This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: Yx6dWAujDfQAm9CMh6AwS32VEa+AUUazVBNC1NDwNgM= Subject key identifier: 43:D3:A7:AB:E6:83:48:59:11:A3:D4:FC:34:DD:31:79:A7:18:A6:A7 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 05D5 Signing time: Sat 24 Jan 2026 22:16:55 +0000 Manifest this update: Sat 24 Jan 2026 22:16:54 +0000 Manifest next update: Sat 31 Jan 2026 22:16:54 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: qFrMp+Z8/szscMGMk/YanP7c6WepJHL5m7bvTcwmt/0=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: WoeJPfBlNid7RydzbYK1jVf1zbozvuQMQ+6wRuDKrQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Jan 24 22:16:54 2026 GMT Not After : Jan 31 22:16:54 2026 GMT Subject: CN=697544d7-e622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:83:39:bb:10:0e:b5:27:80:37:8d:6c:f3: 0d:c2:80:f5:2a:22:2c:cc:48:d5:10:14:bd:43:ee: 9e:9b:04:fe:fc:34:94:50:c4:6c:a1:05:57:25:26: ce:07:12:d7:f1:e0:a3:93:7b:81:44:cb:d1:e8:4a: 1f:25:30:5a:94:65:cb:e2:48:04:e4:82:c3:00:05: 9e:37:2a:45:6b:b5:41:51:8c:11:96:2a:6c:39:3f: 01:62:08:17:73:89:6d:b5:99:1e:48:5f:22:1b:54: ff:f1:7f:dc:e2:0a:24:d0:84:00:04:e0:22:64:72: b3:db:cd:a5:a5:a1:60:7f:2d:20:3a:59:0e:da:84: 78:e4:c4:97:af:72:76:bb:e9:0f:3c:b6:91:7c:b8: dc:62:bc:6e:7b:59:d5:fe:ac:68:51:d1:07:63:27: ba:60:c2:6a:f9:fb:f7:18:11:ce:47:ae:d1:c4:d6: 54:3e:99:5d:5f:57:99:66:8a:75:4c:18:f6:21:4a: 72:de:d1:66:33:e6:b3:89:9b:85:a0:57:aa:45:eb: db:42:71:7a:b3:d7:71:74:c6:2f:15:2c:00:cb:70: 35:3b:90:3a:66:e0:4e:ba:b7:fe:ef:14:94:f8:d5: 18:69:ca:06:08:0a:06:c7:6f:9d:10:9d:82:3c:90: ef:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D3:A7:AB:E6:83:48:59:11:A3:D4:FC:34:DD:31:79:A7:18:A6:A7 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:4b:5f:79:f8:13:e3:29:77:0a:59:25:51:e4:69:55:2f:45: 63:c0:4d:85:a7:81:cb:08:ee:42:b4:9c:c5:68:00:f7:26:32: e4:75:81:ed:74:1b:7f:63:14:34:cb:b4:e3:f1:73:7b:a3:df: dd:f1:1c:fc:a6:11:2e:07:f6:1a:47:a6:7b:5b:d3:af:d5:0e: 13:5c:e5:6c:13:f0:6c:4e:fc:ab:5b:93:a8:39:a4:d0:fc:1c: bc:78:74:d8:05:25:74:fc:1e:e7:f8:ad:11:76:a6:dd:38:2e: 4c:33:6a:5e:52:28:37:57:2f:a4:fb:05:47:5f:6b:b9:f9:4d: b0:bf:c0:33:7a:19:bf:a4:a8:76:a1:f4:9f:5a:f0:02:61:87: 5a:f9:62:b7:a5:dc:8e:27:12:b1:5a:cd:1b:01:5c:9e:66:07: 7e:4d:19:3e:fa:d0:28:c6:16:c0:70:49:d4:76:b2:7b:61:2d: cb:33:3a:1c:4f:56:ed:3f:bf:49:a5:28:6d:86:85:8a:28:af: c1:c7:0d:bc:73:2a:2a:70:5a:10:4c:f1:58:93:25:5b:95:5c: ec:76:4f:09:6f:37:ab:9a:9c:1c:a3:00:db:90:ff:71:f1:97: 34:b6:0f:72:8b:ce:34:c3:f6:7b:93:6f:2a:3d:70:3d:7b:d5: 8f:de:da:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjYwMTI0MjIxNjU0WhcNMjYwMTMxMjIxNjU0WjAYMRYwFAYD VQQDDA02OTc1NDRkNy1lNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfeDObsQDrUngDeNbPMNwoD1KiIszEjVEBS9Q+6emwT+/DSUUMRsoQVXJSbO BxLX8eCjk3uBRMvR6EofJTBalGXL4kgE5ILDAAWeNypFa7VBUYwRlipsOT8BYggX c4lttZkeSF8iG1T/8X/c4gok0IQABOAiZHKz282lpaFgfy0gOlkO2oR45MSXr3J2 u+kPPLaRfLjcYrxue1nV/qxoUdEHYye6YMJq+fv3GBHOR67RxNZUPpldX1eZZop1 TBj2IUpy3tFmM+aziZuFoFeqRevbQnF6s9dxdMYvFSwAy3A1O5A6ZuBOurf+7xSU +NUYacoGCAoGx2+dEJ2CPJDvbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPTp6vm g0hZEaPU/DTdMXmnGKanMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAS195+BPjKXcKWSVR5GlVL0VjwE2Fp4HLCO5CtJzFaAD3JjLkdYHt dBt/YxQ0y7Tj8XN7o9/d8Rz8phEuB/YaR6Z7W9Ov1Q4TXOVsE/BsTvyrW5OoOaTQ /By8eHTYBSV0/B7n+K0RdqbdOC5MM2peUig3Vy+k+wVHX2u5+U2wv8Azehm/pKh2 ofSfWvACYYda+WK3pdyOJxKxWs0bAVyeZgd+TRk++tAoxhbAcEnUdrJ7YS3LMzoc T1btP79JpShthoWKKK/Bxw28cyoqcFoQTPFYkyVblVzsdk8JbzermpwcowDbkP9x 8Zc0tg9yi840w/Z7k28qPXA9e9WP3tq3 -----END CERTIFICATE-----Generated at Sun Jan 25 12:20:59 2026 by rpki-client