This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: FfAzPZeBioAJTvB9cYs6ZkCokb7+NXrfTdQNt5+All4= Subject key identifier: 70:5E:78:E0:37:55:D1:E8:1F:0E:C8:64:AC:93:51:EA:70:5A:D0:61 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A88 Signing time: Sat 24 Jan 2026 19:03:01 +0000 Manifest this update: Sat 24 Jan 2026 19:03:00 +0000 Manifest next update: Sat 31 Jan 2026 19:03:00 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: gNwxYLw/KlZSHz5C6zejIox4/5c6rD7DEJ4FhdRQTZ4=) 2: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: zcOpYALMg85NqdJptG4eC86fQdzmEleTfcf+2WTyKGE=) 3: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: uSN3Gv1mPyytVdfiVFWC/qduqPudyKGyOZQwN01E8xE=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: mV1bCNXfD7w4ttjCRjT99a/5iAZCupAPYyeXcu8Us3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2712 (0xa98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Jan 24 19:03:00 2026 GMT Not After : Jan 31 19:03:00 2026 GMT Subject: CN=69751765-dcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:68:0a:98:6c:a2:95:28:20:ef:46:05:f9:f8: 09:0f:f2:5e:20:1e:42:a6:a9:29:30:7f:b7:92:8b: 40:53:27:bc:23:72:46:e8:69:7a:15:57:92:25:74: 17:70:81:fe:51:35:9f:c2:a3:56:50:1a:ac:28:ad: 2a:7b:b6:72:28:33:36:0e:dc:f0:e8:da:8b:ef:74: 53:55:78:b9:8e:a6:ac:ce:5f:dc:11:4a:85:3d:35: a4:8f:ee:e6:7f:1f:20:1d:ff:23:9b:7a:1b:db:ae: 35:04:ef:67:11:44:19:80:57:03:5e:5f:f5:e1:41: 33:c8:68:04:80:69:d9:18:8b:fd:b8:eb:ba:3a:56: 24:ee:52:a2:b6:56:9e:f8:d9:7f:7d:7b:c2:b2:57: c8:38:e8:b0:7e:44:6e:92:d4:2f:7c:0b:be:21:83: da:7b:db:8d:6a:6f:86:f6:d8:69:bf:59:82:82:e9: 9f:a0:65:df:4a:e5:f1:99:21:7a:34:9d:35:6a:4c: 22:99:fc:1f:05:95:be:7e:7b:e4:60:d6:7f:8e:62: 22:6a:b7:f7:bc:0c:7e:1e:35:6d:d1:ef:3b:f0:d9: 91:f3:38:62:7a:4b:79:5b:ed:89:20:15:95:59:02: 89:5a:0b:f3:a0:db:ff:df:32:60:0e:8c:8a:19:f7: 81:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5E:78:E0:37:55:D1:E8:1F:0E:C8:64:AC:93:51:EA:70:5A:D0:61 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:cb:e8:1b:c2:7d:fb:b4:c7:75:44:69:58:ce:3b:4d:04:98: b9:4b:27:13:00:7b:bc:79:a4:b5:14:92:59:78:83:9e:b2:5a: f3:47:56:62:c7:5a:ff:48:13:84:29:77:14:fb:b7:c9:84:f6: c9:f5:d5:b8:68:d2:1b:7b:60:ff:14:96:d0:cb:32:e6:68:37: f6:f9:d9:79:f8:76:23:5e:99:58:30:9e:8d:8b:98:a8:1e:cb: a8:b3:5e:af:a7:93:ed:30:82:3a:c3:c8:79:b3:59:ed:62:06: bd:61:eb:54:16:8d:1d:35:78:ec:1d:46:91:a5:7e:e9:10:90: 32:13:b5:38:5d:63:30:0f:ce:02:31:40:d4:c0:6e:10:bf:fb: 53:2d:d5:e7:89:bb:a5:58:8d:ab:dc:64:f9:77:3f:0a:38:5f: 26:4b:95:27:33:59:84:e5:e0:ad:5b:92:5d:b7:f8:b8:1f:4e: bc:e7:70:0f:a4:fe:7a:e3:a4:ed:04:27:0d:f3:f1:e1:cc:0d: 03:b4:d3:a7:2b:05:37:02:f4:51:8f:5c:a0:c2:cf:db:b8:a5: b0:9d:39:52:81:41:d9:2f:24:5e:69:2e:99:46:be:b6:82:7e: e3:e0:da:1c:9b:45:db:7c:c7:1d:be:d7:25:6b:fd:e1:8a:90: 07:b0:4a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwMTI0MTkwMzAwWhcNMjYwMTMxMTkwMzAwWjAYMRYwFAYD VQQDDA02OTc1MTc2NS1kY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGgKmGyilSgg70YF+fgJD/JeIB5CpqkpMH+3kotAUye8I3JG6Gl6FVeSJXQX cIH+UTWfwqNWUBqsKK0qe7ZyKDM2Dtzw6NqL73RTVXi5jqaszl/cEUqFPTWkj+7m fx8gHf8jm3ob2641BO9nEUQZgFcDXl/14UEzyGgEgGnZGIv9uOu6OlYk7lKitlae +Nl/fXvCslfIOOiwfkRuktQvfAu+IYPae9uNam+G9thpv1mCgumfoGXfSuXxmSF6 NJ01akwimfwfBZW+fnvkYNZ/jmIiarf3vAx+HjVt0e878NmR8zhiekt5W+2JIBWV WQKJWgvzoNv/3zJgDoyKGfeB4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBeeOA3 VdHoHw7IZKyTUepwWtBhMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWy+gbwn37tMd1RGlYzjtNBJi5SycTAHu8eaS1FJJZeIOeslrzR1Zi x1r/SBOEKXcU+7fJhPbJ9dW4aNIbe2D/FJbQyzLmaDf2+dl5+HYjXplYMJ6Ni5io Hsuos16vp5PtMII6w8h5s1ntYga9YetUFo0dNXjsHUaRpX7pEJAyE7U4XWMwD84C MUDUwG4Qv/tTLdXnibulWI2r3GT5dz8KOF8mS5UnM1mE5eCtW5Jdt/i4H06853AP pP5646TtBCcN8/HhzA0DtNOnKwU3AvRRj1ygws/buKWwnTlSgUHZLyReaS6ZRr62 gn7j4Nocm0XbfMcdvtcla/3hipAHsEod -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:09 2026 by rpki-client