This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: CPOdQZkY1hPzY0R6pUJdck6aV+HvpgAmtDrNWN0X5/4= Subject key identifier: A6:EC:FC:53:0B:DD:27:6B:35:6D:B2:87:5A:37:DD:7B:93:C7:4E:90 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 0109 Signing time: Sun 25 Jan 2026 04:15:27 +0000 Manifest this update: Sun 25 Jan 2026 04:15:27 +0000 Manifest next update: Sun 01 Feb 2026 04:15:27 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: 0DyVPzS1h75388CbG7hgHy4G4BTeoukUWZgZBdavm8Q=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Jan 25 04:15:27 2026 GMT Not After : Feb 1 04:15:27 2026 GMT Subject: CN=697598df-98b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c1:4c:c9:43:a1:77:3c:c3:a5:ce:83:87:a1: 7a:a1:4e:f2:e4:d0:b0:24:f3:12:45:c5:30:cd:e3: ea:98:54:5d:9f:4d:75:ad:39:ff:f5:53:9c:ac:da: 2c:c1:20:78:da:a9:d1:fd:cf:c6:9d:32:bb:93:01: 71:5f:eb:62:ad:4d:66:bd:de:5b:d0:c0:8b:10:e9: e6:77:d9:c6:db:ce:3b:58:4d:c5:71:5d:b1:1c:45: 86:f0:34:56:3b:cd:8a:06:34:ef:ea:4e:76:c6:60: b5:a1:1f:2e:47:6d:be:d0:35:d8:e4:ae:c0:9d:e2: 0e:fe:37:f0:f0:4d:53:f8:94:6d:64:c5:43:a8:0c: 3d:bf:18:45:af:65:81:47:ed:37:b3:0b:da:0c:0f: be:b6:e5:da:43:d4:30:fb:c8:d4:fa:c6:6c:1e:f0: e7:3c:bb:15:3e:12:3f:0d:fc:0f:bc:5c:5b:ea:7f: eb:98:9b:fc:dc:f8:88:81:5c:13:17:71:8a:a6:68: 37:f4:6b:17:28:04:f8:4a:3d:db:94:de:e2:52:39: 6e:23:db:3e:87:8c:4e:d6:cf:d8:69:db:0f:1b:10: 36:8f:d5:e0:9e:55:72:53:d0:89:2c:ce:55:2d:79: d2:e3:d0:f5:f1:6a:71:e1:d8:32:66:cc:4e:cc:31: 42:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EC:FC:53:0B:DD:27:6B:35:6D:B2:87:5A:37:DD:7B:93:C7:4E:90 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:ad:c5:03:bf:18:92:2b:24:2c:41:8e:7d:05:51:fc:58:69: 36:fc:7a:9c:e5:54:25:66:a1:a4:7d:be:83:8c:33:92:bf:89: 9b:ce:b1:7b:cd:0f:60:4b:fb:70:4a:ea:77:ba:5d:13:ad:85: 37:3b:ce:be:1c:fe:eb:4d:41:21:6a:4c:6f:12:5c:d3:2d:55: 08:61:92:9e:c9:27:05:12:6c:33:42:fa:1f:04:b3:ac:0f:17: db:11:75:8f:f9:68:12:52:03:e0:60:39:5b:4d:70:82:a9:13: 04:c2:07:bc:61:9e:58:8a:b5:fb:f9:dc:d5:96:82:23:7d:a0: 2c:00:44:1b:d2:22:89:36:f0:9d:04:34:89:3a:f9:b9:ed:9a: e0:14:f5:75:1e:3e:45:fe:38:7e:d2:2b:24:91:e5:0f:d3:99: 27:95:de:7e:24:fa:c9:ab:fe:0d:b6:4d:f9:45:cd:2f:d2:0e: c5:21:6d:a9:3c:e7:3f:7d:f9:ae:2c:88:92:b7:0d:ae:57:ab: a7:ae:1a:3a:7f:d3:97:06:34:a5:d2:28:e7:74:91:d4:6f:5e: b7:b9:e3:70:a7:4a:c7:e2:45:23:57:b6:b4:23:b0:9f:7a:d9: e6:aa:b0:83:a6:01:db:c3:5d:80:77:70:0f:55:32:d3:75:18: 20:11:3e:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjYwMTI1MDQxNTI3WhcNMjYwMjAxMDQxNTI3WjAYMRYwFAYD VQQDDA02OTc1OThkZi05OGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MFMyUOhdzzDpc6Dh6F6oU7y5NCwJPMSRcUwzePqmFRdn011rTn/9VOcrNos wSB42qnR/c/GnTK7kwFxX+tirU1mvd5b0MCLEOnmd9nG2847WE3FcV2xHEWG8DRW O82KBjTv6k52xmC1oR8uR22+0DXY5K7AneIO/jfw8E1T+JRtZMVDqAw9vxhFr2WB R+03swvaDA++tuXaQ9Qw+8jU+sZsHvDnPLsVPhI/DfwPvFxb6n/rmJv83PiIgVwT F3GKpmg39GsXKAT4Sj3blN7iUjluI9s+h4xO1s/YadsPGxA2j9XgnlVyU9CJLM5V LXnS49D18Wpx4dgyZsxOzDFChQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbs/FML 3SdrNW2yh1o33XuTx06QMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByrcUDvxiSKyQsQY59BVH8WGk2/Hqc5VQlZqGkfb6DjDOSv4mbzrF7 zQ9gS/twSup3ul0TrYU3O86+HP7rTUEhakxvElzTLVUIYZKeyScFEmwzQvofBLOs DxfbEXWP+WgSUgPgYDlbTXCCqRMEwge8YZ5YirX7+dzVloIjfaAsAEQb0iKJNvCd BDSJOvm57ZrgFPV1Hj5F/jh+0iskkeUP05knld5+JPrJq/4Ntk35Rc0v0g7FIW2p POc/ffmuLIiStw2uV6unrho6f9OXBjSl0ijndJHUb163ueNwp0rH4kUjV7a0I7Cf etnmqrCDpgHbw12Ad3APVTLTdRggET6Y -----END CERTIFICATE-----Generated at Sun Jan 25 20:08:54 2026 by rpki-client