This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft File: tbNfkk61wy-7QYZ9OhZuSpa77KI.mft (raw, json) Hash identifier: VgKKLSSIG00tltx5BytyxTWRVHWlWuQSs+uCk6hONW0= Subject key identifier: FF:4A:7D:0A:6A:65:D6:0A:5D:15:DB:63:66:75:61:BC:E8:12:8B:CB Authority key identifier: B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 Certificate issuer: /CN=A91D9928/serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft Manifest number: 3F Signing time: Fri 23 Jan 2026 06:26:19 +0000 Manifest this update: Fri 23 Jan 2026 06:26:18 +0000 Manifest next update: Fri 30 Jan 2026 06:26:18 +0000 Files and hashes: 1: tbNfkk61wy-7QYZ9OhZuSpa77KI.crl (hash: xWaMbz0zp8QqBCmVAcHA+6TL4zbrQh5oMBbzuiaRZOs=) 2: A71814CA984F11F0B7A01E76C4F9AE02.roa (hash: 3U7vBnQl/Kdt2pXpdCyuzs/qAnaveVs4aYr8QCEMg6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9928, serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Validity Not Before: Jan 23 06:26:18 2026 GMT Not After : Jan 30 06:26:18 2026 GMT Subject: CN=6973148b-d749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3e:66:cb:1b:aa:95:bc:a3:1f:56:f4:dc:a2: 42:99:f9:93:3a:79:a6:20:f3:68:81:a5:89:15:1f: 1e:fa:0e:d7:de:c5:0c:4c:f4:46:9e:d7:3b:36:0c: 2a:65:a3:75:0a:59:ad:6d:59:d7:05:61:d5:af:a1: 7e:f7:a9:a2:9b:ef:26:43:73:41:99:03:75:a1:8c: 4e:94:26:99:3b:32:8d:62:38:d0:9c:ba:38:5c:91: ca:9c:19:91:c1:3e:66:02:c4:0c:60:85:50:fc:5c: a7:91:7d:b3:4a:0e:a4:6c:60:e4:d1:13:7d:cb:22: 5c:5b:9f:de:71:8f:5c:bb:23:99:7c:e6:10:36:dc: 8b:ac:ff:c0:7b:b8:64:e4:85:2c:2d:4e:6e:52:59: c6:b5:e4:e8:a9:85:af:93:7c:e7:01:80:c8:98:79: 1e:e6:37:38:bb:d8:a4:49:80:2c:80:83:df:c4:6a: 63:ef:fb:ff:e4:e0:ad:33:2d:87:55:20:f0:f5:71: 49:81:a2:d7:6c:ba:87:d7:27:98:ec:a4:18:c0:3c: d4:36:99:88:4a:fe:ad:55:7a:00:f4:cb:0a:9b:95: 2d:41:09:ea:d7:8b:95:3e:f4:88:89:2c:bd:93:c4: 31:79:91:82:02:e4:4a:0e:73:e2:1c:08:75:8c:fa: a9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4A:7D:0A:6A:65:D6:0A:5D:15:DB:63:66:75:61:BC:E8:12:8B:CB X509v3 Authority Key Identifier: keyid:B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:2a:43:40:e0:f6:f5:43:67:31:51:a9:41:88:70:8f:0a:11: 80:37:f3:52:3d:e7:dc:27:07:d9:dd:f6:f7:6b:8c:c9:cf:00: 86:5b:eb:72:6f:a0:23:08:07:21:91:a5:9f:18:ab:68:6a:d5: c0:06:f4:1c:96:de:cd:51:33:7d:3b:5c:cb:f5:5a:e6:87:98: be:ad:1a:c9:28:35:31:22:95:35:b8:ec:da:a2:06:39:47:7b: d8:e5:42:d8:c2:d6:51:ee:52:04:21:2f:a1:fb:50:c7:0e:bf: dc:70:0d:b7:eb:d3:54:5e:ae:8d:8b:19:a1:66:f4:a6:97:5d: 6d:19:19:2c:6b:c4:a0:e5:8c:bb:46:70:f5:7f:7c:a5:73:a7: db:fc:0d:55:df:e8:cc:41:7a:d7:f7:55:60:bc:92:a7:7e:8d: ea:c6:d4:a9:a1:dd:1a:d7:d4:6c:57:93:78:68:b2:7a:06:a0: b7:fe:b3:14:e6:68:87:33:18:0a:31:88:1b:2c:01:04:a6:94: b5:34:c5:a4:a0:c1:83:ea:ca:e3:cb:3e:e5:a8:8c:4a:86:12: 62:19:2a:5f:8f:d3:34:42:d8:8c:31:c8:b8:1d:ce:6f:ec:72: ba:a2:af:f2:e1:11:47:1c:eb:0f:b8:f1:35:16:66:bf:48:d2: 33:2d:06:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTkyODExMC8GA1UEBRMoQjVCMzVGOTI0RUI1QzMyRkJCNDE4NjdEM0ExNjZFNEE5 NkJCRUNBMjAeFw0yNjAxMjMwNjI2MThaFw0yNjAxMzAwNjI2MThaMBgxFjAUBgNV BAMMDTY5NzMxNDhiLWQ3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+PmbLG6qVvKMfVvTcokKZ+ZM6eaYg82iBpYkVHx76DtfexQxM9Eae1zs2DCpl o3UKWa1tWdcFYdWvoX73qaKb7yZDc0GZA3WhjE6UJpk7Mo1iONCcujhckcqcGZHB PmYCxAxghVD8XKeRfbNKDqRsYOTRE33LIlxbn95xj1y7I5l85hA23Ius/8B7uGTk hSwtTm5SWca15Oipha+TfOcBgMiYeR7mNzi72KRJgCyAg9/EamPv+//k4K0zLYdV IPD1cUmBotdsuofXJ5jspBjAPNQ2mYhK/q1VegD0ywqblS1BCerXi5U+9IiJLL2T xDF5kYIC5EoOc+IcCHWM+qkhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/0p9Cmpl 1gpdFdtjZnVhvOgSi8swHwYDVR0jBBgwFoAUtbNfkk61wy+7QYZ9OhZuSpa77KIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5OTI4LzU3REZCRUJDOTg0 RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3ktN1FZWjlPaFp1U3BhNzdL SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGJOZmtrNjF3eS03UVlaOU9oWnVTcGE3N0tJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 OTI4LzU3REZCRUJDOTg0RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3kt N1FZWjlPaFp1U3BhNzdLSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGYqQ0Dg9vVDZzFRqUGIcI8KEYA381I959wnB9nd9vdrjMnPAIZb63Jv oCMIByGRpZ8Yq2hq1cAG9ByW3s1RM307XMv1WuaHmL6tGskoNTEilTW47NqiBjlH e9jlQtjC1lHuUgQhL6H7UMcOv9xwDbfr01Rero2LGaFm9KaXXW0ZGSxrxKDljLtG cPV/fKVzp9v8DVXf6MxBetf3VWC8kqd+jerG1Kmh3RrX1GxXk3hosnoGoLf+sxTm aIczGAoxiBssAQSmlLU0xaSgwYPqyuPLPuWojEqGEmIZKl+P0zRC2IwxyLgdzm/s crqir/LhEUcc6w+48TUWZr9I0jMtBrU= -----END CERTIFICATE-----Generated at Sun Jan 25 06:18:31 2026 by rpki-client