This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: Eyy55tmRl3/SVk3CTQLyIpk/8Zguum4pL6A2HKINmkU= Subject key identifier: 93:F9:ED:2D:54:C7:9F:E7:60:A8:42:1F:77:65:39:22:85:54:D2:8A Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 35F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 356E Signing time: Sat 24 Jan 2026 14:16:22 +0000 Manifest this update: Sat 24 Jan 2026 14:16:21 +0000 Manifest next update: Sat 31 Jan 2026 14:16:21 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: JbHcM4umabyYxkuGGHP5M6823WdxO9IrEQ+PkHXfZys=) 2: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 3: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: JAIKKCo9C8qw6fr8uLdaMchlj/iGB4GqwIN2CeXneAc=) 4: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) 5: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 6: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) 7: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: EWlSDhZJpxeihw3aeM/sQAa10hdfChLc1MQCCqHexiw=) 8: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13813 (0x35f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Jan 24 14:16:21 2026 GMT Not After : Jan 31 14:16:21 2026 GMT Subject: CN=6974d436-dc2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f4:80:14:c1:d7:60:a4:6b:7c:f2:3b:e6:d5: b5:e8:f3:b4:5e:5e:da:f3:c7:00:ba:c2:f3:80:4a: 53:b8:de:10:72:9b:0d:e5:ff:8a:bd:a1:9d:c7:b3: fb:16:bf:73:35:30:00:ee:50:36:2f:24:01:c0:bd: 64:93:9e:fe:8a:a2:42:2a:62:7e:81:12:bb:22:64: e1:cc:2f:3d:9d:63:b3:fa:ab:fb:3d:7b:73:44:13: c5:ff:22:fc:e9:b4:9d:24:a6:29:83:da:5e:6a:ad: f2:bc:79:d9:09:a0:d8:b0:79:dd:a0:66:7d:8d:d0: 2c:10:96:c0:4c:ed:c2:be:7f:2f:db:f5:9e:6e:e2: 00:d3:49:a4:67:6d:1e:bb:c4:a1:6d:40:fd:01:73: 22:06:9b:5b:f1:a7:45:93:2c:b6:81:36:74:4e:f3: 2f:21:93:04:3b:37:9e:9c:73:2f:91:26:7e:4f:f4: ad:0e:af:36:0e:44:04:26:98:f8:7a:90:bc:00:9b: 39:75:2c:0c:b7:5c:69:c7:4c:46:36:51:c9:5b:ac: 0a:8d:7f:9c:81:54:82:c0:f5:ba:3c:00:57:56:cb: 2f:36:4a:92:0f:4f:88:a6:0c:62:57:67:64:42:e9: 5a:72:fe:77:b6:f4:47:c3:52:36:28:34:a6:82:b0: ed:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F9:ED:2D:54:C7:9F:E7:60:A8:42:1F:77:65:39:22:85:54:D2:8A X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:11:92:24:34:61:da:e2:b9:5e:b9:22:5e:7c:43:88:ba:ef: dc:d2:fc:57:ce:ea:84:53:61:f6:bf:85:a5:ab:3e:29:75:1e: ce:c8:c0:ef:1f:b2:f5:d1:bd:18:95:ad:73:7b:23:4e:cc:24: 3f:4b:67:39:2e:ce:dc:82:e4:7f:77:87:7d:d0:d5:e6:f1:1d: 00:c0:40:9f:20:1f:95:a8:49:96:cc:3a:28:30:7f:1c:56:fe: 26:57:5e:1e:81:f3:24:47:23:92:10:3f:f2:06:6e:d1:2d:62: 67:ec:2a:40:32:6f:ce:5e:29:47:f7:41:c9:0c:f5:75:44:d7: fe:05:a2:d1:06:d4:e7:27:b8:87:8c:46:5d:9d:a6:4c:7e:1d: bf:c8:4c:09:f4:08:46:b8:0b:6f:e4:f8:1b:72:1a:7d:56:c4: fd:0a:46:90:80:3b:75:16:3c:15:11:c9:d2:48:d3:d2:b1:b5: c8:77:41:01:bf:78:5c:d3:46:fa:98:fe:00:0b:0f:47:46:c5: b0:06:a9:9f:6e:de:96:02:5c:ac:c7:b0:62:09:9d:91:71:1b: f3:43:06:6c:9a:15:31:c8:85:9b:26:c8:28:1e:95:d6:3d:a4: bc:5f:0e:5d:e3:5f:a6:df:f7:4c:fc:7a:3a:e4:63:ad:a5:20: a6:9f:01:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwMTI0MTQxNjIxWhcNMjYwMTMxMTQxNjIxWjAYMRYwFAYD VQQDDA02OTc0ZDQzNi1kYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPSAFMHXYKRrfPI75tW16PO0Xl7a88cAusLzgEpTuN4QcpsN5f+KvaGdx7P7 Fr9zNTAA7lA2LyQBwL1kk57+iqJCKmJ+gRK7ImThzC89nWOz+qv7PXtzRBPF/yL8 6bSdJKYpg9peaq3yvHnZCaDYsHndoGZ9jdAsEJbATO3Cvn8v2/WebuIA00mkZ20e u8ShbUD9AXMiBptb8adFkyy2gTZ0TvMvIZMEOzeenHMvkSZ+T/StDq82DkQEJpj4 epC8AJs5dSwMt1xpx0xGNlHJW6wKjX+cgVSCwPW6PABXVssvNkqSD0+IpgxiV2dk Qulacv53tvRHw1I2KDSmgrDtVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJP57S1U x5/nYKhCH3dlOSKFVNKKMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfEZIkNGHa4rleuSJefEOIuu/c0vxXzuqEU2H2v4Wlqz4pdR7OyMDv H7L10b0Yla1zeyNOzCQ/S2c5Ls7cguR/d4d90NXm8R0AwECfIB+VqEmWzDooMH8c Vv4mV14egfMkRyOSED/yBm7RLWJn7CpAMm/OXilH90HJDPV1RNf+BaLRBtTnJ7iH jEZdnaZMfh2/yEwJ9AhGuAtv5Pgbchp9VsT9CkaQgDt1FjwVEcnSSNPSsbXId0EB v3hc00b6mP4ACw9HRsWwBqmfbt6WAlysx7BiCZ2RcRvzQwZsmhUxyIWbJsgoHpXW PaS8Xw5d41+m3/dM/Ho65GOtpSCmnwF1 -----END CERTIFICATE-----Generated at Sun Jan 25 04:29:29 2026 by rpki-client