This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft File: zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft (raw, json) Hash identifier: whoEY9YhyCEh9M/4W2A777ZRPD3zkvZQIoxgbJ0uzqM= Subject key identifier: 2D:88:A7:4F:D1:EC:BB:60:30:E2:74:35:0E:BD:22:63:0A:57:7B:D6 Authority key identifier: CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B Certificate issuer: /CN=A91DFA25/serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft Manifest number: 15 Signing time: Sun 25 Jan 2026 07:01:53 +0000 Manifest this update: Sun 25 Jan 2026 07:01:52 +0000 Manifest next update: Sun 01 Feb 2026 07:01:52 +0000 Files and hashes: 1: zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl (hash: yNtQ5gfL50KnUkJMnFbEIUKGWV2MLS6N5m+whKBbuDI=) 2: 9E283D22E07A11F0AD28F7913A6F56BC.roa (hash: kvLeQTrBrWwHA2shiEotr3VQqnyo8ZeA1spX1g7O3vU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFA25, serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Validity Not Before: Jan 25 07:01:52 2026 GMT Not After : Feb 1 07:01:52 2026 GMT Subject: CN=6975bfe0-0a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:ec:57:0a:ee:47:58:29:7b:cf:0a:bd:ef: a6:f5:14:d7:d6:9a:e6:43:a1:a5:1e:af:06:90:28: d1:e0:d8:b8:ea:3d:b1:24:b3:9d:c6:67:56:19:5b: 37:79:a5:3d:67:26:bd:26:77:49:e9:69:0a:05:1b: 7b:d1:41:fd:32:24:23:dd:8e:df:56:93:14:2a:8d: bd:6e:cf:dc:ea:7c:81:fb:30:e4:4b:ed:69:f8:6b: e7:88:6c:53:5c:f9:e5:df:10:b5:b8:4d:41:1c:f4: ba:41:8e:95:4b:ab:a2:c1:c2:e5:73:51:c6:cd:2b: 7a:f5:43:92:ad:fb:fd:35:54:b6:0f:59:74:06:f9: 5a:0b:e0:23:f7:ab:67:2f:47:b1:45:7a:0c:0a:c7: a0:dc:3b:d0:cd:4b:4e:ae:e1:87:60:bf:2d:86:98: 09:c7:5c:1e:26:f7:ef:06:67:2a:b8:bd:9a:cf:ce: 49:ad:ac:98:6c:b1:60:17:8c:b7:39:9d:16:66:9e: 56:ae:43:73:ef:6f:8d:b1:e6:8d:2a:9b:7b:24:b9: a7:9a:4d:f8:27:b5:ef:44:52:3e:17:c8:2c:bb:b5: 35:2a:26:ff:d6:04:87:4a:b6:3e:d1:99:8d:c5:0b: 01:64:8f:75:fd:a8:71:f7:34:d3:3a:c3:cd:e9:a3: 4d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:88:A7:4F:D1:EC:BB:60:30:E2:74:35:0E:BD:22:63:0A:57:7B:D6 X509v3 Authority Key Identifier: keyid:CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d6:73:26:a0:58:37:b0:8c:27:13:ee:e2:d8:1f:f3:9c:3d: b8:82:2b:6c:f2:f8:a5:fc:38:65:79:e6:52:3a:e5:15:e8:7e: d2:11:b5:6a:9a:32:46:70:11:e0:00:28:b5:56:7a:7a:c2:69: 1b:f7:78:81:8a:14:6b:e1:36:80:25:1e:62:9f:6a:20:8a:2a: 4e:f9:8c:69:49:9e:d9:3e:90:67:fe:6a:85:6a:b8:76:0d:db: 33:86:55:cb:36:29:c4:f3:e1:e3:6c:62:6d:ac:f0:c7:68:91: 70:ad:55:86:e8:4c:61:c9:e7:2a:ff:cb:be:36:3f:67:4e:11: 5a:cf:04:50:2e:72:00:1f:ec:5b:5e:36:35:bf:64:b1:af:33: 9d:e8:79:9b:3e:e3:95:6c:64:9e:09:a6:80:47:69:87:e8:81: f6:fd:5e:b0:e4:60:e3:d2:dd:aa:d6:cf:3a:e4:fe:b6:c5:02: dc:a5:f2:87:34:c3:d0:8a:18:25:e3:59:52:9c:9d:56:de:b4: 46:af:99:1f:53:11:77:89:7b:ec:00:f9:07:f4:52:cb:d9:b8: 83:46:ab:90:54:26:7e:6e:f8:1a:08:79:6d:5b:3c:75:d2:5c: ac:4e:be:15:a9:cc:9f:e5:40:38:1f:a1:c7:d4:28:46:31:57: a3:9a:f4:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFE RkEyNTExMC8GA1UEBRMoQ0M3MEQ4NzM0Mjg5RDMwNUE1MjMzQTk5QjA5Q0Q3OEI4 RkQ2NjY0QjAeFw0yNjAxMjUwNzAxNTJaFw0yNjAyMDEwNzAxNTJaMBgxFjAUBgNV BAMMDTY5NzViZmUwLTBhM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyjuxXCu5HWCl7zwq976b1FNfWmuZDoaUerwaQKNHg2LjqPbEks53GZ1YZWzd5 pT1nJr0md0npaQoFG3vRQf0yJCPdjt9WkxQqjb1uz9zqfIH7MORL7Wn4a+eIbFNc +eXfELW4TUEc9LpBjpVLq6LBwuVzUcbNK3r1Q5Kt+/01VLYPWXQG+VoL4CP3q2cv R7FFegwKx6DcO9DNS06u4Ydgvy2GmAnHXB4m9+8GZyq4vZrPzkmtrJhssWAXjLc5 nRZmnlauQ3Pvb42x5o0qm3skuaeaTfgnte9EUj4XyCy7tTUqJv/WBIdKtj7RmY3F CwFkj3X9qHH3NNM6w83po02PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULYinT9Hs u2Aw4nQ1Dr0iYwpXe9YwHwYDVR0jBBgwFoAUzHDYc0KJ0wWlIzqZsJzXi4/WZksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGQTI1LzcwRjk3OEYyRTA3 NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdXbEl6cVpzSnpYaTRfV1pr cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekhEWWMwS0owd1dsSXpxWnNKelhpNF9XWmtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG QTI1LzcwRjk3OEYyRTA3NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdX bEl6cVpzSnpYaTRfV1prcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLWcyagWDewjCcT7uLYH/OcPbiCK2zy+KX8OGV55lI65RXoftIRtWqa MkZwEeAAKLVWenrCaRv3eIGKFGvhNoAlHmKfaiCKKk75jGlJntk+kGf+aoVquHYN 2zOGVcs2KcTz4eNsYm2s8MdokXCtVYboTGHJ5yr/y742P2dOEVrPBFAucgAf7Fte NjW/ZLGvM53oeZs+45VsZJ4JpoBHaYfogfb9XrDkYOPS3arWzzrk/rbFAtyl8oc0 w9CKGCXjWVKcnVbetEavmR9TEXeJe+wA+Qf0UsvZuINGq5BUJn5u+BoIeW1bPHXS XKxOvhWpzJ/lQDgfocfUKEYxV6Oa9LU= -----END CERTIFICATE-----Generated at Sun Jan 25 11:11:23 2026 by rpki-client