This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: x+DJ8mYMK8/ssfwqgxQdxwvneMLyNwnnBdJwIG8p12w= Subject key identifier: 17:23:6A:E1:E5:69:A8:CA:B1:DB:70:07:D5:AB:9F:9C:5A:F0:2D:7E Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 063F Signing time: Sat 24 Jan 2026 21:59:53 +0000 Manifest this update: Sat 24 Jan 2026 21:59:52 +0000 Manifest next update: Sat 31 Jan 2026 21:59:52 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: +4kMtdLh84T8rcjPP9ebfKdJ4vmDJeKzs12HZv5iVOg=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 9l/idt3LJislssNxfPBsqgjifz4U+6PzxoXpIp44G34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Jan 24 21:59:52 2026 GMT Not After : Jan 31 21:59:52 2026 GMT Subject: CN=697540d9-012d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7e:8f:95:02:55:1f:b1:c9:64:15:34:84:e2: c2:39:42:8e:79:f8:7b:56:09:fa:6c:cc:86:af:73: 67:bf:82:a5:f4:12:93:86:ec:fc:61:23:2b:b1:55: c4:1e:21:67:0f:c2:fd:d9:30:6b:58:1b:2f:12:14: d7:86:29:47:0b:29:a6:73:23:58:87:e3:40:9f:c4: 98:26:3b:e6:b5:ab:ce:36:c8:4f:23:0c:1f:ee:9a: 24:40:16:4a:b5:11:6a:2c:31:ce:f0:18:d4:04:d9: 90:e0:61:6c:a6:24:e0:2b:2d:46:62:82:19:2f:e4: 39:30:b4:86:ba:6f:cf:13:ed:4a:85:6c:c7:44:58: 82:b1:fb:6c:38:fe:b0:b6:11:8d:1d:14:e5:9b:23: dd:14:60:d7:57:7c:7d:04:ad:90:0f:b9:7f:65:6b: aa:92:bc:57:a7:b5:6e:50:6b:61:25:b3:6b:0c:49: 35:ca:8d:32:6e:3a:df:5b:09:01:b0:dc:fa:38:53: d7:52:fa:21:94:5f:9d:84:46:04:bf:29:a6:c5:e2: a0:25:f7:59:dd:53:78:cc:d9:d2:52:f8:f9:34:b7: 1b:3a:aa:72:bf:e3:b9:fc:de:ba:e5:09:eb:b9:20: 13:35:cc:11:bb:87:61:2d:ae:eb:57:9e:75:d9:22: 95:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:23:6A:E1:E5:69:A8:CA:B1:DB:70:07:D5:AB:9F:9C:5A:F0:2D:7E X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:3e:40:a6:ee:9e:a1:87:ed:04:0f:5c:04:4d:e3:4e:40:a4: 6a:88:5d:a6:8f:33:8e:1a:e8:c5:26:8e:af:ea:00:a1:41:b6: 41:f6:d6:14:3b:f0:a2:0e:0f:de:91:94:02:87:fa:38:e3:5a: da:e6:9c:71:b3:07:a6:b9:d1:46:fd:5e:40:ec:54:db:19:93: d1:c9:50:df:8a:31:cf:2e:18:b8:c3:2f:78:48:9c:9c:80:ca: d5:13:77:ae:da:8f:87:43:c2:99:40:a7:0c:1b:fb:4f:95:49: 5e:07:ec:07:45:89:02:40:5e:bb:0e:fe:a2:92:6b:8e:43:58: 9c:ac:9b:c1:f3:33:74:de:72:b0:61:a6:c1:71:91:cf:d2:93: b1:f1:fa:50:b6:1b:71:b7:7d:46:12:18:ce:46:18:fe:56:f3: 37:df:8e:9f:72:a1:08:c4:a4:af:09:74:b5:42:58:57:fa:d3: 31:ca:f4:b2:25:48:6b:97:15:c8:f5:3e:0c:4b:93:ea:01:b3: b7:46:41:80:2a:01:ee:5d:29:03:b7:42:a7:d9:b7:f5:02:be: f1:dc:d1:c5:e0:96:ca:64:27:33:a2:d9:d5:4a:02:85:f6:80: 9e:df:44:49:78:c4:40:4d:f1:71:d4:19:96:38:f5:0a:48:2e: 09:3d:a0:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjYwMTI0MjE1OTUyWhcNMjYwMTMxMjE1OTUyWjAYMRYwFAYD VQQDDA02OTc1NDBkOS0wMTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxX6PlQJVH7HJZBU0hOLCOUKOefh7Vgn6bMyGr3Nnv4Kl9BKThuz8YSMrsVXE HiFnD8L92TBrWBsvEhTXhilHCymmcyNYh+NAn8SYJjvmtavONshPIwwf7pokQBZK tRFqLDHO8BjUBNmQ4GFspiTgKy1GYoIZL+Q5MLSGum/PE+1KhWzHRFiCsftsOP6w thGNHRTlmyPdFGDXV3x9BK2QD7l/ZWuqkrxXp7VuUGthJbNrDEk1yo0ybjrfWwkB sNz6OFPXUvohlF+dhEYEvymmxeKgJfdZ3VN4zNnSUvj5NLcbOqpyv+O5/N665Qnr uSATNcwRu4dhLa7rV5512SKVkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcjauHl aajKsdtwB9Wrn5xa8C1+MB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVPkCm7p6hh+0ED1wETeNOQKRqiF2mjzOOGujFJo6v6gChQbZB9tYU O/CiDg/ekZQCh/o441ra5pxxswemudFG/V5A7FTbGZPRyVDfijHPLhi4wy94SJyc gMrVE3eu2o+HQ8KZQKcMG/tPlUleB+wHRYkCQF67Dv6ikmuOQ1icrJvB8zN03nKw YabBcZHP0pOx8fpQthtxt31GEhjORhj+VvM3346fcqEIxKSvCXS1QlhX+tMxyvSy JUhrlxXI9T4MS5PqAbO3RkGAKgHuXSkDt0Kn2bf1Ar7x3NHF4JbKZCczotnVSgKF 9oCe30RJeMRATfFx1BmWOPUKSC4JPaDP -----END CERTIFICATE-----Generated at Sun Jan 25 09:24:07 2026 by rpki-client