This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: blEEI7NS4YoVdyqShkkkIOo8kU8FiqROGt9SZrXtf8E= Subject key identifier: 2F:29:DE:C2:D0:A4:EB:8F:91:1F:C7:41:CF:7A:04:9D:2E:12:70:94 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 0215 Signing time: Sun 25 Jan 2026 01:32:21 +0000 Manifest this update: Sun 25 Jan 2026 01:32:20 +0000 Manifest next update: Sun 01 Feb 2026 01:32:20 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: PlRg+DrHIqIlORVgrGK8epM7xJQl5XDMQE9SvihAvrg=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: FLrBHslp5iyCkfQbrVJ9NSbQz6e94p5SbxYxtxyABAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Jan 25 01:32:20 2026 GMT Not After : Feb 1 01:32:20 2026 GMT Subject: CN=697572a5-3288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ed:03:a1:21:5f:f1:5a:6d:35:fa:e2:98:ab: 19:72:76:34:f1:6a:d9:d0:46:25:f0:99:0d:ae:fa: a9:6a:4b:71:6d:ff:da:a9:8c:94:64:ac:78:a2:39: ca:9e:7e:8b:bc:56:3f:74:48:66:01:88:c8:c1:19: 54:24:37:7e:2c:c8:d4:cc:0c:16:fa:0f:ca:72:6a: 12:80:47:52:b8:3d:7a:79:d9:f6:d1:e1:ae:d2:91: 77:ac:a8:b7:84:35:59:74:0d:26:78:00:8f:0c:54: 06:f3:27:f6:33:ad:3d:6d:96:da:fd:7a:43:ce:96: 71:58:ae:93:e2:62:8d:ad:c6:c1:8e:a6:55:b4:13: 3a:e7:90:d4:cb:71:40:a1:86:84:73:6c:30:2f:6d: a2:b3:8c:00:5e:5a:8e:4a:f8:61:cb:1d:46:cc:36: 3f:05:55:5d:e0:c1:7c:fe:6c:29:1f:4b:2c:fd:c4: c3:39:94:10:76:e9:ea:70:2b:b8:7a:ae:39:23:99: 4f:6a:78:23:36:37:d8:dd:f1:7b:e4:71:bd:19:c3: 1d:eb:59:2b:67:38:7c:a5:a3:c3:2c:7f:cd:47:f3: 55:26:e2:9a:f4:8d:aa:ff:08:ca:fe:d4:90:1b:6d: 50:9a:15:c1:7e:cb:e1:df:96:a2:fb:7b:9f:9f:88: 92:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:29:DE:C2:D0:A4:EB:8F:91:1F:C7:41:CF:7A:04:9D:2E:12:70:94 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:c1:4a:43:30:01:41:10:b0:1b:00:eb:88:42:5d:e7:b4:5b: fb:5e:dd:b9:1a:10:9a:af:44:e6:be:3e:b9:53:4c:11:42:b0: fd:fc:95:c5:f4:ca:60:7b:85:9b:95:ae:30:f8:f2:76:d7:e7: a0:7d:ee:2b:9c:23:4c:31:56:4b:d6:35:54:7b:27:30:df:41: df:97:50:ff:5f:11:19:6d:39:0a:e7:c4:57:d6:48:19:c5:7e: d0:38:2c:9a:66:9a:c9:7e:f3:46:2b:4b:07:e4:59:1f:19:ac: 27:c9:c8:b3:7b:7e:81:22:ac:39:93:92:eb:5c:a4:05:9b:76: e1:f4:0e:17:70:10:0a:39:44:5b:07:7d:2f:5a:83:b9:b5:f8: f9:8b:01:08:50:3c:a6:1b:0a:7d:fa:0d:13:5d:c9:7f:d0:21: a9:14:55:2f:4e:1f:d1:2f:49:16:ef:a3:3b:a7:68:de:09:83: 97:c5:05:1a:dd:e6:85:1d:de:68:07:f5:2a:23:af:eb:9b:05: 02:9f:88:6e:13:6f:dd:f7:d8:c8:8a:ce:dd:23:0b:66:3c:bc: 61:e9:27:41:a6:84:a7:0f:9d:e1:03:34:bc:1a:fe:d0:7f:0f: bf:e7:f4:df:f4:45:fd:55:02:52:38:27:f8:fd:91:ea:7b:c9: 3d:a5:84:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjYwMTI1MDEzMjIwWhcNMjYwMjAxMDEzMjIwWjAYMRYwFAYD VQQDDA02OTc1NzJhNS0zMjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe0DoSFf8VptNfrimKsZcnY08WrZ0EYl8JkNrvqpaktxbf/aqYyUZKx4ojnK nn6LvFY/dEhmAYjIwRlUJDd+LMjUzAwW+g/KcmoSgEdSuD16edn20eGu0pF3rKi3 hDVZdA0meACPDFQG8yf2M609bZba/XpDzpZxWK6T4mKNrcbBjqZVtBM655DUy3FA oYaEc2wwL22is4wAXlqOSvhhyx1GzDY/BVVd4MF8/mwpH0ss/cTDOZQQdunqcCu4 eq45I5lPangjNjfY3fF75HG9GcMd61krZzh8paPDLH/NR/NVJuKa9I2q/wjK/tSQ G21QmhXBfsvh35ai+3ufn4iSpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8p3sLQ pOuPkR/HQc96BJ0uEnCUMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5wUpDMAFBELAbAOuIQl3ntFv7Xt25GhCar0Tmvj65U0wRQrD9/JXF 9Mpge4Wbla4w+PJ21+egfe4rnCNMMVZL1jVUeycw30Hfl1D/XxEZbTkK58RX1kgZ xX7QOCyaZprJfvNGK0sH5FkfGawnycize36BIqw5k5LrXKQFm3bh9A4XcBAKOURb B30vWoO5tfj5iwEIUDymGwp9+g0TXcl/0CGpFFUvTh/RL0kW76M7p2jeCYOXxQUa 3eaFHd5oB/UqI6/rmwUCn4huE2/d99jIis7dIwtmPLxh6SdBpoSnD53hAzS8Gv7Q fw+/5/Tf9EX9VQJSOCf4/ZHqe8k9pYRM -----END CERTIFICATE-----Generated at Sun Jan 25 10:42:19 2026 by rpki-client