This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: KQ34rARzkdehmyElNzwxliaPP/9vRYo53n2u+EW24BU= Subject key identifier: C0:3B:A6:3F:BC:34:AA:57:ED:10:64:4F:60:0B:FD:5E:E0:FC:42:3F Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 014D Signing time: Fri 23 Jan 2026 03:25:08 +0000 Manifest this update: Fri 23 Jan 2026 03:25:08 +0000 Manifest next update: Fri 30 Jan 2026 03:25:08 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: Q+82lmPojJUQ8NJI2TlcwpA+hJ9aOqQZPlGtTEa7B/0=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 03:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Jan 23 03:25:08 2026 GMT Not After : Jan 30 03:25:08 2026 GMT Subject: CN=6972ea14-dac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a2:7b:07:ad:da:41:0f:de:13:14:b6:b5:e7: c1:2f:72:a6:a9:1c:d5:e5:c1:55:e3:6f:71:f8:85: 3c:07:7f:a3:d4:92:e9:24:b6:71:78:e1:6f:bf:e2: c6:8e:14:73:7b:42:80:4d:07:b0:10:22:87:32:b3: da:53:f9:e0:16:2d:c2:ac:a1:f5:53:54:7c:e6:94: 21:e8:61:89:c4:de:79:17:58:6e:44:b8:d7:e9:95: 7f:7e:29:4f:41:48:fd:9d:9c:a9:83:c6:03:13:02: dc:cc:40:ea:4e:05:e8:37:91:ae:87:93:fa:e8:c5: ab:b3:ca:b8:a0:c5:92:d5:6a:30:16:ef:c1:dd:a2: ef:d7:22:1c:3f:20:64:5f:28:8c:a3:74:d9:fc:36: b4:dc:1f:56:86:17:fd:50:e1:aa:eb:04:60:a2:6a: 5b:5a:4f:98:c6:90:ef:1d:53:8d:86:1e:f8:5f:3b: 4c:8f:a0:0f:cf:1a:10:ce:49:24:17:37:a0:fc:16: 32:97:51:7a:1a:ce:5f:c5:8b:ad:37:60:88:da:7f: 29:ac:e5:cc:f4:67:38:da:08:5f:66:0f:32:e5:56: da:b5:11:d4:e1:f2:da:fa:c0:24:b7:b1:89:9c:56: f0:ff:3f:3e:01:99:38:a1:8b:93:9d:bb:11:68:38: ae:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3B:A6:3F:BC:34:AA:57:ED:10:64:4F:60:0B:FD:5E:E0:FC:42:3F X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:25:94:40:13:67:c8:6b:44:d6:41:88:d0:e0:cb:a3:3c:3d: 5a:c2:ab:78:a3:d0:32:46:6d:68:a4:da:4a:c2:b7:52:68:0d: 5f:99:7b:39:d0:a4:4d:af:66:15:3c:33:a3:8a:ce:ef:b4:b0: a1:60:68:31:a6:25:62:50:3c:6b:cc:cf:17:7f:59:44:a1:b6: b9:80:c3:ec:1c:ff:17:b8:20:0d:2a:ef:1a:f7:a4:10:d4:a8: b9:8a:82:b7:f6:a7:4e:e6:f0:b8:b3:b2:3c:d8:28:f5:9b:bb: 68:23:16:5b:4f:fe:0c:1d:b5:ed:7e:d5:c8:70:6c:1f:96:18: 7d:09:06:d9:a0:e9:15:84:e5:e8:e1:f5:78:e9:ed:cb:16:fe: 6d:fb:1d:dd:6b:3d:56:f4:20:48:e7:fd:c7:4a:0b:64:5f:3f: 0c:c9:eb:63:f1:3b:e5:45:0c:a4:41:cf:bb:55:06:11:5c:89: 35:7e:fe:a2:0f:a9:6b:bf:d0:d2:7c:a1:de:1b:9b:7e:d3:62: 84:bf:01:60:d9:59:29:eb:fc:48:f7:29:05:5c:6c:1f:1c:fe: c7:eb:57:08:25:2c:a7:4e:31:6a:30:52:d7:1b:13:d1:da:88: e4:6a:49:45:0f:0c:e0:0f:48:4b:74:2b:f7:84:ff:eb:89:d2: b6:45:50:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjYwMTIzMDMyNTA4WhcNMjYwMTMwMDMyNTA4WjAYMRYwFAYD VQQDDA02OTcyZWExNC1kYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06J7B63aQQ/eExS2tefBL3KmqRzV5cFV429x+IU8B3+j1JLpJLZxeOFvv+LG jhRze0KATQewECKHMrPaU/ngFi3CrKH1U1R85pQh6GGJxN55F1huRLjX6ZV/filP QUj9nZypg8YDEwLczEDqTgXoN5Guh5P66MWrs8q4oMWS1WowFu/B3aLv1yIcPyBk XyiMo3TZ/Da03B9Whhf9UOGq6wRgompbWk+YxpDvHVONhh74XztMj6APzxoQzkkk Fzeg/BYyl1F6Gs5fxYutN2CI2n8prOXM9Gc42ghfZg8y5VbatRHU4fLa+sAkt7GJ nFbw/z8+AZk4oYuTnbsRaDiuMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMA7pj+8 NKpX7RBkT2AL/V7g/EI/MB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7JZRAE2fIa0TWQYjQ4MujPD1awqt4o9AyRm1opNpKwrdSaA1fmXs5 0KRNr2YVPDOjis7vtLChYGgxpiViUDxrzM8Xf1lEoba5gMPsHP8XuCANKu8a96QQ 1Ki5ioK39qdO5vC4s7I82Cj1m7toIxZbT/4MHbXtftXIcGwflhh9CQbZoOkVhOXo 4fV46e3LFv5t+x3daz1W9CBI5/3HSgtkXz8Myetj8TvlRQykQc+7VQYRXIk1fv6i D6lrv9DSfKHeG5t+02KEvwFg2Vkp6/xI9ykFXGwfHP7H61cIJSynTjFqMFLXGxPR 2ojkaklFDwzgD0hLdCv3hP/ridK2RVB3 -----END CERTIFICATE-----Generated at Sun Jan 25 02:49:26 2026 by rpki-client