV0PFp9AQf2z8iJD3S9034uaNr3EX4uMSelOgZcfWcTgvg/ImpI0VQ cWR5t7fQ61aCKSKoXMEOp7ptABfx4MM= -----END CERTIFICATE-----Generated at Sun Jan 25 21:47:38 2026 by rpki-client