This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: huO3OSKP/ROS5uuGi+qGneNsAf/FI+bW+pMX4or5ZuM= Subject key identifier: 40:5F:73:6A:7D:C2:F7:C9:DC:AF:0E:C6:5F:AA:04:00:D1:A7:5C:89 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0D38 Signing time: Sat 24 Jan 2026 19:53:13 +0000 Manifest this update: Sat 24 Jan 2026 19:53:12 +0000 Manifest next update: Sat 31 Jan 2026 19:53:12 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: oNc4Y9+TKOUwy4m3XOakl5Gu+nHiefT9i4YfDwpN3ks=) 2: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: R9z8+TOIkB2HShaZE8kZf0+7pw9G6s/c+bvTwVe027E=) 3: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Jan 24 19:53:12 2026 GMT Not After : Jan 31 19:53:12 2026 GMT Subject: CN=69752329-4594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:41:05:1d:06:4d:eb:bd:61:12:12:bb:40: 35:80:0c:2f:99:af:c0:39:f7:f2:20:c0:1a:c4:7e: fa:24:63:98:f3:00:a6:56:2e:16:bb:2f:77:0e:a3: cb:d4:ed:30:5f:52:e2:d5:76:ef:df:d6:be:6c:48: 94:a9:ff:5f:16:9c:41:b5:77:22:3b:a5:79:5b:56: 91:6b:66:f7:2c:15:61:7b:d6:ab:58:23:4a:36:b1: 27:c0:73:5b:02:12:38:35:7f:b8:ea:a5:31:57:1f: bd:1a:ed:79:01:49:c8:6d:1c:36:f6:d9:da:22:03: e0:07:5f:e3:84:de:f0:6c:19:c2:37:ec:da:24:31: a7:fa:b7:18:84:ee:a0:78:f7:87:c5:e0:10:c6:06: 29:73:85:5d:6c:f1:60:76:8d:4c:4c:e2:be:d9:dc: 6a:c9:1d:8b:a5:c6:46:90:b7:94:b7:61:3c:39:10: 39:1b:ee:8b:0a:e7:b2:55:b9:bd:55:b9:cd:ea:c6: 81:b8:97:19:19:49:4a:6c:91:87:46:5c:73:7e:3d: 94:71:3c:9f:53:3b:43:f8:c8:d8:a4:18:73:e6:5a: 23:95:07:04:b9:72:9d:16:1e:58:88:a5:f0:be:a1: 8a:ad:38:32:bd:c5:03:e5:7b:3d:be:f7:10:de:67: 44:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5F:73:6A:7D:C2:F7:C9:DC:AF:0E:C6:5F:AA:04:00:D1:A7:5C:89 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d0:53:dc:01:38:54:25:92:58:34:32:f0:58:2d:08:7a:12: b9:5e:01:04:e9:ea:1f:84:dd:f9:25:92:3c:3f:56:5b:69:3d: 35:26:4a:c9:df:c0:ba:7a:a0:6e:61:29:f0:9e:5a:7e:2c:f9: fc:10:76:8e:75:59:14:01:f5:4e:36:91:80:41:3c:aa:ca:5a: dc:0b:d5:9c:89:28:ea:58:29:60:24:b2:e3:9a:2a:e2:50:aa: e0:48:53:85:1d:dc:02:5e:9d:8b:25:f7:43:b5:22:07:7d:8e: 55:4b:b6:a2:89:e6:70:97:e2:09:69:ec:84:a4:93:90:05:eb: b0:6c:81:ef:38:38:af:e0:00:81:f7:65:79:74:15:1d:fb:7f: 3a:b1:85:fc:93:fb:52:65:11:fa:4b:94:b1:d8:2d:e1:db:56: 9d:ed:83:f9:69:0f:d0:a4:5d:5e:31:98:53:19:4b:cb:46:51: a9:c2:19:72:bf:2d:95:1f:f0:b5:d4:8d:13:9b:23:85:03:e7: dd:d1:f3:74:25:06:c2:94:4d:72:4e:de:f8:d3:b5:e4:d6:f5: 8e:77:7a:84:a2:90:c5:26:22:66:b1:0f:47:76:a7:61:d9:ed: c7:70:72:13:56:7a:ec:9b:4d:3a:16:38:84:50:99:90:4c:8f: 9b:68:88:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjYwMTI0MTk1MzEyWhcNMjYwMTMxMTk1MzEyWjAYMRYwFAYD VQQDDA02OTc1MjMyOS00NTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/JBBR0GTeu9YRISu0A1gAwvma/AOffyIMAaxH76JGOY8wCmVi4Wuy93DqPL 1O0wX1Li1Xbv39a+bEiUqf9fFpxBtXciO6V5W1aRa2b3LBVhe9arWCNKNrEnwHNb AhI4NX+46qUxVx+9Gu15AUnIbRw29tnaIgPgB1/jhN7wbBnCN+zaJDGn+rcYhO6g ePeHxeAQxgYpc4VdbPFgdo1MTOK+2dxqyR2LpcZGkLeUt2E8ORA5G+6LCueyVbm9 VbnN6saBuJcZGUlKbJGHRlxzfj2UcTyfUztD+MjYpBhz5lojlQcEuXKdFh5YiKXw vqGKrTgyvcUD5Xs9vvcQ3mdEywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBfc2p9 wvfJ3K8Oxl+qBADRp1yJMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB0FPcAThUJZJYNDLwWC0IehK5XgEE6eofhN35JZI8P1ZbaT01JkrJ 38C6eqBuYSnwnlp+LPn8EHaOdVkUAfVONpGAQTyqylrcC9WciSjqWClgJLLjmiri UKrgSFOFHdwCXp2LJfdDtSIHfY5VS7aiieZwl+IJaeyEpJOQBeuwbIHvODiv4ACB 92V5dBUd+386sYX8k/tSZRH6S5Sx2C3h21ad7YP5aQ/QpF1eMZhTGUvLRlGpwhly vy2VH/C11I0TmyOFA+fd0fN0JQbClE1yTt7407Xk1vWOd3qEopDFJiJmsQ9Hdqdh 2e3HcHITVnrsm006FjiEUJmQTI+baIj/ -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:08 2026 by rpki-client