This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: p9amYk/u7drcEMmuNeykG8bARLc82Fwz1AJUYXsR9+A= Subject key identifier: C5:D3:E6:18:1E:00:A7:6B:58:54:48:CD:0D:37:79:6D:AA:A9:F8:FF Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0EB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0EAF Signing time: Sat 24 Jan 2026 17:21:48 +0000 Manifest this update: Sat 24 Jan 2026 17:21:47 +0000 Manifest next update: Sat 31 Jan 2026 17:21:47 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: 5rpqGSjZLypi9AMxVm89FPs1Ml00EuIOlb7FltuQLy8=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3768 (0xeb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Jan 24 17:21:47 2026 GMT Not After : Jan 31 17:21:47 2026 GMT Subject: CN=6974ffac-74b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:52:17:22:35:bf:46:b0:2f:77:1a:f5:a6:60: e9:ed:62:10:92:5b:be:a9:b5:2a:8b:79:d2:df:a5: 69:f0:8b:f6:02:1b:d7:a9:6c:49:a7:29:de:25:60: 1e:09:fc:08:16:88:97:71:aa:b3:e9:a4:d6:7a:7a: 78:b5:c0:bc:0b:54:ad:7e:db:04:ad:eb:4e:d7:67: f1:7a:d7:27:4e:cd:34:3c:a6:c1:e2:94:1d:d7:b3: 5b:53:5f:2a:08:60:30:36:ad:75:dc:fb:85:09:e1: 37:49:6a:cb:73:63:9b:c5:3f:80:85:57:de:13:8e: 11:c4:31:c4:f1:4c:d3:11:15:a2:2d:71:a8:53:ae: 5e:d2:58:52:5d:1d:dd:e3:18:90:4e:91:16:74:31: 55:6e:4d:ed:5c:07:12:f2:43:d0:a8:50:81:fb:58: b1:83:58:8f:b0:0c:83:18:15:22:27:96:4d:03:71: db:4e:8a:57:e6:1d:aa:f2:18:56:f7:05:96:b7:3a: 2b:c1:be:df:9c:02:f8:00:c2:ae:b8:45:d1:5b:9d: 2d:d8:a4:a4:9e:0b:f5:fb:a6:da:48:3c:2f:7a:61: 21:2b:f1:e1:c0:34:eb:20:2e:2b:e2:b1:b1:b7:83: 32:8a:85:da:45:29:7f:72:f8:4d:cb:ef:d0:1a:da: 33:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D3:E6:18:1E:00:A7:6B:58:54:48:CD:0D:37:79:6D:AA:A9:F8:FF X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:47:57:a8:1e:41:ad:a8:1c:70:01:31:5c:e4:25:d6:f8:04: 89:8e:be:47:76:1c:1d:38:37:6d:ac:1c:6c:94:fd:4f:28:88: fd:32:8a:de:03:f6:1f:6d:8e:dd:93:15:a4:4b:82:e6:6a:f6: 14:59:72:e0:8b:7a:fa:9e:9e:c4:89:20:20:45:d6:64:be:76: 34:14:b6:41:43:b0:90:40:d0:5e:3c:47:c0:55:fc:44:9c:d1: 1e:91:e3:94:b8:23:fb:08:94:54:4d:3c:03:67:c4:72:32:cb: 53:cc:f9:ee:91:e4:28:25:d6:92:43:d5:25:e4:37:72:ca:fc: f7:f4:df:4b:ec:86:2f:db:8f:aa:3d:76:d0:b1:df:62:ec:d5: a6:db:4a:b3:b0:e9:27:68:47:86:45:f8:46:c2:3c:4b:38:be: ff:4e:99:53:b1:19:e1:71:fb:1e:f7:8e:90:b7:89:cb:0f:4f: fb:6e:57:80:4b:5c:41:05:6e:1b:cf:8e:1a:32:57:e2:d9:98: 72:0e:d5:96:ad:8d:49:0e:0c:7d:78:00:ef:a9:fa:a8:45:d2: b9:9b:fd:a6:7a:dc:fa:dc:f6:c8:b8:92:93:f3:c7:20:b2:da: ff:dd:ed:06:38:49:cf:26:bf:0c:78:71:8b:1c:f0:65:d0:59: 31:5e:5a:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjYwMTI0MTcyMTQ3WhcNMjYwMTMxMTcyMTQ3WjAYMRYwFAYD VQQDDA02OTc0ZmZhYy03NGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj1IXIjW/RrAvdxr1pmDp7WIQklu+qbUqi3nS36Vp8Iv2AhvXqWxJpyneJWAe CfwIFoiXcaqz6aTWenp4tcC8C1StftsEretO12fxetcnTs00PKbB4pQd17NbU18q CGAwNq113PuFCeE3SWrLc2ObxT+AhVfeE44RxDHE8UzTERWiLXGoU65e0lhSXR3d 4xiQTpEWdDFVbk3tXAcS8kPQqFCB+1ixg1iPsAyDGBUiJ5ZNA3HbTopX5h2q8hhW 9wWWtzorwb7fnAL4AMKuuEXRW50t2KSkngv1+6baSDwvemEhK/HhwDTrIC4r4rGx t4MyioXaRSl/cvhNy+/QGtozQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXT5hge AKdrWFRIzQ03eW2qqfj/MB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHR1eoHkGtqBxwATFc5CXW+ASJjr5HdhwdODdtrBxslP1PKIj9More A/YfbY7dkxWkS4LmavYUWXLgi3r6np7EiSAgRdZkvnY0FLZBQ7CQQNBePEfAVfxE nNEekeOUuCP7CJRUTTwDZ8RyMstTzPnukeQoJdaSQ9Ul5Ddyyvz39N9L7IYv24+q PXbQsd9i7NWm20qzsOknaEeGRfhGwjxLOL7/TplTsRnhcfse946Qt4nLD0/7bleA S1xBBW4bz44aMlfi2ZhyDtWWrY1JDgx9eADvqfqoRdK5m/2metz63PbIuJKT88cg str/3e0GOEnPJr8MeHGLHPBl0FkxXloP -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:52 2026 by rpki-client