This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: I/3SHAq8UXZu+3B9few8+vG56blJAz96QhDheLlCGSw= Subject key identifier: BC:0F:FC:A2:5E:5B:F3:44:E5:AE:0D:26:BF:C9:C3:6D:5C:69:4D:77 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0A84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0A73 Signing time: Sat 24 Jan 2026 19:05:46 +0000 Manifest this update: Sat 24 Jan 2026 19:05:45 +0000 Manifest next update: Sat 31 Jan 2026 19:05:45 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: BcVR6Y238Ue8TUj1+MQMnMECXgPJgH3tvy5CfvApuYo=) 2: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: TxCwNFrh+xkaqDR3M5kqqPa5bX7FhYwp1p0wkxa1CxU=) 3: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: JxcjLdYbfNpLt4XJbaeEwHRAAk7SbV4Cw+ExyqNKBV4=) 4: C8A0E422831611EA95762453C4F9AE02.roa (hash: yUwouY97arbHx1ysSRkQtB3/fVJX2BMSgtA5eI1eKIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2692 (0xa84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Jan 24 19:05:45 2026 GMT Not After : Jan 31 19:05:45 2026 GMT Subject: CN=6975180a-7958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:b5:90:dc:88:f8:b2:2d:e6:34:55:4e:01: c2:6a:35:6c:03:a4:d4:77:34:e1:22:69:06:17:a6: 8c:87:ad:6c:a2:d9:a3:e5:db:ed:65:0d:5b:fb:5e: 62:60:ef:f8:90:39:e5:01:77:aa:51:4f:fd:5d:60: 2e:c1:a5:f4:ac:20:eb:40:ca:08:7b:64:15:6f:f7: 4c:8e:5f:3f:1d:c7:82:85:de:69:9f:ca:71:dd:ab: 18:3c:5c:cf:94:77:14:42:95:00:52:7b:02:ed:1b: 53:da:d1:20:18:9b:7b:91:f9:46:34:64:7f:ba:75: 93:af:84:94:f6:13:6b:40:62:d0:0b:14:b0:05:f2: e3:dd:a6:d9:5d:87:21:7c:80:2b:03:2d:1f:6d:fe: 0f:10:75:cb:6f:24:30:1a:42:97:bb:86:df:0f:8e: 62:cf:01:fe:ff:b6:a6:d5:1c:36:7c:ee:14:18:6b: 86:6a:6e:c2:39:d5:30:d5:69:e7:3b:5b:c4:58:aa: c4:a5:9e:20:a5:a4:a1:48:0c:d7:05:d9:15:95:c5: 9c:9f:0c:01:4e:c1:72:23:a4:b7:36:d4:00:6c:03: a2:22:6a:dc:db:44:71:9b:73:c2:ab:b5:06:24:86: 75:5d:30:ad:81:13:b4:99:9c:1a:11:4d:07:c2:1a: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0F:FC:A2:5E:5B:F3:44:E5:AE:0D:26:BF:C9:C3:6D:5C:69:4D:77 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:2a:07:5d:f6:05:97:fa:df:31:0e:59:cc:5d:91:51:86:fe: 72:87:55:11:2b:63:66:cb:bd:a4:3d:7c:f3:72:08:98:96:d9: ce:9f:bb:65:65:4c:18:42:ea:b3:05:ee:a3:33:b3:09:a3:be: 8d:68:29:fc:86:81:e0:d1:76:c3:50:ca:c3:fe:7d:0b:34:c4: 04:4e:99:53:64:8f:75:64:5a:ad:e7:e8:3a:c7:c4:75:0a:0f: 76:f9:b9:9d:9a:89:ed:0a:42:b3:ec:77:14:0c:34:74:e3:31: b4:21:50:87:b7:ae:06:fc:f9:aa:37:a4:5d:04:8f:f1:e6:4c: bf:60:84:a3:a9:36:f9:62:14:58:21:bf:36:af:44:1e:25:bd: 9c:3e:8b:2a:08:b5:ed:08:3d:19:75:25:2b:49:2f:67:01:16: 1b:c1:ad:9e:a8:62:c2:8a:d2:db:f1:b8:27:a5:43:78:32:9e: cc:38:ec:f0:59:5e:9d:53:4a:41:3a:89:5e:e9:d0:7a:42:f0: 45:70:72:e5:38:e2:ef:84:7f:ba:a7:d7:ad:41:45:36:ee:70: 6c:4d:aa:69:04:61:09:c4:71:3a:3f:58:81:4b:dd:db:7b:14: cd:1d:cf:41:fc:d2:04:6d:e7:58:4f:ca:b0:4d:f1:71:a0:be: 27:6c:05:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjYwMTI0MTkwNTQ1WhcNMjYwMTMxMTkwNTQ1WjAYMRYwFAYD VQQDDA02OTc1MTgwYS03OTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZO1kNyI+LIt5jRVTgHCajVsA6TUdzThImkGF6aMh61sotmj5dvtZQ1b+15i YO/4kDnlAXeqUU/9XWAuwaX0rCDrQMoIe2QVb/dMjl8/HceChd5pn8px3asYPFzP lHcUQpUAUnsC7RtT2tEgGJt7kflGNGR/unWTr4SU9hNrQGLQCxSwBfLj3abZXYch fIArAy0fbf4PEHXLbyQwGkKXu4bfD45izwH+/7am1Rw2fO4UGGuGam7COdUw1Wnn O1vEWKrEpZ4gpaShSAzXBdkVlcWcnwwBTsFyI6S3NtQAbAOiImrc20Rxm3PCq7UG JIZ1XTCtgRO0mZwaEU0Hwhq4IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwP/KJe W/NE5a4NJr/Jw21caU13MB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFKgdd9gWX+t8xDlnMXZFRhv5yh1URK2Nmy72kPXzzcgiYltnOn7tl ZUwYQuqzBe6jM7MJo76NaCn8hoHg0XbDUMrD/n0LNMQETplTZI91ZFqt5+g6x8R1 Cg92+bmdmontCkKz7HcUDDR04zG0IVCHt64G/PmqN6RdBI/x5ky/YISjqTb5YhRY Ib82r0QeJb2cPosqCLXtCD0ZdSUrSS9nARYbwa2eqGLCitLb8bgnpUN4Mp7MOOzw WV6dU0pBOole6dB6QvBFcHLlOOLvhH+6p9etQUU27nBsTappBGEJxHE6P1iBS93b exTNHc9B/NIEbedYT8qwTfFxoL4nbAVx -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:52 2026 by rpki-client