This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: HKDSiGpPaesp8qnMWfjY77ywG/3urxcuzbL52jKrkVs= Subject key identifier: 7E:7E:AB:EA:D2:16:09:A1:68:99:65:ED:D5:0B:39:50:6F:AD:5D:CF Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 042C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 0423 Signing time: Sat 24 Jan 2026 23:33:23 +0000 Manifest this update: Sat 24 Jan 2026 23:33:22 +0000 Manifest next update: Sat 31 Jan 2026 23:33:22 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: Q11ytLc8dVP647NYwNjJzb5xAgmmiVccr1fT7aK+rc4=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: D0wo+x5/eI47vVGDL5twz0n4up2ZDNjTCVO1Xyw3jxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Jan 24 23:33:22 2026 GMT Not After : Jan 31 23:33:22 2026 GMT Subject: CN=697556c3-601f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:80:e8:d1:0f:1f:dd:0c:4a:27:c6:76:2f:83: 45:31:5a:0f:93:cf:2a:1f:f3:21:5d:81:08:c5:86: bf:dd:58:bf:cc:64:cd:42:52:65:5f:14:3e:71:92: be:62:46:38:81:e2:d4:c8:5c:69:9e:12:3b:0e:ee: da:1a:44:1e:68:dc:e4:3d:0b:46:31:e5:ec:d6:9f: 22:44:2d:be:f8:a1:e9:64:00:20:e5:f2:f1:81:89: 87:d2:8e:05:26:f4:39:16:19:af:3f:0f:b4:53:ce: 73:7e:6a:30:67:0b:65:c2:50:be:1f:21:96:46:5d: 3f:a8:51:4e:ea:8a:08:64:4d:05:bf:6f:37:d3:a2: 90:ec:2a:11:df:a9:8a:07:8f:5f:25:04:6d:60:b3: 36:af:47:49:c8:b7:45:9a:f6:f1:8d:f0:b0:3b:cc: b2:c1:33:4e:57:9c:74:33:9f:22:68:da:38:95:00: da:b5:db:4e:1b:14:84:04:89:34:78:ba:94:c0:20: f7:b3:f0:30:38:b9:f2:63:a0:c2:a1:e2:90:ba:33: fa:30:dd:89:38:20:ce:a4:ad:7e:3f:71:2b:a0:9c: 06:dd:f1:17:8c:38:e4:38:ba:2d:86:26:c1:41:cf: 70:c8:49:af:61:26:4a:bb:28:a2:fa:95:f6:22:a4: a9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7E:AB:EA:D2:16:09:A1:68:99:65:ED:D5:0B:39:50:6F:AD:5D:CF X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:30:cc:cb:a0:85:34:0d:e9:b3:27:47:da:20:c2:ae:be:a7: 66:42:d9:f4:67:2d:68:63:13:6e:b4:34:7a:a1:60:9a:5b:b8: f8:ff:1f:17:a7:8c:4a:c1:5b:bb:16:cb:cb:8a:05:38:1e:88: e0:98:84:9a:2e:b8:44:84:13:ea:5b:b3:4f:f0:76:2e:dc:4f: 6a:8e:5a:b1:f5:25:1f:59:79:83:d6:ba:1d:5e:89:48:4c:80: fe:6c:ab:3a:7d:74:e0:72:32:71:c4:4b:26:46:4e:01:d0:af: f6:55:2d:22:f6:4c:2b:0b:c1:8c:d1:d1:2d:7a:91:b5:d7:78: 4c:d8:37:6f:04:bc:74:78:f9:e2:af:b7:65:76:10:33:63:c0: 99:fb:58:e4:03:a9:9e:62:e6:6c:4c:33:f7:01:a0:f6:0d:76: ee:28:36:64:c5:61:71:c1:8e:ca:ed:e1:e4:28:0e:9e:7c:38: 83:93:47:25:f3:c4:37:4d:6b:b2:f2:ae:33:d9:46:9d:62:8a: 5e:05:05:41:1e:66:0e:c4:51:2a:b5:81:f7:3d:94:bc:07:e3: ec:5b:c8:85:f4:0b:01:a0:ce:7f:e8:35:b1:e1:22:5a:1a:3d: 6b:5c:f3:22:2d:ad:24:09:83:25:12:88:52:d6:f8:7f:33:53: 57:d7:75:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjYwMTI0MjMzMzIyWhcNMjYwMTMxMjMzMzIyWjAYMRYwFAYD VQQDDA02OTc1NTZjMy02MDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYDo0Q8f3QxKJ8Z2L4NFMVoPk88qH/MhXYEIxYa/3Vi/zGTNQlJlXxQ+cZK+ YkY4geLUyFxpnhI7Du7aGkQeaNzkPQtGMeXs1p8iRC2++KHpZAAg5fLxgYmH0o4F JvQ5FhmvPw+0U85zfmowZwtlwlC+HyGWRl0/qFFO6ooIZE0Fv28306KQ7CoR36mK B49fJQRtYLM2r0dJyLdFmvbxjfCwO8yywTNOV5x0M58iaNo4lQDatdtOGxSEBIk0 eLqUwCD3s/AwOLnyY6DCoeKQujP6MN2JOCDOpK1+P3EroJwG3fEXjDjkOLothibB Qc9wyEmvYSZKuyii+pX2IqSpaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5+q+rS FgmhaJll7dULOVBvrV3PMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoMMzLoIU0DemzJ0faIMKuvqdmQtn0Zy1oYxNutDR6oWCaW7j4/x8X p4xKwVu7FsvLigU4HojgmISaLrhEhBPqW7NP8HYu3E9qjlqx9SUfWXmD1rodXolI TID+bKs6fXTgcjJxxEsmRk4B0K/2VS0i9kwrC8GM0dEtepG113hM2DdvBLx0ePni r7dldhAzY8CZ+1jkA6meYuZsTDP3AaD2DXbuKDZkxWFxwY7K7eHkKA6efDiDk0cl 88Q3TWuy8q4z2UadYopeBQVBHmYOxFEqtYH3PZS8B+PsW8iF9AsBoM5/6DWx4SJa Gj1rXPMiLa0kCYMlEohS1vh/M1NX13VI -----END CERTIFICATE-----Generated at Sun Jan 25 04:24:59 2026 by rpki-client