This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: dZPhJ1ayrr1+XPbfwglF1x1jGD5GciesekB8uhEdWAo= Subject key identifier: 8E:9D:F7:DE:67:D5:80:5E:B6:BC:DA:6E:F8:D4:72:B2:78:5D:64:68 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 010F Signing time: Sun 25 Jan 2026 04:17:32 +0000 Manifest this update: Sun 25 Jan 2026 04:17:31 +0000 Manifest next update: Sun 01 Feb 2026 04:17:31 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: 85SJrtsorkO6wIsNn6ywXIJXjWW68hqKuSEJcJxLaPc=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: 5VNZ8rNXbQQKdKelf/v7rMupqWLx2zXfYFtsUljtzac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Jan 25 04:17:31 2026 GMT Not After : Feb 1 04:17:31 2026 GMT Subject: CN=6975995c-4a41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c3:0d:7a:70:cc:3a:bd:1c:80:f7:f7:31:24: cd:11:dd:da:2f:c1:b3:d5:34:9e:79:8c:28:25:c1: 4b:ba:4b:3f:22:bd:5e:80:03:15:24:68:ad:b9:22: 7a:7c:8c:9b:1a:b1:49:7d:29:69:a7:75:0d:32:0a: 27:8c:46:4a:76:3a:a9:15:e2:a9:54:16:d7:40:d0: 7e:b3:a3:ed:a4:8e:5d:dc:55:be:f0:1c:54:bf:b1: d4:4c:37:11:8a:33:ab:e6:6b:55:b4:88:5f:eb:ce: 0f:70:79:c6:69:6a:42:28:2e:fa:ca:01:88:69:92: e4:08:a7:89:ea:e2:0a:b5:08:9b:71:13:7f:53:21: 20:e0:2b:32:93:97:1d:92:39:ab:b2:81:b6:61:ea: db:36:39:e2:82:8e:b3:87:0f:76:56:07:2f:71:fe: 6d:b6:e0:95:05:80:ce:a6:f5:35:f0:1e:bd:ab:64: 77:f2:fd:25:5e:e3:b2:ac:0b:90:b3:a1:0d:fd:54: 19:5b:b5:fc:ea:cd:20:0a:3a:f5:92:de:29:8c:bc: e2:8f:b1:0e:74:0e:07:f2:8c:ed:57:f0:4c:31:ee: 9e:96:23:99:e2:f3:dd:df:b8:ac:d7:dc:e9:99:71: b9:69:7c:7a:a8:dd:09:1a:ec:38:fc:71:5a:fb:e1: c2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9D:F7:DE:67:D5:80:5E:B6:BC:DA:6E:F8:D4:72:B2:78:5D:64:68 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d5:3e:16:94:fd:c9:dd:21:8a:9c:68:8e:ce:d8:76:70:42: 3b:22:e9:df:29:c9:0e:1c:90:1b:bd:68:97:b8:06:12:d3:c4: 50:23:0e:87:e5:74:fa:1a:1c:05:e3:2d:38:ee:2a:e3:8d:6e: d7:b8:20:56:e9:7f:96:e2:1f:00:c8:13:22:09:72:cf:dc:2a: 62:e3:f2:c4:aa:eb:ee:fb:77:bf:17:01:9b:cf:15:b8:86:8f: 1b:25:68:20:5e:3e:80:35:82:0e:cf:f6:42:cf:10:02:2c:1f: 83:8c:82:f0:5e:97:9a:f1:da:05:e2:3f:8e:2e:01:d6:34:de: 97:92:c6:c3:df:cd:96:85:38:29:1d:41:2f:d3:7d:f2:6e:af: 7a:b0:ea:a4:1e:7e:0c:b0:40:47:ed:ed:f1:33:fb:f6:6b:dd: d6:f4:ba:25:cc:0b:fc:82:55:96:b0:82:92:c6:71:a3:f8:33: 2a:9d:79:51:15:41:cf:a2:a5:d4:54:a0:3c:2d:b9:56:9d:c1: 08:47:76:4a:3a:29:fb:4b:79:98:7f:49:5f:cf:ff:68:1d:19: ed:40:14:83:00:13:5b:b9:dd:10:ed:af:35:aa:fb:bd:9c:f5: 07:be:c9:6b:f3:5e:db:f0:8b:00:8f:21:00:2e:2d:ae:e2:b7: df:a1:68:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjYwMTI1MDQxNzMxWhcNMjYwMjAxMDQxNzMxWjAYMRYwFAYD VQQDDA02OTc1OTk1Yy00YTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMMNenDMOr0cgPf3MSTNEd3aL8Gz1TSeeYwoJcFLuks/Ir1egAMVJGituSJ6 fIybGrFJfSlpp3UNMgonjEZKdjqpFeKpVBbXQNB+s6PtpI5d3FW+8BxUv7HUTDcR ijOr5mtVtIhf684PcHnGaWpCKC76ygGIaZLkCKeJ6uIKtQibcRN/UyEg4Csyk5cd kjmrsoG2YerbNjnigo6zhw92Vgcvcf5ttuCVBYDOpvU18B69q2R38v0lXuOyrAuQ s6EN/VQZW7X86s0gCjr1kt4pjLzij7EOdA4H8oztV/BMMe6eliOZ4vPd37is19zp mXG5aXx6qN0JGuw4/HFa++HCPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6d995n 1YBetrzabvjUcrJ4XWRoMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd1T4WlP3J3SGKnGiOzth2cEI7IunfKckOHJAbvWiXuAYS08RQIw6H 5XT6GhwF4y047irjjW7XuCBW6X+W4h8AyBMiCXLP3Cpi4/LEquvu+3e/FwGbzxW4 ho8bJWggXj6ANYIOz/ZCzxACLB+DjILwXpea8doF4j+OLgHWNN6XksbD382WhTgp HUEv033ybq96sOqkHn4MsEBH7e3xM/v2a93W9LolzAv8glWWsIKSxnGj+DMqnXlR FUHPoqXUVKA8LblWncEIR3ZKOin7S3mYf0lfz/9oHRntQBSDABNbud0Q7a81qvu9 nPUHvslr817b8IsAjyEALi2u4rffoWhw -----END CERTIFICATE-----Generated at Sun Jan 25 11:53:04 2026 by rpki-client