This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: BHJY6zdH1aN41GVTam2bBNWx+Ptxhq8RP+TS+I6m154= Subject key identifier: 2A:A6:21:D4:D9:DD:2C:BA:CF:4D:20:93:8C:E1:20:49:E8:74:48:05 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 015F Signing time: Sun 25 Jan 2026 03:21:50 +0000 Manifest this update: Sun 25 Jan 2026 03:21:49 +0000 Manifest next update: Sun 01 Feb 2026 03:21:49 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: L/F+d7iyP4rJu/3FzNbtrpCYSvYYhXqyMz0WLxj1tHg=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: WXs23PC9oNPUDjoMufc2iqduojTIGtlpeP1luMoHhDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Jan 25 03:21:49 2026 GMT Not After : Feb 1 03:21:49 2026 GMT Subject: CN=69758c4e-9c00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:8c:5a:23:2b:b3:86:3f:ed:46:a8:87:2b: 8e:39:91:20:27:4d:18:7c:78:32:02:a6:ed:53:90: fd:ff:97:c2:50:0f:b7:b8:96:2f:28:12:3b:98:31: 34:34:8d:21:d2:c9:61:b7:4b:5d:6e:77:28:fa:87: 3e:98:15:fe:9a:ee:35:7c:8f:00:4d:a1:bb:a2:34: 83:95:af:13:83:10:f0:dd:f0:2c:7f:c8:48:07:69: 04:bf:28:a8:33:17:b1:7d:1d:5f:ea:78:a1:32:fb: 53:f6:8c:01:55:ac:3e:0b:85:41:9f:c4:d1:a4:72: 15:9d:d9:29:78:c3:54:da:75:96:10:3d:37:47:c8: 8e:7f:07:13:03:4c:c6:b9:05:b2:73:0c:40:bf:1a: 24:20:64:2a:09:0e:6b:59:a7:11:f5:74:2c:61:d2: ca:05:92:b0:0c:d2:1b:c1:bb:61:24:3b:c3:43:cc: 1b:6f:d0:4c:fa:fe:d1:db:1f:7b:44:60:b1:d2:65: 48:f9:c0:a2:b2:c1:49:a7:5e:51:d9:8e:ba:59:e3: ba:d2:64:77:fb:e7:9f:79:12:6a:81:6a:d3:c6:8b: 46:5c:3b:53:f8:e4:24:9e:de:3c:9f:b8:03:da:cf: 18:d9:ff:20:7e:b7:61:b0:4a:48:63:79:a1:8d:c1: a5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A6:21:D4:D9:DD:2C:BA:CF:4D:20:93:8C:E1:20:49:E8:74:48:05 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:cc:63:8d:99:72:38:95:42:24:bd:d4:45:65:0a:42:89:bd: 9b:c1:23:f4:7b:75:fa:a4:33:83:81:d9:9c:51:91:ad:21:b7: 82:60:b4:5d:cf:e3:a6:f6:27:bc:ff:d5:3b:ba:49:ec:67:08: 6a:cd:58:99:1d:33:18:03:90:db:f1:ae:78:5f:69:e8:7e:ad: a2:9e:46:29:3b:d9:93:c2:d1:4d:cf:eb:de:fd:77:24:79:e0: 9c:b0:a7:ac:24:2f:2d:10:0b:10:91:bf:14:91:95:fb:93:e8: 85:3c:d7:e1:fa:cb:af:d1:aa:45:45:8b:a3:21:e9:e5:30:b7: b4:22:34:75:3e:0e:45:e7:e9:fe:6f:2d:83:43:2d:8e:57:00: 20:58:60:d4:32:98:0d:33:3e:e6:f6:d7:12:7f:e3:0d:0b:23: 10:c2:95:59:9a:eb:b6:b8:11:a6:12:8c:42:55:4c:3d:84:98: 16:11:d1:75:23:f1:d6:40:52:63:03:fb:d9:06:66:28:de:4c: 0e:29:fd:ef:d5:46:69:08:9d:a2:08:53:5c:c9:86:ad:f4:39: 34:33:bd:a9:2f:55:13:f4:a8:60:4f:5c:a5:42:73:19:c9:d7: be:9e:ee:70:61:12:61:1a:62:de:38:5e:04:83:0b:8b:c5:33: c1:ae:45:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjYwMTI1MDMyMTQ5WhcNMjYwMjAxMDMyMTQ5WjAYMRYwFAYD VQQDDA02OTc1OGM0ZS05YzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1f2MWiMrs4Y/7UaohyuOOZEgJ00YfHgyAqbtU5D9/5fCUA+3uJYvKBI7mDE0 NI0h0slht0tdbnco+oc+mBX+mu41fI8ATaG7ojSDla8TgxDw3fAsf8hIB2kEvyio MxexfR1f6nihMvtT9owBVaw+C4VBn8TRpHIVndkpeMNU2nWWED03R8iOfwcTA0zG uQWycwxAvxokIGQqCQ5rWacR9XQsYdLKBZKwDNIbwbthJDvDQ8wbb9BM+v7R2x97 RGCx0mVI+cCissFJp15R2Y66WeO60mR3++efeRJqgWrTxotGXDtT+OQknt48n7gD 2s8Y2f8gfrdhsEpIY3mhjcGlXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqmIdTZ 3Sy6z00gk4zhIEnodEgFMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxzGONmXI4lUIkvdRFZQpCib2bwSP0e3X6pDODgdmcUZGtIbeCYLRd z+Om9ie8/9U7uknsZwhqzViZHTMYA5Db8a54X2nofq2inkYpO9mTwtFNz+ve/Xck eeCcsKesJC8tEAsQkb8UkZX7k+iFPNfh+suv0apFRYujIenlMLe0IjR1Pg5F5+n+ by2DQy2OVwAgWGDUMpgNMz7m9tcSf+MNCyMQwpVZmuu2uBGmEoxCVUw9hJgWEdF1 I/HWQFJjA/vZBmYo3kwOKf3v1UZpCJ2iCFNcyYat9Dk0M72pL1UT9KhgT1ylQnMZ yde+nu5wYRJhGmLeOF4EgwuLxTPBrkUj -----END CERTIFICATE-----Generated at Sun Jan 25 15:24:18 2026 by rpki-client