This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: cFjDZUMbKpsjXt5WXCFjexZkiitpSDxGCrrVMD49M7g= Subject key identifier: 5D:CE:C2:1F:C5:3B:25:9C:22:0B:CE:74:CC:32:59:50:A2:60:F3:A5 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 053D Signing time: Sat 24 Jan 2026 22:42:03 +0000 Manifest this update: Sat 24 Jan 2026 22:42:02 +0000 Manifest next update: Sat 31 Jan 2026 22:42:02 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: /VpyEPK/ordEFq79LWuVRdv5Gfh73dRBe9NBSK7Crx0=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: khCBRdWb426Yvsw+599qbEndOMTiul2nlL/4zC73sHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Jan 24 22:42:02 2026 GMT Not After : Jan 31 22:42:02 2026 GMT Subject: CN=69754abb-726e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:87:79:71:ad:6b:7a:6b:87:99:05:2b:5d:a5: 06:76:e3:cb:f6:2c:a9:d2:8f:3e:ad:4a:65:96:35: 15:dc:11:a3:c9:1c:9e:bf:61:3a:5e:5f:74:fd:e5: 31:54:10:56:9e:ee:04:a3:e0:a6:f7:76:bf:98:2d: b8:c4:e7:4a:99:7c:bf:8a:6b:19:08:fd:d5:70:be: 5f:66:8c:bd:2f:59:bd:1c:e0:1a:38:0b:59:16:f7: 6e:8c:6c:3f:10:bc:08:ca:3f:2d:95:5e:b1:d5:71: 42:ec:d7:11:22:70:60:87:a9:a9:b0:d9:e3:e5:b1: 79:7f:e0:30:b8:49:9a:99:55:6f:c3:6b:bb:cd:10: ba:cd:e7:bb:29:8b:04:2e:2a:25:39:79:3e:20:21: 8e:7c:fe:27:e7:51:e0:80:60:d0:47:1f:1a:e4:6e: dc:34:1e:6b:a8:3e:50:ef:78:72:eb:8e:d8:fc:31: f3:be:7b:15:9b:af:02:00:57:b7:7c:85:10:61:78: dd:19:24:0f:5b:46:dc:52:c0:8e:1b:d9:67:c8:22: 16:dd:05:fc:9b:db:23:29:8f:e4:31:34:e5:3f:64: 19:ff:bb:55:5c:d4:73:97:2b:b0:f1:2a:c7:e2:0c: b2:55:eb:f4:db:0a:f1:f9:c0:9a:00:37:a2:8b:77: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:CE:C2:1F:C5:3B:25:9C:22:0B:CE:74:CC:32:59:50:A2:60:F3:A5 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:56:d8:eb:75:51:bf:f5:e5:00:38:6a:f4:ac:bc:53:ae:f2: 28:0e:9c:4a:91:ce:9b:5f:f1:02:f9:b8:ad:0f:67:aa:29:b4: 65:e4:d3:b5:e0:0b:f5:e6:5e:56:9f:b1:12:c9:8a:47:e8:5b: 82:c7:cf:8c:61:35:78:db:89:74:b6:39:e5:fe:72:d0:fa:16: 1d:3b:8c:34:7e:c0:73:d7:cd:f2:bc:33:45:19:cc:32:86:5f: 18:90:b9:3f:93:8a:d7:f6:ea:67:95:ee:04:66:fb:a7:af:04: fb:d5:ba:16:93:63:79:40:f3:ba:7e:81:c8:8b:f2:7f:74:1a: 42:b7:3a:9e:2c:1f:3b:c3:41:b8:9c:28:2a:f0:0b:5d:b5:54: 18:63:72:4f:10:ab:2b:9f:d9:7e:b3:54:e5:b4:68:b0:75:38: 26:0f:5a:57:6b:38:df:c0:6a:f5:2b:99:40:71:0b:52:af:ed: 20:d5:5c:83:15:b3:86:52:c3:b1:52:50:14:fc:5c:81:ed:69: f3:71:1a:78:8c:c4:a1:2e:2c:eb:b5:75:6e:a3:b0:28:42:8a: 15:22:7e:0f:6a:b8:98:91:00:f6:15:9d:4d:40:da:44:36:ec: 83:4a:35:e3:b3:da:c4:c5:6d:0b:d5:e6:8c:10:49:da:9f:07: 75:8d:6d:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjYwMTI0MjI0MjAyWhcNMjYwMTMxMjI0MjAyWjAYMRYwFAYD VQQDDA02OTc1NGFiYi03MjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlYd5ca1remuHmQUrXaUGduPL9iyp0o8+rUplljUV3BGjyRyev2E6Xl90/eUx VBBWnu4Eo+Cm93a/mC24xOdKmXy/imsZCP3VcL5fZoy9L1m9HOAaOAtZFvdujGw/ ELwIyj8tlV6x1XFC7NcRInBgh6mpsNnj5bF5f+AwuEmamVVvw2u7zRC6zee7KYsE LiolOXk+ICGOfP4n51HggGDQRx8a5G7cNB5rqD5Q73hy647Y/DHzvnsVm68CAFe3 fIUQYXjdGSQPW0bcUsCOG9lnyCIW3QX8m9sjKY/kMTTlP2QZ/7tVXNRzlyuw8SrH 4gyyVev02wrx+cCaADeii3eRNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3Owh/F OyWcIgvOdMwyWVCiYPOlMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOVtjrdVG/9eUAOGr0rLxTrvIoDpxKkc6bX/EC+bitD2eqKbRl5NO1 4Av15l5Wn7ESyYpH6FuCx8+MYTV424l0tjnl/nLQ+hYdO4w0fsBz183yvDNFGcwy hl8YkLk/k4rX9upnle4EZvunrwT71boWk2N5QPO6foHIi/J/dBpCtzqeLB87w0G4 nCgq8AtdtVQYY3JPEKsrn9l+s1TltGiwdTgmD1pXazjfwGr1K5lAcQtSr+0g1VyD FbOGUsOxUlAU/FyB7WnzcRp4jMShLizrtXVuo7AoQooVIn4PariYkQD2FZ1NQNpE NuyDSjXjs9rExW0L1eaMEEnanwd1jW3H -----END CERTIFICATE-----Generated at Sun Jan 25 06:18:42 2026 by rpki-client