This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: WeWbsDbZ/LTT2pleR5PUAagKt0uDXso5XV8rxekabyg= Subject key identifier: B9:C1:54:D9:1D:23:0B:00:31:30:43:80:E7:82:D4:27:6F:D5:4F:B5 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 04C5 Signing time: Sat 24 Jan 2026 23:04:36 +0000 Manifest this update: Sat 24 Jan 2026 23:04:35 +0000 Manifest next update: Sat 31 Jan 2026 23:04:35 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: +I2biKbgNi5pl13iaFlazAQM/CFMapA+f4ov5D4GWyg=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 6npCQGD8mKRcXKLy4jKCYWBhRpmmG05TZblrhBE83zM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Jan 24 23:04:35 2026 GMT Not After : Jan 31 23:04:35 2026 GMT Subject: CN=69755004-8fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6b:c5:b4:90:74:2b:10:41:65:83:07:d5:c0: 48:71:02:c5:47:06:fc:6a:9a:10:e6:73:f5:ce:35: 4d:5f:68:df:f3:2f:37:74:f9:b1:f2:09:5a:ee:3d: bc:3e:24:0c:19:90:4d:45:e1:e3:8f:28:fa:63:ea: 23:83:70:76:32:8a:67:4f:eb:5a:0a:09:9c:18:2e: 32:33:2f:eb:f0:5a:9f:05:d5:ab:46:c4:15:6d:d0: b4:b9:a3:91:6e:6b:bc:94:34:be:fc:6d:12:20:38: 95:5a:bc:3c:69:c6:3b:6f:b6:d7:ac:c7:28:5a:8a: 3e:af:3c:5a:4e:0e:22:6d:ce:e6:24:a2:6c:f8:cb: c9:92:f3:7c:f6:0a:08:38:e3:a7:66:e8:38:c2:8e: e3:d4:c4:cb:c8:0c:b8:88:ec:a1:59:44:d7:38:97: 94:1f:da:9c:5d:80:03:42:3c:d1:2b:aa:d0:a3:d6: 68:91:15:98:97:18:89:3a:84:fd:9c:97:ea:cc:61: 11:0f:24:b4:fa:d7:35:52:0e:5b:ed:ae:fd:37:f1: 5c:3b:84:04:68:7e:e0:b4:ba:40:c6:44:47:e5:af: 53:6e:d6:98:4e:de:fc:33:4a:7d:0a:07:f3:cc:30: fb:e2:ee:fd:38:9b:9b:ae:ec:3d:52:1b:e9:a7:9b: 04:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C1:54:D9:1D:23:0B:00:31:30:43:80:E7:82:D4:27:6F:D5:4F:B5 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:dd:47:9b:27:33:55:b6:46:25:35:ce:e0:5d:71:f3:36:39: 00:12:bd:75:98:60:5b:2b:3a:bd:be:1e:01:7d:9b:49:99:75: a1:64:98:97:e5:26:96:bb:be:8f:b9:73:9f:a5:ee:a7:0f:17: fd:1f:42:e1:ec:22:33:d8:94:ef:c4:3f:87:6e:0b:fa:43:aa: f5:e8:a0:33:e0:81:61:cf:c2:ad:b3:ce:b7:90:2e:86:d3:dc: fd:b8:4f:33:ee:06:98:cb:6b:e1:55:74:ac:8f:92:8b:ab:ad: a3:74:30:1e:fb:38:23:5b:8d:ae:ec:83:8f:62:05:dc:7a:7e: be:58:f3:50:f1:43:5c:d2:33:c0:fd:42:d2:fd:4c:4a:56:85: 00:1f:9d:85:76:65:9e:40:87:0b:e4:10:8d:dc:fe:dd:f7:cb: 95:d5:20:d2:19:b4:c3:2f:7b:a5:52:d0:06:83:4c:a7:c8:ed: b3:58:98:cf:23:02:ed:87:90:e1:f7:cc:35:4b:2b:17:33:25: 38:23:42:63:f9:8a:73:82:9e:72:45:4f:b2:71:75:db:42:e4: 7c:9a:6b:f9:99:28:e9:89:0d:aa:e6:14:c5:5a:b2:23:b4:26: 54:36:aa:aa:66:94:b3:08:88:ec:07:28:72:d2:51:97:39:36: d2:4a:95:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjYwMTI0MjMwNDM1WhcNMjYwMTMxMjMwNDM1WjAYMRYwFAYD VQQDDA02OTc1NTAwNC04ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWvFtJB0KxBBZYMH1cBIcQLFRwb8apoQ5nP1zjVNX2jf8y83dPmx8gla7j28 PiQMGZBNReHjjyj6Y+ojg3B2MopnT+taCgmcGC4yMy/r8FqfBdWrRsQVbdC0uaOR bmu8lDS+/G0SIDiVWrw8acY7b7bXrMcoWoo+rzxaTg4ibc7mJKJs+MvJkvN89goI OOOnZug4wo7j1MTLyAy4iOyhWUTXOJeUH9qcXYADQjzRK6rQo9ZokRWYlxiJOoT9 nJfqzGERDyS0+tc1Ug5b7a79N/FcO4QEaH7gtLpAxkRH5a9TbtaYTt78M0p9Cgfz zDD74u79OJubruw9Uhvpp5sEQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnBVNkd IwsAMTBDgOeC1Cdv1U+1MB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC3UebJzNVtkYlNc7gXXHzNjkAEr11mGBbKzq9vh4BfZtJmXWhZJiX 5SaWu76PuXOfpe6nDxf9H0Lh7CIz2JTvxD+Hbgv6Q6r16KAz4IFhz8Kts863kC6G 09z9uE8z7gaYy2vhVXSsj5KLq62jdDAe+zgjW42u7IOPYgXcen6+WPNQ8UNc0jPA /ULS/UxKVoUAH52FdmWeQIcL5BCN3P7d98uV1SDSGbTDL3ulUtAGg0ynyO2zWJjP IwLth5Dh98w1SysXMyU4I0Jj+Ypzgp5yRU+ycXXbQuR8mmv5mSjpiQ2q5hTFWrIj tCZUNqqqZpSzCIjsByhy0lGXOTbSSpWi -----END CERTIFICATE-----Generated at Sun Jan 25 09:44:55 2026 by rpki-client