This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: Z8xVfQjGcubtBn8WEdoM7KRUZrnLQIKyy8HhMMU72FI= Subject key identifier: AA:A8:3F:C1:50:DC:9A:72:8C:56:13:35:46:C1:A9:EF:F9:59:B4:9B Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 0117 Signing time: Fri 23 Jan 2026 04:06:10 +0000 Manifest this update: Fri 23 Jan 2026 04:06:09 +0000 Manifest next update: Fri 30 Jan 2026 04:06:09 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: 6+vyUO16NLBWJVVfkm/3JQWznejlQzOV41oYCcRd9RE=) 2: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: InhzX7iIGzcMe6Kho+3PqVBZEDr5gXLOQBoPpmS3pUQ=) 3: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: pm0hO1J76gHUpFtZLRftHGLMinnMePQpbTLnXHjj3KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Jan 23 04:06:09 2026 GMT Not After : Jan 30 04:06:09 2026 GMT Subject: CN=6972f3b2-f335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:14:98:a5:76:c3:9c:64:22:7b:d7:bb:85:c6: 61:49:be:4a:4a:0a:45:05:26:70:e9:69:63:7e:7c: b5:a8:7d:9b:25:db:72:16:34:f6:c5:67:28:04:93: c9:f2:70:6d:a2:58:fe:9c:b2:0e:73:51:c5:49:4c: dc:6c:27:f6:52:db:05:9f:18:06:bc:d9:8c:c0:91: a5:10:fb:0f:0c:6c:1c:5a:26:6a:1d:ff:a7:48:50: 3e:28:31:bf:81:bb:d6:d2:f6:b6:42:84:b9:39:0b: f7:99:4b:31:4f:71:e0:ac:ef:a2:ab:73:9b:7d:bd: 41:f6:bd:08:3f:ef:e9:a4:73:36:24:e3:5d:f4:cd: e7:ba:52:4c:cf:8a:65:70:42:09:ec:bc:c3:19:94: 67:ef:41:2f:80:5b:66:c6:ea:bb:82:a1:da:a7:18: df:85:fe:c8:a4:44:6b:29:db:e7:a4:cc:f1:d9:b8: 8c:69:c5:61:dd:7c:db:eb:9c:bf:0e:50:0b:38:89: 15:a9:e8:a4:c8:9e:14:4c:ca:f6:5f:dd:78:41:bf: ca:dd:d4:bb:bd:81:7e:6e:51:91:3a:e8:cf:57:4a: 86:a5:c8:f7:62:ca:74:55:bd:07:e2:6b:1c:08:62: 48:70:8e:6e:b0:29:16:b0:66:1a:f7:c3:97:ae:93: 04:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A8:3F:C1:50:DC:9A:72:8C:56:13:35:46:C1:A9:EF:F9:59:B4:9B X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:ca:a9:38:8e:dd:27:75:26:9a:48:d0:cb:0d:f9:01:c3:6f: 06:21:b5:3a:8d:5f:e5:52:d5:8d:27:5d:2c:2c:d0:55:e0:6b: 7b:94:e4:e8:50:a5:00:32:3d:f7:02:50:72:31:3c:ca:8c:23: 60:f2:cc:9f:f6:2e:cc:ad:e1:5d:3c:0f:07:fc:7e:d2:8d:68: be:26:ac:4e:2c:88:ef:f9:24:e8:40:33:3f:4b:8b:a0:10:3f: 2a:39:f4:a9:6e:4c:4b:2b:2b:f6:dc:8b:e8:88:b6:af:1a:ec: b1:09:07:9c:fb:45:8b:c8:42:30:84:99:fc:33:f2:1c:76:c2: 89:ce:38:a5:05:e9:fe:f7:59:88:2e:ae:1a:9d:23:6b:ed:5a: 4f:25:5c:10:d9:1a:dc:b7:e9:e6:03:fe:d9:d3:e0:50:ff:14: 43:f7:85:68:55:a6:65:fe:a0:b1:6b:78:47:55:10:f3:91:6b: 39:40:ca:6f:77:0a:59:cf:0c:5f:a9:41:63:ef:7e:50:fb:72: 12:b4:79:7d:3b:b2:a9:c0:3c:b4:16:34:11:00:3c:29:55:7e: 83:b7:4d:48:35:b2:94:17:f0:68:ba:2d:3b:86:36:bc:ae:ae: 50:a6:53:2c:41:f7:d8:ce:89:53:42:6d:97:58:b2:8e:fe:a4: c5:ed:b5:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjYwMTIzMDQwNjA5WhcNMjYwMTMwMDQwNjA5WjAYMRYwFAYD VQQDDA02OTcyZjNiMi1mMzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8xSYpXbDnGQie9e7hcZhSb5KSgpFBSZw6Wljfny1qH2bJdtyFjT2xWcoBJPJ 8nBtolj+nLIOc1HFSUzcbCf2UtsFnxgGvNmMwJGlEPsPDGwcWiZqHf+nSFA+KDG/ gbvW0va2QoS5OQv3mUsxT3HgrO+iq3Obfb1B9r0IP+/ppHM2JONd9M3nulJMz4pl cEIJ7LzDGZRn70EvgFtmxuq7gqHapxjfhf7IpERrKdvnpMzx2biMacVh3Xzb65y/ DlALOIkVqeikyJ4UTMr2X914Qb/K3dS7vYF+blGROujPV0qGpcj3Ysp0Vb0H4msc CGJIcI5usCkWsGYa98OXrpMEYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqoP8FQ 3JpyjFYTNUbBqe/5WbSbMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQyqk4jt0ndSaaSNDLDfkBw28GIbU6jV/lUtWNJ10sLNBV4Gt7lOTo UKUAMj33AlByMTzKjCNg8syf9i7MreFdPA8H/H7SjWi+JqxOLIjv+SToQDM/S4ug ED8qOfSpbkxLKyv23IvoiLavGuyxCQec+0WLyEIwhJn8M/IcdsKJzjilBen+91mI Lq4anSNr7VpPJVwQ2Rrct+nmA/7Z0+BQ/xRD94VoVaZl/qCxa3hHVRDzkWs5QMpv dwpZzwxfqUFj735Q+3IStHl9O7KpwDy0FjQRADwpVX6Dt01INbKUF/Boui07hja8 rq5QplMsQffYzolTQm2XWLKO/qTF7bV2 -----END CERTIFICATE-----Generated at Sun Jan 25 02:52:31 2026 by rpki-client