This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft File: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft (raw, json) Hash identifier: amXW58SofCbk8NecSYnoFF+RdMdps+s0Y40XId3w/to= Subject key identifier: 36:D9:D5:32:DB:27:48:77:C4:A5:4C:07:B5:60:75:37:8C:1B:88:7D Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 04B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft Manifest number: 0493 Signing time: Sat 24 Jan 2026 23:17:09 +0000 Manifest this update: Sat 24 Jan 2026 23:17:08 +0000 Manifest next update: Sat 31 Jan 2026 23:17:08 +0000 Files and hashes: 1: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl (hash: gslSBnyc10+G96DbIMCUWEMhwv344rp7xPOF/9L1GsQ=) 2: A6FA9A4A116911EEBB241C32C4F9AE02.roa (hash: RgkBiig85GBTWo6hrTV95O/BhHQIjrp9qKOVuIGC96Q=) 3: E248BDA63C5211EF94184A20C4F9AE02.roa (hash: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY=) 4: F4D295243FDA11EFAF5E676AC4F9AE02.roa (hash: aj4Q4SeRE+NI4REEKNFbR+3ayDuDtlipzDAl7u7My1E=) 5: AFF169A0F34111F0B7AB4BD35C6F56BC.roa (hash: xgLtW76MmnPlrBwpNDs13VQLfyrLcwzm2q1UY5AfPA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Jan 24 23:17:08 2026 GMT Not After : Jan 31 23:17:08 2026 GMT Subject: CN=697552f4-b70e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:8a:85:56:ee:60:89:ea:bd:c4:fb:31:4b:8d: a2:d4:a4:20:30:2e:45:81:9d:2d:7c:f8:28:2c:8c: 0a:55:4a:54:38:44:73:43:6a:97:52:40:4f:eb:60: ad:fb:b0:68:bf:8e:6f:3f:6b:aa:69:a2:9b:de:79: 93:f9:cb:d4:bb:30:fa:87:35:b4:0f:cc:99:f1:54: f7:69:f1:db:e2:f9:5e:9f:bc:ea:4f:0e:29:f7:a7: 18:b7:56:9c:8a:2c:f4:16:95:d6:f7:6e:15:bd:43: c4:d9:f3:a3:86:ef:4c:fe:58:30:40:04:f6:7e:18: ff:fe:d4:dc:f7:0f:b3:c7:c8:2e:2a:f3:8c:bd:06: cc:a4:58:dc:77:af:95:62:29:3d:d3:be:2b:42:f6: 45:88:f2:b1:10:bc:a7:30:26:1d:d2:c6:f7:d0:6f: b8:ab:34:0b:29:1a:f1:c2:64:db:2a:ff:39:15:64: d3:1e:c2:23:e5:66:14:18:23:3b:96:1c:f3:3e:5f: c7:20:de:18:ac:01:7b:c7:cf:c7:b2:02:fb:2e:7d: 29:78:47:e3:ab:35:b6:9e:c5:14:7b:92:b6:84:65: 20:fd:7f:11:7e:ab:81:b7:ae:23:37:49:2e:c1:64: 56:29:92:c0:28:47:7d:30:35:98:b3:12:92:09:3e: 78:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D9:D5:32:DB:27:48:77:C4:A5:4C:07:B5:60:75:37:8C:1B:88:7D X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:bf:ed:f7:bd:92:f7:41:89:94:c2:ca:3f:a0:01:26:6a:b0: 7b:a8:f6:6e:38:c1:c0:be:1c:1e:3c:12:d9:85:fb:f7:1b:fc: ed:d0:ae:e8:28:fd:87:16:c7:4e:c4:a4:1b:af:ef:ae:d5:e0: f3:54:a2:b5:23:11:34:a1:06:9a:c3:4f:93:13:b7:f9:03:e4: b9:44:28:3d:74:dd:6c:5e:8b:7c:d2:1a:7e:8a:53:c1:17:5a: 21:37:5b:8c:06:6d:7c:59:2b:f9:da:3e:e7:b3:58:45:51:1a: 7c:90:57:3e:c0:d6:58:eb:09:8e:38:70:7a:01:b2:77:d6:c5: a1:40:ab:54:ac:7c:7f:5f:42:52:f6:30:ac:a3:71:06:71:ca: f8:26:3a:7e:79:97:77:4d:e8:2c:6a:a8:53:ad:6c:2d:42:b5: 75:be:78:f5:b0:1e:bf:d5:0b:40:e5:41:21:83:f6:5b:77:aa: a6:82:38:8a:20:ef:14:eb:d0:8e:4f:9e:fa:a7:f6:d0:6b:03: b3:38:a7:cb:a8:65:84:88:a9:22:1b:83:bf:3d:b5:f6:61:7e: 0f:69:b2:3d:5b:2a:5a:34:6b:09:43:be:de:07:85:3e:ec:7f: 70:e3:79:20:8c:f3:69:41:da:18:35:74:50:bf:8b:d5:96:7e: 16:73:52:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjYwMTI0MjMxNzA4WhcNMjYwMTMxMjMxNzA4WjAYMRYwFAYD VQQDDA02OTc1NTJmNC1iNzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8YqFVu5gieq9xPsxS42i1KQgMC5FgZ0tfPgoLIwKVUpUOERzQ2qXUkBP62Ct +7Bov45vP2uqaaKb3nmT+cvUuzD6hzW0D8yZ8VT3afHb4vlen7zqTw4p96cYt1ac iiz0FpXW924VvUPE2fOjhu9M/lgwQAT2fhj//tTc9w+zx8guKvOMvQbMpFjcd6+V Yik9074rQvZFiPKxELynMCYd0sb30G+4qzQLKRrxwmTbKv85FWTTHsIj5WYUGCM7 lhzzPl/HIN4YrAF7x8/HsgL7Ln0peEfjqzW2nsUUe5K2hGUg/X8RfquBt64jN0ku wWRWKZLAKEd9MDWYsxKSCT54SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbZ1TLb J0h3xKVMB7VgdTeMG4h9MB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEM4RS8wMzJFNTdCODc0MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendD bkZoVnRNRjBVRnIyRVo4d3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAv+33vZL3QYmUwso/oAEmarB7qPZuOMHAvhwePBLZhfv3G/zt0K7o KP2HFsdOxKQbr++u1eDzVKK1IxE0oQaaw0+TE7f5A+S5RCg9dN1sXot80hp+ilPB F1ohN1uMBm18WSv52j7ns1hFURp8kFc+wNZY6wmOOHB6AbJ31sWhQKtUrHx/X0JS 9jCso3EGccr4Jjp+eZd3TegsaqhTrWwtQrV1vnj1sB6/1QtA5UEhg/Zbd6qmgjiK IO8U69COT576p/bQawOzOKfLqGWEiKkiG4O/PbX2YX4PabI9WypaNGsJQ77eB4U+ 7H9w43kgjPNpQdoYNXRQv4vVln4Wc1Kp -----END CERTIFICATE-----Generated at Sun Jan 25 06:08:39 2026 by rpki-client