This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: tKjqIHlvNZAVgw3UWPtunngwiFYXVt07YAFuGl3WhC0= Subject key identifier: 7B:E8:84:C1:93:DE:C3:A5:71:F9:97:CB:D8:84:07:68:CE:DA:4E:A2 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 080E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 0807 Signing time: Sat 24 Jan 2026 20:24:57 +0000 Manifest this update: Sat 24 Jan 2026 20:24:56 +0000 Manifest next update: Sat 31 Jan 2026 20:24:56 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: WDyGNRbWKxi4qe+bkDX8GMZrKcaPD/nVC9kWts5Qf9I=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2062 (0x80e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Jan 24 20:24:56 2026 GMT Not After : Jan 31 20:24:56 2026 GMT Subject: CN=69752a98-2d13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1c:2c:dc:96:cd:4f:e4:8e:d2:a0:82:1a:97: 86:54:7c:c0:22:90:3f:d6:9d:0d:ad:62:db:08:98: b4:4d:3f:9d:68:ec:fc:bd:0a:da:80:e0:ae:f9:25: 0c:d1:00:d0:95:ff:4a:70:bd:8f:32:c2:ac:ae:d1: a1:fc:62:f0:9e:f7:c2:e2:d0:27:a8:3d:a8:09:7c: 39:d4:db:d5:96:29:a3:5e:34:8c:69:2b:ff:65:30: cb:34:31:df:86:51:c5:47:e2:ea:da:c6:df:8a:14: 72:d5:93:f5:ea:cb:b7:74:53:dd:3d:fb:85:f9:a4: 15:9f:a9:32:95:b3:cb:09:30:81:01:79:01:9f:99: d5:7c:a7:33:8e:1c:77:61:cb:e3:75:5a:09:2b:f7: 3c:c6:75:56:84:84:6f:b8:97:b0:05:fe:5d:6f:7e: 86:d9:e5:00:5a:22:dc:49:48:3b:36:67:ab:eb:48: 6e:03:b9:39:db:c4:5b:e1:8a:21:0e:75:ca:4c:b6: 07:da:ce:2b:88:d3:bc:28:7b:78:2c:d2:48:9d:e2: 55:2b:37:f6:10:79:20:de:fb:da:a5:e6:59:94:0b: 1d:de:3d:ac:ce:a9:a3:47:a1:57:5c:2a:92:a4:ed: ee:93:0e:07:55:31:8d:a7:29:47:00:c4:91:3a:9e: 54:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E8:84:C1:93:DE:C3:A5:71:F9:97:CB:D8:84:07:68:CE:DA:4E:A2 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:9b:de:75:65:ba:6a:83:76:fb:e8:41:07:5d:98:aa:23:ea: 25:8c:9f:49:24:ee:c0:46:8d:db:71:05:93:40:f9:d9:ea:41: ba:f1:53:a9:db:0a:2a:98:8b:08:c9:b4:47:92:25:41:29:e3: ec:42:59:32:75:47:ad:ea:a0:e1:e7:c6:8c:43:5a:12:1c:58: 66:4e:ea:4f:0e:d0:ac:4b:ef:b1:6e:4d:d2:71:b9:b1:70:65: 6a:9a:63:8e:34:cc:02:12:a5:ea:28:87:85:7b:1c:a5:39:f5: 09:57:0c:59:a7:64:ab:74:ba:dc:17:a1:94:6c:11:82:8d:9c: 61:89:29:12:09:4f:fd:da:3d:cc:8d:c6:21:0f:49:27:f6:5c: f3:d5:fb:e1:66:66:78:d1:33:a9:b8:e2:86:2c:f1:da:56:f3: 06:b1:94:19:e8:b7:82:3e:fd:0f:bd:21:42:af:ac:26:71:3c: d8:87:17:c8:d5:c2:2b:f1:79:eb:39:55:c0:b1:a6:4b:81:a7: 34:0c:bb:6f:d4:db:97:25:96:df:99:f6:1a:55:14:08:95:37: 7b:31:55:5a:3a:ee:93:ae:06:a9:d2:c3:fa:8b:df:98:43:a2: d5:f8:be:5d:80:cd:6c:d2:a8:bd:f0:ae:ba:92:53:4a:44:e7: ff:69:ac:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjYwMTI0MjAyNDU2WhcNMjYwMTMxMjAyNDU2WjAYMRYwFAYD VQQDDA02OTc1MmE5OC0yZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthws3JbNT+SO0qCCGpeGVHzAIpA/1p0NrWLbCJi0TT+daOz8vQragOCu+SUM 0QDQlf9KcL2PMsKsrtGh/GLwnvfC4tAnqD2oCXw51NvVlimjXjSMaSv/ZTDLNDHf hlHFR+Lq2sbfihRy1ZP16su3dFPdPfuF+aQVn6kylbPLCTCBAXkBn5nVfKczjhx3 YcvjdVoJK/c8xnVWhIRvuJewBf5db36G2eUAWiLcSUg7Nmer60huA7k528Rb4Yoh DnXKTLYH2s4riNO8KHt4LNJIneJVKzf2EHkg3vvapeZZlAsd3j2szqmjR6FXXCqS pO3ukw4HVTGNpylHAMSROp5UKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvohMGT 3sOlcfmXy9iEB2jO2k6iMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8m951Zbpqg3b76EEHXZiqI+oljJ9JJO7ARo3bcQWTQPnZ6kG68VOp 2woqmIsIybRHkiVBKePsQlkydUet6qDh58aMQ1oSHFhmTupPDtCsS++xbk3Scbmx cGVqmmOONMwCEqXqKIeFexylOfUJVwxZp2SrdLrcF6GUbBGCjZxhiSkSCU/92j3M jcYhD0kn9lzz1fvhZmZ40TOpuOKGLPHaVvMGsZQZ6LeCPv0PvSFCr6wmcTzYhxfI 1cIr8XnrOVXAsaZLgac0DLtv1NuXJZbfmfYaVRQIlTd7MVVaOu6Trgap0sP6i9+Y Q6LV+L5dgM1s0qi98K66klNKROf/aawa -----END CERTIFICATE-----Generated at Sun Jan 25 18:29:16 2026 by rpki-client