This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft File: 05fnjG3TxpaFEzQVMschiNd1Z68.mft (raw, json) Hash identifier: 668gbp/PenCwDT+OwlIBefglrXWNa79UvKRbwk5lJY8= Subject key identifier: EE:F2:8B:57:F0:07:C6:64:53:68:C3:19:05:FC:6A:9C:F5:68:03:56 Authority key identifier: D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF Certificate issuer: /CN=A91D3CA7/serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Certificate serial: 0338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft Manifest number: 0333 Signing time: Sun 25 Jan 2026 00:12:56 +0000 Manifest this update: Sun 25 Jan 2026 00:12:55 +0000 Manifest next update: Sun 01 Feb 2026 00:12:55 +0000 Files and hashes: 1: 05fnjG3TxpaFEzQVMschiNd1Z68.crl (hash: V+kosKp4tOt3potQ+uVkgYKLym1GJyRwP8lHLQOip3c=) 2: DE183F1CF46611EC815F7283C4F9AE02.roa (hash: 9MdpJxrwdV0aU1f/zX8n/hykvTdPQn1kKe0kWScV57Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3CA7, serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Validity Not Before: Jan 25 00:12:55 2026 GMT Not After : Feb 1 00:12:55 2026 GMT Subject: CN=69756007-102b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:17:58:3b:0b:ce:09:e1:19:ad:97:b8:7e:37: e8:c2:8a:e2:97:3a:d4:1e:2f:ab:ca:31:60:bf:9f: 84:df:0c:8c:be:8e:99:5e:63:b3:3a:39:12:b3:18: 25:e3:13:7a:df:e5:87:d8:b3:c1:19:e6:53:98:d8: 83:4d:4c:12:c8:8c:33:d7:7a:c7:2d:f8:50:b3:a9: df:fb:9a:e9:de:8e:cd:e7:13:93:48:98:74:d4:bc: 77:eb:de:f5:79:6f:2f:08:42:ab:9a:a4:f6:45:22: 58:dc:73:82:07:2d:59:c4:bf:33:9e:19:5e:7a:9a: 0f:29:88:76:30:a8:53:73:a8:f8:d9:4d:8d:3c:eb: 31:89:70:77:56:09:60:8a:5c:23:bf:20:ba:37:7d: 9a:54:5d:b9:28:c0:83:b9:59:46:e4:21:b1:25:fc: 57:15:6b:67:be:5c:57:c0:6a:37:80:92:17:49:d3: b3:0d:b1:80:01:39:6c:be:76:76:6b:a9:b4:fa:61: ad:5e:af:4e:f3:ff:45:a9:09:77:f2:36:b6:49:29: c1:32:64:ba:a4:cf:bf:14:b8:d7:51:5d:ef:74:20: d4:e1:80:23:21:70:e0:3f:53:e3:ec:03:d5:0a:ae: af:2b:4b:eb:04:0b:c4:cd:43:3d:40:89:e5:fe:22: 8c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F2:8B:57:F0:07:C6:64:53:68:C3:19:05:FC:6A:9C:F5:68:03:56 X509v3 Authority Key Identifier: keyid:D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:0b:8a:0e:3d:f6:8c:21:d2:2d:0e:01:dc:e9:ea:7f:87:95: fb:88:54:aa:66:88:f9:3f:97:f7:8f:b1:16:40:4f:e8:98:3e: 4a:3d:d4:43:cb:0d:33:53:df:cd:41:fb:78:52:f9:59:85:1d: 6f:2d:31:22:02:b8:67:51:06:95:35:29:da:29:13:c7:7d:5e: 53:0b:c2:c2:01:ac:fb:0f:7b:7d:ae:70:f7:81:4d:93:fc:1e: bd:d5:97:20:0c:f0:ad:ae:e4:af:7b:8f:46:9b:02:e7:a5:53: b5:1d:58:4a:06:da:29:88:3a:17:1d:ad:8a:ea:db:ce:4e:7f: 7f:b2:88:21:c4:0d:1c:0a:6b:28:b0:9d:0e:ea:47:95:e2:f9: 65:44:05:c7:a3:24:b4:f7:a1:ae:b8:bc:22:68:d4:d8:e7:bb: be:84:13:46:c3:aa:d5:6e:45:e1:71:17:95:71:3d:22:58:e0: e6:bf:da:dd:c3:bc:a3:52:ce:47:7a:bc:49:ec:b5:34:ba:88: 33:04:73:20:97:3d:3e:ff:81:a8:e5:f1:37:65:ba:9b:f8:3c: 6e:9e:93:74:b1:50:ae:b2:98:78:42:03:7c:51:23:3e:94:4f: d8:f2:b3:99:05:77:f7:67:fc:4c:13:0a:29:05:1d:ff:9c:97: b4:b7:3c:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNDQTcxMTAvBgNVBAUTKEQzOTdFNzhDNkREM0M2OTY4NTEzMzQxNTMyQzcyMTg4 RDc3NTY3QUYwHhcNMjYwMTI1MDAxMjU1WhcNMjYwMjAxMDAxMjU1WjAYMRYwFAYD VQQDDA02OTc1NjAwNy0xMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhhdYOwvOCeEZrZe4fjfoworilzrUHi+ryjFgv5+E3wyMvo6ZXmOzOjkSsxgl 4xN63+WH2LPBGeZTmNiDTUwSyIwz13rHLfhQs6nf+5rp3o7N5xOTSJh01Lx36971 eW8vCEKrmqT2RSJY3HOCBy1ZxL8znhleepoPKYh2MKhTc6j42U2NPOsxiXB3Vglg ilwjvyC6N32aVF25KMCDuVlG5CGxJfxXFWtnvlxXwGo3gJIXSdOzDbGAATlsvnZ2 a6m0+mGtXq9O8/9FqQl38ja2SSnBMmS6pM+/FLjXUV3vdCDU4YAjIXDgP1Pj7APV Cq6vK0vrBAvEzUM9QInl/iKMfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7yi1fw B8ZkU2jDGQX8apz1aANWMB8GA1UdIwQYMBaAFNOX54xt08aWhRM0FTLHIYjXdWev MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0NBNy8zRjBFMEUwNkY0 NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhwYUZFelFWTXNjaGlOZDFa NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1Zm5qRzNUeHBhRkV6UVZNc2NoaU5kMVo2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0NBNy8zRjBFMEUwNkY0NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhw YUZFelFWTXNjaGlOZDFaNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuC4oOPfaMIdItDgHc6ep/h5X7iFSqZoj5P5f3j7EWQE/omD5KPdRD yw0zU9/NQft4UvlZhR1vLTEiArhnUQaVNSnaKRPHfV5TC8LCAaz7D3t9rnD3gU2T /B691ZcgDPCtruSve49GmwLnpVO1HVhKBtopiDoXHa2K6tvOTn9/soghxA0cCmso sJ0O6keV4vllRAXHoyS096GuuLwiaNTY57u+hBNGw6rVbkXhcReVcT0iWODmv9rd w7yjUs5HerxJ7LU0uogzBHMglz0+/4Go5fE3Zbqb+DxunpN0sVCusph4QgN8USM+ lE/Y8rOZBXf3Z/xMEwopBR3/nJe0tzyY -----END CERTIFICATE-----Generated at Sun Jan 25 17:04:20 2026 by rpki-client