This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft File: 3yKppXt9OorrEk1pDHkXBmtNtZ4.mft (raw, json) Hash identifier: ExGyaHevu4YK+MtmLth0zyKh3WpAyCA24/07rX8+BQs= Subject key identifier: 25:43:BB:C9:3C:ED:49:A2:7E:41:54:AA:46:FA:4A:7F:9C:DB:B7:F8 Authority key identifier: DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E Certificate issuer: /CN=A91DE19B/serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft Manifest number: 41 Signing time: Fri 23 Jan 2026 06:30:31 +0000 Manifest this update: Fri 23 Jan 2026 06:30:31 +0000 Manifest next update: Fri 30 Jan 2026 06:30:31 +0000 Files and hashes: 1: 3yKppXt9OorrEk1pDHkXBmtNtZ4.crl (hash: JGCU3TbjkMD1lM4c6KfSXf64N6HZm6mL8FubLmqcuwk=) 2: DA06E7EAA37511F09017D760C4F9AE02.roa (hash: wpQC06DiQ+xzlEL7d1LfcmEUWMK/NDUMBZdyTADqLL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE19B, serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Validity Not Before: Jan 23 06:30:31 2026 GMT Not After : Jan 30 06:30:31 2026 GMT Subject: CN=69731587-03d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8a:a5:dd:09:9a:7c:f1:6a:f3:83:cd:91:06: 7a:fe:80:38:c8:a5:23:15:a7:78:c6:e0:3c:bb:df: 4e:7c:27:66:fc:57:4f:b4:60:15:f6:ae:68:2a:2e: 08:d6:12:72:d6:80:28:fe:82:1e:5b:ce:a1:9b:68: 36:f4:56:a4:81:f1:10:1e:c3:2f:76:e6:b3:f9:54: e0:00:38:60:25:ca:9e:18:5e:ce:b1:7a:27:57:ed: 93:e7:34:39:16:8d:f7:a6:df:28:e7:a3:70:cc:05: ae:d4:76:0c:05:f3:d2:e5:6d:ee:0c:ed:d5:71:00: e0:6b:0f:ce:ca:60:1c:f2:c1:0d:fb:82:90:df:44: 8c:7b:8d:e4:9b:08:86:65:e0:dc:9a:8f:0a:c5:b7: fb:c4:23:e9:d2:5f:fd:2c:18:07:a3:79:55:4f:50: 92:4f:a1:77:19:86:f8:81:82:4f:fc:9b:84:5c:d2: 57:f3:27:ab:e8:f8:4a:66:29:91:0e:f5:b4:5f:e5: 04:8e:f9:0a:7b:a0:26:29:b9:e7:4e:b5:0b:89:4c: 01:68:17:61:bb:6c:32:42:bb:25:35:1d:d7:d1:8f: dd:3f:f1:76:6c:9c:51:b9:8a:5e:05:60:19:6b:2c: 8a:24:8c:a4:76:63:65:a5:cb:3f:22:1d:28:14:3c: ae:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:43:BB:C9:3C:ED:49:A2:7E:41:54:AA:46:FA:4A:7F:9C:DB:B7:F8 X509v3 Authority Key Identifier: keyid:DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:a0:af:41:29:06:24:94:85:95:f5:74:af:ab:3b:be:66:04: d8:40:9a:b7:8c:ca:83:c9:ee:36:95:54:6f:46:d8:41:7e:a3: 02:f9:8c:ee:5a:b2:3c:8d:a2:ca:da:16:03:08:4e:34:26:16: 7d:75:81:6b:f9:f8:56:bb:11:50:6d:cd:57:cb:b5:7a:a1:83: 77:ab:12:2e:48:db:61:c2:8c:1b:bc:4a:31:2f:1e:e4:ec:b5: 25:b0:df:19:4d:a9:89:47:99:54:09:5c:e0:cc:f9:31:e4:6b: 31:0d:13:34:f1:02:1d:91:f1:80:06:c1:a4:66:ca:4f:34:49: 9e:5c:29:18:0a:44:99:62:cc:f7:e2:04:48:b1:28:49:b9:f0: 3e:0b:46:58:52:46:7d:02:6b:f6:87:8c:3c:ee:38:5e:96:46: 43:83:bb:20:73:6a:d1:bc:a2:09:38:dd:a8:ad:9b:d6:d5:c9: fa:2e:3f:08:4f:72:dc:75:e0:91:bf:bd:7f:ab:24:6b:cd:19: 88:04:cb:ba:58:a3:c6:fe:b2:cd:7c:16:65:36:6f:1c:90:96: 3f:e5:cb:25:f1:d2:d8:72:8a:b6:10:93:f9:14:03:4a:61:b2: b4:69:76:4f:94:f4:3b:f6:d3:6b:62:da:07:cc:f7:e5:c7:74: d2:8a:79:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTE5QjExMC8GA1UEBRMoREYyMkE5QTU3QjdEM0E4QUVCMTI0RDY5MEM3OTE3MDY2 QjREQjU5RTAeFw0yNjAxMjMwNjMwMzFaFw0yNjAxMzAwNjMwMzFaMBgxFjAUBgNV BAMMDTY5NzMxNTg3LTAzZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDciqXdCZp88Wrzg82RBnr+gDjIpSMVp3jG4Dy73058J2b8V0+0YBX2rmgqLgjW EnLWgCj+gh5bzqGbaDb0VqSB8RAewy925rP5VOAAOGAlyp4YXs6xeidX7ZPnNDkW jfem3yjno3DMBa7UdgwF89Llbe4M7dVxAOBrD87KYBzywQ37gpDfRIx7jeSbCIZl 4NyajwrFt/vEI+nSX/0sGAejeVVPUJJPoXcZhviBgk/8m4Rc0lfzJ6vo+EpmKZEO 9bRf5QSO+Qp7oCYpuedOtQuJTAFoF2G7bDJCuyU1HdfRj90/8XZsnFG5il4FYBlr LIokjKR2Y2Wlyz8iHSgUPK4vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJUO7yTzt SaJ+QVSqRvpKf5zbt/gwHwYDVR0jBBgwFoAU3yKppXt9OorrEk1pDHkXBmtNtZ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMTlCL0RBQjg1RTI4QTM3 MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29yckVrMXBESGtYQm10TnRa NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3lLcHBYdDlPb3JyRWsxcERIa1hCbXROdFo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF MTlCL0RBQjg1RTI4QTM3MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29y ckVrMXBESGtYQm10TnRaNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEegr0EpBiSUhZX1dK+rO75mBNhAmreMyoPJ7jaVVG9G2EF+owL5jO5a sjyNosraFgMITjQmFn11gWv5+Fa7EVBtzVfLtXqhg3erEi5I22HCjBu8SjEvHuTs tSWw3xlNqYlHmVQJXODM+THkazENEzTxAh2R8YAGwaRmyk80SZ5cKRgKRJlizPfi BEixKEm58D4LRlhSRn0Ca/aHjDzuOF6WRkODuyBzatG8ogk43aitm9bVyfouPwhP ctx14JG/vX+rJGvNGYgEy7pYo8b+ss18FmU2bxyQlj/lyyXx0thyirYQk/kUA0ph srRpdk+U9Dv202ti2gfM9+XHdNKKea4= -----END CERTIFICATE-----Generated at Sun Jan 25 02:57:39 2026 by rpki-client