This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: kxzRUP0S3c7NpfIaXnYtPO65uAeDxq4sk9byFG7XRj8= Subject key identifier: 5D:80:2D:C6:87:DE:CD:C6:8A:84:1E:B1:8D:4E:74:0B:CB:87:A9:55 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 023D Signing time: Sun 25 Jan 2026 01:12:03 +0000 Manifest this update: Sun 25 Jan 2026 01:12:02 +0000 Manifest next update: Sun 01 Feb 2026 01:12:02 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: BG9MaCjYY+vlUBb9g2sQleE3DTqcJMpArv9g4z7j1NA=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Jan 25 01:12:02 2026 GMT Not After : Feb 1 01:12:02 2026 GMT Subject: CN=69756de2-b792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c8:38:42:f0:5a:0c:d6:a5:ef:3e:36:e5:0b: 27:c3:dd:7d:d5:c0:25:8e:28:0d:73:99:0a:f5:6b: 32:f4:74:4a:4c:85:1d:3d:89:a5:39:fc:da:bb:86: e0:3f:c4:01:96:42:e5:cd:31:ab:12:d8:1f:22:e8: 12:7e:3b:9e:34:5c:ab:ee:66:e0:1b:a8:1e:af:2e: 13:97:b7:30:09:29:56:0f:76:f9:f8:81:c5:05:9a: 49:c0:5a:d6:69:0d:03:b9:6d:fd:80:f7:b1:ad:90: eb:c6:91:21:36:e6:75:4c:30:b7:f2:c3:e7:0a:e9: b1:cb:a1:8d:c8:a3:43:ca:21:7c:50:f9:fb:43:50: ac:4e:c9:b6:66:b3:39:3b:a4:cd:5b:66:c7:27:c1: 0f:fb:e4:21:11:5f:af:67:c3:1c:7d:75:7e:90:3f: 9f:f2:cc:32:0c:ff:c2:a6:84:a4:41:0d:d1:8c:c5: b7:a0:c8:b7:ee:30:69:10:12:ad:6c:6d:82:2d:7a: c6:65:31:0d:c3:2e:d5:c3:9d:89:f4:b4:a9:96:e9: 95:b0:c8:50:1a:93:7f:62:98:b8:f9:9e:33:32:ae: 72:99:f4:74:56:33:44:a8:b1:57:90:48:1b:77:09: 16:d0:ac:ca:ca:fa:e6:56:6e:f1:3c:a0:80:30:94: 54:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:80:2D:C6:87:DE:CD:C6:8A:84:1E:B1:8D:4E:74:0B:CB:87:A9:55 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:ce:5e:b7:81:96:1f:66:bf:13:b9:dd:1a:36:9a:4f:47:eb: 1c:cf:ab:19:b0:ed:3f:31:b7:65:0b:18:9a:21:a0:ab:75:0c: a8:1e:91:f5:5c:7a:9e:c3:39:be:60:62:a7:57:88:e3:67:b0: dd:cb:35:49:c9:e9:bd:5e:ae:3e:d9:0a:08:61:ae:ee:dd:b0: 50:7d:a5:a6:6f:41:97:d9:2c:df:06:ae:8d:eb:be:2e:a1:eb: 42:c2:00:6c:96:00:d6:a4:30:a0:c6:47:0a:7e:6d:4d:3b:c2: 3c:02:16:ff:0f:e2:12:a1:ed:87:ad:b7:87:27:58:df:6c:d1: 03:f7:0e:84:bf:7b:d0:34:f7:b5:29:9e:93:65:6b:2e:53:cd: 37:ae:13:26:cc:ba:ea:2b:66:c2:3e:c0:0b:57:55:8b:e4:9e: e7:ae:96:d6:43:58:e3:64:10:d1:b4:c8:77:75:07:c8:93:e1: 9f:43:a0:09:ea:c3:31:2e:07:35:f5:f8:99:6a:a9:09:de:a6: ba:b7:46:5c:ab:48:e6:89:ea:d2:ea:6d:cf:d5:ff:9f:f2:94: 8b:34:c4:0b:6f:95:dd:16:50:1a:f4:0c:fc:ae:e8:56:fe:f5: 74:d2:cf:d2:f5:a9:bb:9d:55:5d:e4:90:06:65:47:71:63:66: 13:af:59:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjYwMTI1MDExMjAyWhcNMjYwMjAxMDExMjAyWjAYMRYwFAYD VQQDDA02OTc1NmRlMi1iNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Mg4QvBaDNal7z425Qsnw9191cAljigNc5kK9Wsy9HRKTIUdPYmlOfzau4bg P8QBlkLlzTGrEtgfIugSfjueNFyr7mbgG6gery4Tl7cwCSlWD3b5+IHFBZpJwFrW aQ0DuW39gPexrZDrxpEhNuZ1TDC38sPnCumxy6GNyKNDyiF8UPn7Q1CsTsm2ZrM5 O6TNW2bHJ8EP++QhEV+vZ8McfXV+kD+f8swyDP/CpoSkQQ3RjMW3oMi37jBpEBKt bG2CLXrGZTENwy7Vw52J9LSplumVsMhQGpN/Ypi4+Z4zMq5ymfR0VjNEqLFXkEgb dwkW0KzKyvrmVm7xPKCAMJRUgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2ALcaH 3s3GioQesY1OdAvLh6lVMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYzl63gZYfZr8Tud0aNppPR+scz6sZsO0/MbdlCxiaIaCrdQyoHpH1 XHqewzm+YGKnV4jjZ7DdyzVJyem9Xq4+2QoIYa7u3bBQfaWmb0GX2SzfBq6N674u oetCwgBslgDWpDCgxkcKfm1NO8I8Ahb/D+ISoe2HrbeHJ1jfbNED9w6Ev3vQNPe1 KZ6TZWsuU803rhMmzLrqK2bCPsALV1WL5J7nrpbWQ1jjZBDRtMh3dQfIk+GfQ6AJ 6sMxLgc19fiZaqkJ3qa6t0Zcq0jmierS6m3P1f+f8pSLNMQLb5XdFlAa9Az8ruhW /vV00s/S9am7nVVd5JAGZUdxY2YTr1m6 -----END CERTIFICATE-----Generated at Sun Jan 25 18:36:49 2026 by rpki-client