This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: +GC3kE/qkFd9Y3wsVAhUrbSde7pNb0Oo9VpuzVFNFBY= Subject key identifier: 6C:61:68:80:A5:85:6B:69:AD:8D:70:9B:47:9D:7A:B6:FE:6E:F0:9B Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 0235 Signing time: Fri 23 Jan 2026 01:10:43 +0000 Manifest this update: Fri 23 Jan 2026 01:10:43 +0000 Manifest next update: Fri 30 Jan 2026 01:10:43 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: en6W6s1O1/CGQ+ldBbM7tWSHzYP0IJix1m8bHAxFqwk=) 2: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) 3: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 4: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 01:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Jan 23 01:10:43 2026 GMT Not After : Jan 30 01:10:43 2026 GMT Subject: CN=6972ca93-5f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:4c:b5:04:81:a6:f5:09:7e:57:00:75:51: 8a:a2:07:6f:aa:4b:83:21:3b:3d:d4:3c:78:ed:74: ee:6b:7b:47:30:48:9f:0c:f2:2a:00:2c:59:0c:82: be:7c:18:72:7e:2b:55:ff:5a:13:4e:5f:89:ce:e1: 5e:66:6c:b4:1f:08:72:8b:90:12:dd:91:9e:2c:07: ec:7b:f3:f3:84:e4:01:cb:3f:bb:1c:32:cc:e3:14: 93:de:51:7f:30:1f:78:98:91:36:6e:39:9f:37:30: b1:c3:fb:a5:f8:86:07:69:e1:31:b0:8d:6c:3e:1e: 02:1b:97:fa:87:ef:ce:29:cc:b0:f1:33:af:d2:e1: ae:18:11:c9:2f:06:16:da:2d:8e:2e:93:54:ca:4f: d0:c5:3b:e4:f7:e2:b1:67:e1:17:0c:9c:c0:84:64: 67:d2:52:d0:02:03:98:2b:7b:6b:2e:c6:55:c1:1c: 62:50:34:d9:45:31:47:2b:b9:20:0e:26:1e:ed:ac: 53:1d:32:3c:3b:93:e0:cb:91:2b:e6:d8:cc:29:2e: 7e:da:8c:f2:1b:bb:0b:cf:75:e3:57:a2:01:3e:b8: fb:d6:6c:25:40:a6:bb:5a:f7:b0:f4:9f:4c:1d:36: e8:86:6d:b5:08:31:49:6b:69:12:86:92:70:0b:5b: 4c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:61:68:80:A5:85:6B:69:AD:8D:70:9B:47:9D:7A:B6:FE:6E:F0:9B X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:44:40:e0:60:b8:12:21:ea:84:70:bf:03:09:24:a4:61:b1: a5:87:96:97:a8:24:37:c9:53:0b:d1:ac:60:3a:54:32:e5:09: 59:8a:85:41:f7:8d:aa:9f:d0:77:0b:b5:1e:77:38:c7:c5:b1: 4a:40:c9:73:61:6c:34:63:95:2e:75:b3:3e:60:d1:86:da:e1: 1c:df:ad:7d:6e:30:c4:59:f5:86:ba:82:a6:74:46:ea:03:fa: 83:1a:6a:49:36:9e:1d:26:4a:1e:7f:aa:1b:e2:c1:44:ea:9c: b9:64:dc:b4:a9:f5:0c:2f:03:77:71:3a:fe:fc:9e:fa:5b:cb: 44:c4:57:df:fb:86:e8:55:47:92:41:ef:1d:5e:8b:94:69:dc: 64:50:d6:35:5f:b5:5f:7a:69:6d:e2:8b:ae:a1:2c:33:a7:13: bc:64:cf:ad:87:fe:f3:e4:d3:14:00:47:59:b3:e6:4b:34:3c: 84:41:af:f7:65:4e:87:3d:f2:a3:4a:9c:43:34:67:20:b1:48: 08:51:86:57:ef:74:f4:80:95:b1:d6:0a:b0:19:c6:ab:ae:c7: 4a:9a:ac:56:af:61:4b:77:c5:44:a0:45:ab:1c:48:8c:94:8f: 52:b0:7b:2b:11:d3:76:46:38:fc:da:59:be:0f:60:a7:77:0b: e3:67:f1:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwMTIzMDExMDQzWhcNMjYwMTMwMDExMDQzWjAYMRYwFAYD VQQDDA02OTcyY2E5My01ZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiZMtQSBpvUJflcAdVGKogdvqkuDITs91Dx47XTua3tHMEifDPIqACxZDIK+ fBhyfitV/1oTTl+JzuFeZmy0Hwhyi5AS3ZGeLAfse/PzhOQByz+7HDLM4xST3lF/ MB94mJE2bjmfNzCxw/ul+IYHaeExsI1sPh4CG5f6h+/OKcyw8TOv0uGuGBHJLwYW 2i2OLpNUyk/QxTvk9+KxZ+EXDJzAhGRn0lLQAgOYK3trLsZVwRxiUDTZRTFHK7kg DiYe7axTHTI8O5Pgy5Er5tjMKS5+2ozyG7sLz3XjV6IBPrj71mwlQKa7Wvew9J9M HTbohm21CDFJa2kShpJwC1tMuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxhaICl hWtprY1wm0ederb+bvCbMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXREDgYLgSIeqEcL8DCSSkYbGlh5aXqCQ3yVML0axgOlQy5QlZioVB 942qn9B3C7UedzjHxbFKQMlzYWw0Y5UudbM+YNGG2uEc3619bjDEWfWGuoKmdEbq A/qDGmpJNp4dJkoef6ob4sFE6py5ZNy0qfUMLwN3cTr+/J76W8tExFff+4boVUeS Qe8dXouUadxkUNY1X7Vfemlt4ouuoSwzpxO8ZM+th/7z5NMUAEdZs+ZLNDyEQa/3 ZU6HPfKjSpxDNGcgsUgIUYZX73T0gJWx1gqwGcarrsdKmqxWr2FLd8VEoEWrHEiM lI9SsHsrEdN2Rjj82lm+D2CndwvjZ/ES -----END CERTIFICATE-----Generated at Sun Jan 25 03:03:44 2026 by rpki-client