This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: VprUIm778eMXuf9TNk+uMvPo32e9fJwo4q8b9kHKCsM= Subject key identifier: DF:90:91:A8:67:9E:4D:99:DA:16:B1:04:CB:AD:43:96:14:A4:12:BD Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2C3A Signing time: Sat 24 Jan 2026 15:45:28 +0000 Manifest this update: Sat 24 Jan 2026 15:45:27 +0000 Manifest next update: Sat 31 Jan 2026 15:45:27 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: Jh7EId1GzxKCoBlPe72zD783/UU85MogEoekOVCYtVM=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: iuR0hKy1te9ReiQAcpbPM6UF6bcHMIJQ871N78hvW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Jan 24 15:45:27 2026 GMT Not After : Jan 31 15:45:27 2026 GMT Subject: CN=6974e918-5279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:2f:be:eb:db:3b:7c:a9:07:b1:64:5b:62: 55:cc:b8:bf:ae:e0:ef:ca:61:b5:bb:cd:16:bf:0f: 0f:b7:5d:7b:21:10:18:70:23:25:24:2f:c4:c6:56: ec:2e:58:61:c0:dc:0c:09:72:1f:02:73:cf:77:bf: e3:12:7e:44:26:ab:88:74:cf:e4:ca:07:de:75:c6: 6c:4d:c6:f5:66:7e:68:c0:9c:f8:d3:49:ba:ee:3d: a5:7f:97:7c:6f:df:e7:89:99:ca:36:95:98:ff:a9: 8e:1b:8b:20:57:68:1e:ec:34:c4:ea:98:86:50:08: a3:24:a2:cb:c1:16:df:29:86:5a:a4:fd:25:d3:95: 30:49:fb:55:e2:50:63:e8:66:af:76:b0:77:fc:ef: e9:1c:61:00:da:73:18:5c:1b:59:97:68:ef:77:19: 64:8a:56:d7:21:3e:75:86:1f:a8:41:fa:ab:07:8e: 4e:a7:ec:ef:dd:c4:14:e3:b6:c6:af:c5:3b:a8:0a: d2:0d:40:75:2e:25:11:ec:e2:9d:32:23:68:76:e0: 90:43:2b:37:37:d7:eb:89:1a:78:c1:89:04:14:09: 47:a2:db:88:5d:b7:f2:77:62:8b:25:ce:e5:f0:3c: 2f:f6:14:90:8b:6b:41:a4:41:70:27:b7:39:5b:7a: 18:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:90:91:A8:67:9E:4D:99:DA:16:B1:04:CB:AD:43:96:14:A4:12:BD X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:97:bd:ec:29:df:07:16:79:f4:11:c5:8f:06:62:fd:36:83: 20:98:cb:5b:2e:dc:74:48:f5:a4:b7:a8:e3:dc:8b:02:31:99: 42:a3:87:e7:b9:5f:03:0c:08:66:de:e4:54:7d:da:e1:2a:30: 7f:50:ad:f8:34:c5:9b:8c:49:f9:ad:fa:70:7d:69:df:98:29: eb:5d:36:3a:d5:10:1c:ee:09:4c:0f:c4:eb:7c:d5:e2:fa:b2: b6:88:99:41:9a:50:f4:3c:8a:d5:0e:8d:b5:63:cc:66:f4:5b: e9:1a:58:f3:ed:d4:6b:42:e9:f3:54:0c:c5:75:ab:c1:38:67: 30:ff:15:71:a1:b4:6f:02:c7:0b:64:59:0d:1a:94:d6:38:1a: 8f:c4:c6:52:24:3e:2d:aa:79:b2:be:2e:d5:e9:96:6a:7c:f3: c4:6c:86:ab:48:cc:e5:89:e7:29:8b:14:f9:f6:12:57:57:1f: 4d:79:80:6d:84:27:e0:76:3a:6b:72:9c:37:7e:51:c1:5c:55: a6:8d:6d:0b:a0:45:5b:e2:31:9c:4e:40:02:8f:97:3d:4c:d3: 2c:36:92:4c:53:8a:d7:e0:7d:59:aa:02:98:13:e9:2e:55:f2: 81:e7:70:d4:21:f0:dc:12:08:26:60:94:d5:1e:17:90:64:84: ed:71:ab:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjYwMTI0MTU0NTI3WhcNMjYwMTMxMTU0NTI3WjAYMRYwFAYD VQQDDA02OTc0ZTkxOC01Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmMvvuvbO3ypB7FkW2JVzLi/ruDvymG1u80Wvw8Pt117IRAYcCMlJC/Exlbs LlhhwNwMCXIfAnPPd7/jEn5EJquIdM/kygfedcZsTcb1Zn5owJz400m67j2lf5d8 b9/niZnKNpWY/6mOG4sgV2ge7DTE6piGUAijJKLLwRbfKYZapP0l05UwSftV4lBj 6GavdrB3/O/pHGEA2nMYXBtZl2jvdxlkilbXIT51hh+oQfqrB45Op+zv3cQU47bG r8U7qArSDUB1LiUR7OKdMiNoduCQQys3N9friRp4wYkEFAlHotuIXbfyd2KLJc7l 8Dwv9hSQi2tBpEFwJ7c5W3oY7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+Qkahn nk2Z2haxBMutQ5YUpBK9MB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzl73sKd8HFnn0EcWPBmL9NoMgmMtbLtx0SPWkt6jj3IsCMZlCo4fn uV8DDAhm3uRUfdrhKjB/UK34NMWbjEn5rfpwfWnfmCnrXTY61RAc7glMD8TrfNXi +rK2iJlBmlD0PIrVDo21Y8xm9FvpGljz7dRrQunzVAzFdavBOGcw/xVxobRvAscL ZFkNGpTWOBqPxMZSJD4tqnmyvi7V6ZZqfPPEbIarSMzliecpixT59hJXVx9NeYBt hCfgdjprcpw3flHBXFWmjW0LoEVb4jGcTkACj5c9TNMsNpJMU4rX4H1ZqgKYE+ku VfKB53DUIfDcEggmYJTVHheQZITtcavF -----END CERTIFICATE-----Generated at Sun Jan 25 09:41:30 2026 by rpki-client