This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft File: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft (raw, json) Hash identifier: UyzoECx3hmHunaTiqvt2yuqlDwFef8c9jF/qzLxLS4w= Subject key identifier: BE:43:2A:E0:C2:58:FE:84:B6:8E:42:99:03:30:E4:29:DB:8D:E7:42 Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1BE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft Manifest number: 1BB9 Signing time: Sat 24 Jan 2026 16:02:29 +0000 Manifest this update: Sat 24 Jan 2026 16:02:29 +0000 Manifest next update: Sat 31 Jan 2026 16:02:29 +0000 Files and hashes: 1: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl (hash: /JcaNig2ApsK2CuFf1mUMzM4kQ4/7HGyzGtiqaeh6Zw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7138 (0x1be2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1, serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: Jan 24 16:02:29 2026 GMT Not After : Jan 31 16:02:29 2026 GMT Subject: CN=6974ed15-631d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0b:9f:55:14:ed:40:f0:b3:fa:35:10:ee:9c: 0b:ef:ff:b9:3e:38:61:73:93:56:0a:eb:a1:26:7b: 21:94:a6:17:13:ff:75:40:94:86:70:4c:56:80:7b: 0b:53:1d:fe:f7:d4:a0:9e:63:8d:1c:c1:9f:d6:c1: 59:7c:f1:f4:4a:38:43:2f:bf:b5:b7:57:06:30:50: 19:1c:33:e4:fe:b0:c1:b9:d4:89:d6:90:04:c0:47: 88:e0:29:82:e9:40:b1:11:0a:61:8e:73:dd:89:9e: 03:e1:70:6b:f1:27:f5:b2:46:47:5c:f9:31:a5:a1: 4b:14:ab:4a:95:df:f1:bd:23:a4:25:16:60:d5:a6: e0:b6:fc:fa:0f:14:ac:ea:58:12:6c:42:87:11:13: 55:ef:82:ab:86:a8:3a:6b:9d:d1:b6:fe:23:4f:fe: 86:79:40:ca:18:49:89:94:02:27:05:d9:3f:97:2f: 0b:fb:6f:fc:f8:82:1d:80:c5:16:76:8f:c5:06:4e: 37:1f:d9:15:05:f7:8a:b3:f3:7c:57:7f:21:ef:3f: 43:c4:4c:68:9d:cc:e5:79:fc:c9:b6:0a:7f:ec:8f: 31:cb:ca:35:2f:62:85:dd:70:37:eb:57:68:f2:1f: d3:94:7b:9f:a2:2f:59:8d:c5:a2:80:f6:68:85:3b: e6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:43:2A:E0:C2:58:FE:84:B6:8E:42:99:03:30:E4:29:DB:8D:E7:42 X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:00:60:a2:64:f9:0d:28:39:d0:bc:81:14:4c:77:1f:f4:5e: c9:d3:31:fb:37:73:80:3c:95:85:f9:7a:9c:25:57:f4:ac:0b: 34:1b:17:aa:2e:2a:2a:89:0f:0b:fb:72:b3:ed:ea:30:a1:c4: aa:a9:96:95:8c:f3:bf:32:32:8e:0e:76:f7:b8:8f:7e:2e:fe: b6:b1:8b:ab:93:75:35:12:ab:97:64:bd:6d:24:21:fc:07:1e: 60:2e:0f:57:4a:c7:12:4a:16:fe:9b:9f:9f:ce:db:ed:e1:56: ca:8f:24:91:e5:7b:e8:2d:cf:80:d0:da:eb:34:23:aa:9c:b8: 4a:90:4e:93:60:e7:c2:2d:c2:47:14:9a:3a:fe:02:5c:28:69: a4:35:b2:84:49:23:13:67:68:9f:4e:8a:e6:4d:c1:e5:5e:36: 38:ee:6e:89:92:13:d7:8b:f3:a9:d8:18:f7:9d:00:b0:73:bc: 2e:5d:df:3b:f4:56:c8:b4:c6:d4:69:4d:63:34:51:f4:2a:21: 1d:d4:30:ad:87:bf:60:af:87:df:e7:0d:73:13:55:60:12:8b: 8e:b0:37:f9:8e:31:a8:b5:50:c3:1c:b2:70:dc:83:62:35:7d: da:a8:f6:c3:73:71:52:00:70:ce:d1:5d:27:05:fa:35:90:be: 29:cf:c7:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjYwMTI0MTYwMjI5WhcNMjYwMTMxMTYwMjI5WjAYMRYwFAYD VQQDDA02OTc0ZWQxNS02MzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAufVRTtQPCz+jUQ7pwL7/+5Pjhhc5NWCuuhJnshlKYXE/91QJSGcExWgHsL Ux3+99SgnmONHMGf1sFZfPH0SjhDL7+1t1cGMFAZHDPk/rDBudSJ1pAEwEeI4CmC 6UCxEQphjnPdiZ4D4XBr8Sf1skZHXPkxpaFLFKtKld/xvSOkJRZg1abgtvz6DxSs 6lgSbEKHERNV74Krhqg6a53Rtv4jT/6GeUDKGEmJlAInBdk/ly8L+2/8+IIdgMUW do/FBk43H9kVBfeKs/N8V38h7z9DxExonczlefzJtgp/7I8xy8o1L2KF3XA361do 8h/TlHufoi9ZjcWigPZohTvmRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5DKuDC WP6Eto5CmQMw5CnbjedCMB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzRFMS8yMDA0RjE0NDE2MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lS ckhlS2t4YlhHd3ZvQUdPVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlAGCiZPkNKDnQvIEUTHcf9F7J0zH7N3OAPJWF+XqcJVf0rAs0Gxeq LioqiQ8L+3Kz7eowocSqqZaVjPO/MjKODnb3uI9+Lv62sYurk3U1EquXZL1tJCH8 Bx5gLg9XSscSShb+m5+fztvt4VbKjySR5XvoLc+A0NrrNCOqnLhKkE6TYOfCLcJH FJo6/gJcKGmkNbKESSMTZ2ifTormTcHlXjY47m6JkhPXi/Op2Bj3nQCwc7wuXd87 9FbItMbUaU1jNFH0KiEd1DCth79gr4ff5w1zE1VgEouOsDf5jjGotVDDHLJw3INi NX3aqPbDc3FSAHDO0V0nBfo1kL4pz8fV -----END CERTIFICATE-----Generated at Sun Jan 25 11:15:52 2026 by rpki-client