This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: Czk5ZDCAKdg+fhpBacsVRQbcHlzVHPO64uvtPhD+CvI= Subject key identifier: 14:E0:9B:A4:00:0F:13:6E:E0:92:4F:6E:DA:C8:17:F0:14:FC:14:C9 Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0F2F Signing time: Sat 24 Jan 2026 17:26:30 +0000 Manifest this update: Sat 24 Jan 2026 17:26:30 +0000 Manifest next update: Sat 31 Jan 2026 17:26:30 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: qu2kAaRp+1EsMllYPBMN6m/MgszETP3J5dvXC0M0YpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3696 (0xe70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Jan 24 17:26:30 2026 GMT Not After : Jan 31 17:26:30 2026 GMT Subject: CN=697500c6-9617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b2:ed:fc:e7:df:31:c1:7a:40:a9:0c:e9:e3: fd:4e:c8:56:ff:08:81:d7:52:45:38:74:84:96:52: 44:f7:71:e0:54:46:3a:4a:1a:df:51:80:83:ed:a8: da:4f:e6:ae:92:c6:59:0d:2d:8a:14:72:8e:9a:dd: 1b:b0:a0:2a:57:94:d5:9b:df:13:8b:d6:ca:8d:b8: bd:5a:82:25:bc:77:c5:eb:0c:62:1e:67:84:2b:09: 72:f8:7a:fb:63:84:e9:d8:fb:4f:2b:7e:32:72:8d: fd:a3:1a:e8:90:02:bf:de:9a:88:41:65:35:c9:39: 45:28:bd:61:de:6a:14:b7:0c:fa:27:a4:db:04:a2: 2b:2c:7e:0e:5b:c9:74:bf:e9:8d:7a:c7:0c:fa:3a: a1:f3:de:1c:48:cc:19:a4:34:7a:31:2a:f4:75:6b: c5:43:f8:50:9c:30:58:fc:f5:e9:5e:22:fa:b2:88: 1d:d3:b2:db:d7:e4:9a:28:ec:2f:49:c2:6f:3c:d3: 87:0a:25:a9:59:66:bc:89:13:b8:84:92:ef:de:e5: 85:40:fe:63:57:de:e2:4f:c9:3d:e5:19:2c:c5:9f: 1d:95:d1:ad:11:13:d7:0d:3f:19:72:04:36:77:c3: bb:91:03:4b:8d:41:f4:9f:cb:1b:c4:34:e2:7e:2d: 2a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E0:9B:A4:00:0F:13:6E:E0:92:4F:6E:DA:C8:17:F0:14:FC:14:C9 X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e3:fb:56:ff:05:8d:20:31:f0:9c:c7:e8:1f:ae:00:e4:87: be:dc:70:e1:fa:53:e7:62:b7:e5:b6:5f:0b:b7:2b:50:7e:91: f9:a2:9e:cb:25:ba:df:4b:2a:da:f6:c0:8c:55:7e:7d:b7:df: fc:fe:6a:fd:a7:54:72:7a:7c:ec:4e:c6:97:54:35:c7:a4:5f: fe:1f:a0:71:3f:cd:60:e7:a2:46:01:6c:20:85:94:ea:0f:a4: 11:fb:88:2a:49:2f:06:dc:d0:25:0c:f8:c3:eb:39:55:cb:b4: 7d:db:e8:ab:9e:d6:d6:38:8f:fa:fd:ff:5a:4e:d7:8a:b1:00: ff:81:89:d2:07:29:a7:24:91:be:b3:0b:f9:7c:9c:01:9b:3b: 33:a6:2a:0b:26:b2:b4:72:04:7b:9d:ba:ca:b3:a6:71:aa:be: b3:53:c7:56:4b:c2:be:15:60:f6:9b:b5:ca:f9:1d:7e:3f:b7: 01:20:0e:96:2e:2d:81:e8:b8:6c:7c:40:5e:9a:6f:ec:f8:73: bd:00:34:d2:1b:75:5c:53:f1:63:b6:37:1c:75:78:ab:77:ef: ee:2c:4d:80:eb:cd:94:65:e4:2b:9e:be:fc:dc:56:58:d1:36: f5:d9:79:29:6d:2e:65:77:d4:a5:7a:16:d6:cb:fe:16:ac:a2: 81:d3:b7:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjYwMTI0MTcyNjMwWhcNMjYwMTMxMTcyNjMwWjAYMRYwFAYD VQQDDA02OTc1MDBjNi05NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlbLt/OffMcF6QKkM6eP9TshW/wiB11JFOHSEllJE93HgVEY6ShrfUYCD7aja T+auksZZDS2KFHKOmt0bsKAqV5TVm98Ti9bKjbi9WoIlvHfF6wxiHmeEKwly+Hr7 Y4Tp2PtPK34yco39oxrokAK/3pqIQWU1yTlFKL1h3moUtwz6J6TbBKIrLH4OW8l0 v+mNescM+jqh894cSMwZpDR6MSr0dWvFQ/hQnDBY/PXpXiL6sogd07Lb1+SaKOwv ScJvPNOHCiWpWWa8iRO4hJLv3uWFQP5jV97iT8k95RksxZ8dldGtERPXDT8ZcgQ2 d8O7kQNLjUH0n8sbxDTifi0qXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTgm6QA DxNu4JJPbtrIF/AU/BTJMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF4/tW/wWNIDHwnMfoH64A5Ie+3HDh+lPnYrfltl8LtytQfpH5op7L JbrfSyra9sCMVX59t9/8/mr9p1RyenzsTsaXVDXHpF/+H6BxP81g56JGAWwghZTq D6QR+4gqSS8G3NAlDPjD6zlVy7R92+irntbWOI/6/f9aTteKsQD/gYnSBymnJJG+ swv5fJwBmzszpioLJrK0cgR7nbrKs6Zxqr6zU8dWS8K+FWD2m7XK+R1+P7cBIA6W Li2B6LhsfEBemm/s+HO9ADTSG3VcU/FjtjccdXird+/uLE2A682UZeQrnr783FZY 0Tb12XkpbS5ld9SlehbWy/4WrKKB07cg -----END CERTIFICATE-----Generated at Sun Jan 25 18:28:22 2026 by rpki-client