This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: s9WKMnv7Z+IH/mB8cjlNt0ny5I5eNX/uitHRDfGLJoc= Subject key identifier: 1C:4E:54:C9:86:B7:90:28:4A:F3:36:97:4F:9F:72:56:F0:78:41:57 Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34FA Signing time: Sat 24 Jan 2026 14:57:49 +0000 Manifest this update: Sat 24 Jan 2026 14:57:49 +0000 Manifest next update: Sat 31 Jan 2026 14:57:49 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: cK7mbtHO+aQVkWDx0iT3sTYAVM10i5KAYDvFg3fR9jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13562 (0x34fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Jan 24 14:57:49 2026 GMT Not After : Jan 31 14:57:49 2026 GMT Subject: CN=6974dded-7c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3a:92:0f:c5:df:84:e7:8a:50:b6:c2:5a:cf: 62:b3:16:14:f9:45:51:21:0a:8a:17:ff:9f:0c:da: ae:4a:ab:27:53:12:d3:c5:62:ee:b3:1a:20:28:30: d1:e7:5c:4f:55:e4:77:23:82:3c:40:aa:c1:46:ed: 3f:8f:9c:7c:ef:42:3b:68:d8:c5:a8:5e:76:ef:12: b5:55:2b:31:0b:0d:9a:f5:60:40:d1:55:b9:ca:9b: ed:25:6d:29:1d:5d:be:15:d8:42:0b:7e:53:1c:72: 97:4f:a0:e4:c5:08:5c:ec:2e:36:03:31:6a:e8:f4: 0e:c4:7b:a0:ef:ed:a6:48:70:2b:ac:b8:ec:49:36: ad:70:3b:2c:b1:a3:73:14:8c:02:49:d4:e3:75:c0: 6e:b2:ac:b2:44:fe:3e:7e:af:44:de:c7:05:80:5f: ab:24:a2:82:fa:6f:2c:64:53:41:ca:da:c4:a0:20: 82:0d:4c:68:48:bc:99:92:1e:45:20:e7:40:5a:c4: 79:2f:93:17:be:36:2b:6f:e4:30:ab:81:e6:45:a4: 0f:a9:0d:70:65:08:e6:e5:56:7f:ba:52:cc:5e:aa: e4:b3:68:da:b9:cc:bd:de:86:19:38:f4:1d:77:da: bd:68:e6:96:0a:44:2b:0c:e5:36:68:14:fd:50:46: 68:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4E:54:C9:86:B7:90:28:4A:F3:36:97:4F:9F:72:56:F0:78:41:57 X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:9a:68:8b:28:14:64:4a:5d:06:02:10:ba:39:94:94:91:0d: c3:37:c9:c1:79:ba:9b:db:65:71:66:b6:1a:8a:aa:af:55:39: a6:cb:9c:3d:ac:e7:7c:28:41:38:47:1c:47:06:53:d4:1e:73: 28:c0:cc:c1:30:dc:34:30:de:1f:da:df:ee:e2:fc:5e:72:34: 3a:d8:24:25:43:9e:0c:bc:a8:44:1b:26:14:c7:3c:6e:61:38: 8a:13:4d:0c:46:ba:90:fa:1c:d1:ea:5e:54:68:51:ea:6e:68: 81:92:da:c9:40:54:e8:c9:0c:2c:8f:bb:1d:c6:e9:c2:03:51: 8c:ae:a2:69:68:dd:2f:c0:96:28:ee:19:93:3d:5a:f3:a7:33: e8:1a:f0:20:47:99:0c:0d:f4:5d:33:86:59:9e:3c:76:0a:93: ff:83:ba:8d:ce:0f:23:91:95:5f:8a:1b:66:7c:61:11:5a:80: f7:f2:3a:6f:4e:09:71:15:b4:aa:89:9e:e5:09:3a:42:4b:d0: 9e:b9:b9:c2:69:9d:ab:54:11:cf:96:dc:d2:dd:82:ad:8e:99: 31:5c:27:2d:75:a5:af:ea:e8:3b:09:66:1a:1d:d7:30:4f:3b: 96:fe:ca:62:ae:8a:5e:76:5f:d1:76:9f:f1:a8:0f:f3:30:ce: b3:54:74:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjYwMTI0MTQ1NzQ5WhcNMjYwMTMxMTQ1NzQ5WjAYMRYwFAYD VQQDDA02OTc0ZGRlZC03YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDqSD8XfhOeKULbCWs9isxYU+UVRIQqKF/+fDNquSqsnUxLTxWLusxogKDDR 51xPVeR3I4I8QKrBRu0/j5x870I7aNjFqF527xK1VSsxCw2a9WBA0VW5ypvtJW0p HV2+FdhCC35THHKXT6DkxQhc7C42AzFq6PQOxHug7+2mSHArrLjsSTatcDsssaNz FIwCSdTjdcBusqyyRP4+fq9E3scFgF+rJKKC+m8sZFNBytrEoCCCDUxoSLyZkh5F IOdAWsR5L5MXvjYrb+Qwq4HmRaQPqQ1wZQjm5VZ/ulLMXqrks2jaucy93oYZOPQd d9q9aOaWCkQrDOU2aBT9UEZofQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxOVMmG t5AoSvM2l0+fclbweEFXMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGmmiLKBRkSl0GAhC6OZSUkQ3DN8nBebqb22VxZrYaiqqvVTmmy5w9 rOd8KEE4RxxHBlPUHnMowMzBMNw0MN4f2t/u4vxecjQ62CQlQ54MvKhEGyYUxzxu YTiKE00MRrqQ+hzR6l5UaFHqbmiBktrJQFToyQwsj7sdxunCA1GMrqJpaN0vwJYo 7hmTPVrzpzPoGvAgR5kMDfRdM4ZZnjx2CpP/g7qNzg8jkZVfihtmfGERWoD38jpv TglxFbSqiZ7lCTpCS9CeubnCaZ2rVBHPltzS3YKtjpkxXCctdaWv6ug7CWYaHdcw TzuW/spiropedl/Rdp/xqA/zMM6zVHTd -----END CERTIFICATE-----Generated at Sun Jan 25 03:00:57 2026 by rpki-client