This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft File: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft (raw, json) Hash identifier: 562EmwW55VULds9noBpT7fIrqvlFuL9RO0wPuGstJp4= Subject key identifier: 3D:BD:BF:DB:6D:4E:C7:08:8D:09:7E:68:46:EA:31:38:CA:56:AA:34 Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0B37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft Manifest number: 0B30 Signing time: Sat 24 Jan 2026 18:47:15 +0000 Manifest this update: Sat 24 Jan 2026 18:47:14 +0000 Manifest next update: Sat 31 Jan 2026 18:47:14 +0000 Files and hashes: 1: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl (hash: dfXblWkkKOJ9vcZHlmvppmjm4Pl6Bq9CsT4vXLJR4/g=) 2: 29B9D5B8524111EABEF0A119C4F9AE02.roa (hash: XgnhviRQUKAkeu4itRmlPhHlV4kxqNIZcBKK2pdxl3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2871 (0xb37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Jan 24 18:47:14 2026 GMT Not After : Jan 31 18:47:14 2026 GMT Subject: CN=697513b3-03eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e4:4b:6e:93:25:29:08:b3:08:1b:57:84:67: fa:e9:f5:bb:1d:4c:e0:41:85:74:cd:07:4b:42:c8: 33:72:f3:a4:57:ed:97:8c:e2:da:9b:55:be:1c:86: dd:4d:d1:85:58:83:fd:57:17:9e:a7:c3:4f:ab:d2: 42:0d:1e:a7:d4:ab:e8:ac:78:38:3e:fe:5e:0e:69: 45:9d:2d:c0:6c:a5:5e:8a:b4:18:4b:66:a5:66:6c: 3c:5c:f6:56:a5:1e:2f:04:41:fe:4b:2c:7a:ba:fd: 32:4f:e5:b3:f8:4f:3c:91:54:29:fb:66:39:9c:c3: d6:d0:0f:4d:89:55:39:6b:bf:e4:72:56:c1:24:b6: 08:1b:a1:55:a0:62:b8:9c:f1:61:06:9c:6c:53:57: 60:78:7d:ec:b4:33:67:3c:17:7b:d5:0f:c4:f3:dd: 1c:d7:23:e2:84:2d:dc:c1:3d:aa:ac:01:bc:72:49: 37:40:37:6d:ef:48:7b:29:c0:44:ad:ab:3f:20:b8: 78:80:db:cd:c9:50:e9:1a:cd:13:28:19:71:bc:97: 03:44:87:63:c2:67:3b:e5:f5:76:5e:17:ab:cf:70: 28:24:12:cb:3d:d6:e6:49:2d:0b:ba:23:41:4f:0d: 8d:2b:be:3c:d0:d9:2b:bf:e4:04:1e:80:f6:8b:2b: d5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BD:BF:DB:6D:4E:C7:08:8D:09:7E:68:46:EA:31:38:CA:56:AA:34 X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:20:4b:d9:a5:b2:2c:f0:57:6b:a2:70:c3:4f:f5:c0:f9:6e: b5:11:4a:d6:01:b9:3f:5e:b8:a4:20:fb:b0:83:9f:9f:a6:dd: 06:b0:45:e8:12:7b:2b:d1:17:41:29:ea:b3:f0:0e:bd:cc:ba: 9f:ff:4c:36:79:c0:a0:d3:6f:f6:5a:42:84:12:b7:5a:19:d1: ee:50:57:f7:28:01:38:4d:8c:a5:84:fa:4b:19:2d:2d:e4:da: a6:d2:9d:c1:95:2a:7f:10:81:34:7c:53:d6:2d:10:b2:17:d5: ca:78:de:93:ed:8b:1b:17:22:04:10:1b:0a:c1:f4:2e:77:cb: 46:9b:53:a9:e9:06:af:e0:20:36:4e:f6:52:b2:e5:45:04:18: 64:07:51:fe:de:9e:5c:b5:c6:39:07:1d:c3:48:55:d7:dc:26: a1:cf:5a:bf:99:af:f6:25:79:9a:c9:af:8c:7c:5f:8f:d9:a1: 30:86:82:2a:1d:28:fa:b4:a0:3a:ac:7f:a1:b2:b7:0e:35:46: 3b:02:e9:2c:92:8b:0b:e8:eb:38:0c:42:29:25:28:0d:6e:4c: 20:26:23:c7:30:eb:08:b2:d4:b0:21:b1:b0:a0:2d:cf:c2:66: f6:ed:23:5c:8e:8e:ba:64:45:91:75:d7:73:d2:6f:8e:c9:5c: 2f:4a:3f:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjYwMTI0MTg0NzE0WhcNMjYwMTMxMTg0NzE0WjAYMRYwFAYD VQQDDA02OTc1MTNiMy0wM2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uRLbpMlKQizCBtXhGf66fW7HUzgQYV0zQdLQsgzcvOkV+2XjOLam1W+HIbd TdGFWIP9Vxeep8NPq9JCDR6n1KvorHg4Pv5eDmlFnS3AbKVeirQYS2alZmw8XPZW pR4vBEH+Syx6uv0yT+Wz+E88kVQp+2Y5nMPW0A9NiVU5a7/kclbBJLYIG6FVoGK4 nPFhBpxsU1dgeH3stDNnPBd71Q/E890c1yPihC3cwT2qrAG8ckk3QDdt70h7KcBE ras/ILh4gNvNyVDpGs0TKBlxvJcDRIdjwmc75fV2Xherz3AoJBLLPdbmSS0LuiNB Tw2NK7480Nkrv+QEHoD2iyvV2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD29v9tt TscIjQl+aEbqMTjKVqo0MB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS83MDYzRTQyNDUyM0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklD bXV2aDRUQ0FtZVlrbk5OaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApIEvZpbIs8FdronDDT/XA+W61EUrWAbk/XrikIPuwg5+fpt0GsEXo Ensr0RdBKeqz8A69zLqf/0w2ecCg02/2WkKEErdaGdHuUFf3KAE4TYylhPpLGS0t 5Nqm0p3BlSp/EIE0fFPWLRCyF9XKeN6T7YsbFyIEEBsKwfQud8tGm1Op6Qav4CA2 TvZSsuVFBBhkB1H+3p5ctcY5Bx3DSFXX3Cahz1q/ma/2JXmaya+MfF+P2aEwhoIq HSj6tKA6rH+hsrcONUY7AukskosL6Os4DEIpJSgNbkwgJiPHMOsIstSwIbGwoC3P wmb27SNcjo66ZEWRdddz0m+OyVwvSj8F -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:54 2026 by rpki-client