This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft File: rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft (raw, json) Hash identifier: g9imRkMAp1bauei58Gh0G6mM5EtunoLzoP+HeVHOFxw= Subject key identifier: 7E:0A:3A:85:66:01:69:E7:80:54:CC:31:3C:EA:15:D7:F2:94:4F:8E Authority key identifier: AD:01:9F:03:5B:FF:3F:3B:17:32:3C:DB:BB:14:A0:7D:5D:E8:EC:33 Certificate issuer: /CN=A91D837B/serialNumber=AD019F035BFF3F3B17323CDBBB14A07D5DE8EC33 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft Manifest number: D1 Signing time: Sun 25 Jan 2026 04:57:00 +0000 Manifest this update: Sun 25 Jan 2026 04:57:00 +0000 Manifest next update: Sun 01 Feb 2026 04:57:00 +0000 Files and hashes: 1: rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl (hash: qc37SE4fk5kXhstFc9PqPYgymiMcr+xxF3wsVTjf0k4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=AD019F035BFF3F3B17323CDBBB14A07D5DE8EC33 Validity Not Before: Jan 25 04:57:00 2026 GMT Not After : Feb 1 04:57:00 2026 GMT Subject: CN=6975a29c-3b8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:58:66:0b:cf:b4:f2:3b:63:a5:00:39:6a:09: fb:75:e3:5c:01:9e:6c:4e:85:e8:bb:bd:b8:8b:b7: 42:d3:b6:3b:f8:66:f3:08:38:e9:8e:8c:53:26:61: 86:9a:2f:5a:87:31:84:df:9c:53:c1:6f:68:28:4b: 70:87:3c:d1:10:6e:16:3e:46:a0:00:1d:08:eb:7f: 46:44:52:6c:d8:f6:4b:2e:04:48:f7:83:be:84:31: 3e:14:ca:2b:8e:40:9b:08:89:7d:d4:f8:ec:89:ba: 76:ca:41:0b:06:5f:54:11:b2:dd:e8:f5:dc:40:f6: 08:56:97:95:4f:7a:8d:27:01:3e:8c:97:32:d5:73: ab:9f:7e:8e:5a:6f:37:a8:57:c7:e9:1c:12:e8:00: 63:7c:56:ec:a5:5a:1e:19:ba:78:64:6d:7c:f2:49: 73:5e:d7:c9:b0:31:a4:cf:79:9d:b8:52:ab:82:35: b3:8c:60:da:5d:82:02:22:dc:29:aa:26:5b:18:18: 31:61:51:2f:37:ae:e4:84:48:53:21:72:c2:51:c0: 82:42:b9:38:aa:33:0e:44:b6:21:a8:f1:99:c1:60: b8:7f:eb:2d:0a:1d:3d:11:f8:e4:78:07:98:68:31: ab:60:8e:0e:fa:9e:01:4a:0c:f4:f4:ad:a3:32:aa: 68:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0A:3A:85:66:01:69:E7:80:54:CC:31:3C:EA:15:D7:F2:94:4F:8E X509v3 Authority Key Identifier: keyid:AD:01:9F:03:5B:FF:3F:3B:17:32:3C:DB:BB:14:A0:7D:5D:E8:EC:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:17:a2:e7:c6:f2:b2:4a:a6:2d:69:80:5d:b2:29:1a:c0:e9: 77:41:97:bd:f7:17:a2:e9:ac:e6:5a:de:c7:04:96:27:71:56: c9:de:9d:4f:c8:10:7b:56:2e:0d:b2:fa:3d:17:3b:85:b6:06: 6d:11:ae:7b:0d:60:b6:aa:ed:1d:f5:0a:e5:f9:79:0d:b8:d3: 70:48:54:d4:3e:c0:24:05:7c:27:a2:a5:f2:a6:66:37:21:8b: 71:96:29:0e:02:a8:3f:5b:34:25:0b:d4:4e:0d:7b:15:7c:14: 32:20:b0:b7:4b:83:61:1d:b5:7e:05:7c:3c:2d:91:fb:a3:c8: 08:89:d9:79:da:62:8b:e6:77:84:38:db:04:7b:78:f8:c2:38: 7b:dd:6d:94:7f:c1:d3:f7:2a:68:20:3b:7a:87:32:34:56:3f: fa:1f:f0:28:ed:03:0f:ea:93:99:c7:f9:c3:49:b4:e0:c3:89: 81:d3:0b:04:46:9c:b5:17:a5:bd:42:b6:71:90:96:1f:83:47: d2:f6:2a:2b:84:e5:f1:4f:d0:de:9d:d3:9b:a0:93:73:53:7d: 3f:e2:d5:49:14:71:46:6e:ab:10:f3:eb:5b:3e:0b:15:83:0a: 2c:b4:58:f7:a8:51:25:e5:f8:d1:d2:e4:f8:0d:dd:97:25:4a: 4c:20:4e:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDgzN0IxMTAvBgNVBAUTKEFEMDE5RjAzNUJGRjNGM0IxNzMyM0NEQkJCMTRBMDdE NURFOEVDMzMwHhcNMjYwMTI1MDQ1NzAwWhcNMjYwMjAxMDQ1NzAwWjAYMRYwFAYD VQQDDA02OTc1YTI5Yy0zYjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiFhmC8+08jtjpQA5agn7deNcAZ5sToXou724i7dC07Y7+GbzCDjpjoxTJmGG mi9ahzGE35xTwW9oKEtwhzzREG4WPkagAB0I639GRFJs2PZLLgRI94O+hDE+FMor jkCbCIl91Pjsibp2ykELBl9UEbLd6PXcQPYIVpeVT3qNJwE+jJcy1XOrn36OWm83 qFfH6RwS6ABjfFbspVoeGbp4ZG188klzXtfJsDGkz3mduFKrgjWzjGDaXYICItwp qiZbGBgxYVEvN67khEhTIXLCUcCCQrk4qjMORLYhqPGZwWC4f+stCh09EfjkeAeY aDGrYI4O+p4BSgz09K2jMqpoNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4KOoVm AWnngFTMMTzqFdfylE+OMB8GA1UdIwQYMBaAFK0BnwNb/z87FzI827sUoH1d6Owz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xRDdCNjNCQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi9yUUdmQTF2X1B6c1hNanpidXhTZ2ZWM283 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRR2ZBMXZfUHpzWE1qemJ1eFNnZlYzbzdETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xRDdCNjNCQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi9yUUdmQTF2X1B6 c1hNanpidXhTZ2ZWM283RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKF6LnxvKySqYtaYBdsikawOl3QZe99xei6azmWt7HBJYncVbJ3p1P yBB7Vi4Nsvo9FzuFtgZtEa57DWC2qu0d9Qrl+XkNuNNwSFTUPsAkBXwnoqXypmY3 IYtxlikOAqg/WzQlC9RODXsVfBQyILC3S4NhHbV+BXw8LZH7o8gIidl52mKL5neE ONsEe3j4wjh73W2Uf8HT9ypoIDt6hzI0Vj/6H/Ao7QMP6pOZx/nDSbTgw4mB0wsE Rpy1F6W9QrZxkJYfg0fS9iorhOXxT9DendOboJNzU30/4tVJFHFGbqsQ8+tbPgsV gwostFj3qFEl5fjR0uT4Dd2XJUpMIE5N -----END CERTIFICATE-----Generated at Sun Jan 25 12:10:27 2026 by rpki-client