This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: isUqPVZl5DVVTNexjOo7vUDJPzfQkb3hvKf0Ug94dcY= Subject key identifier: FC:CF:15:1B:CF:8E:55:46:06:6F:86:08:D4:87:8B:92:02:14:3E:B7 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 057F Signing time: Sat 24 Jan 2026 22:40:09 +0000 Manifest this update: Sat 24 Jan 2026 22:40:08 +0000 Manifest next update: Sat 31 Jan 2026 22:40:08 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: VoYy01GiFPdHAQKZh92kUqiKYVubTRymocJsokpfQb8=) 2: E2256F74D97011F0A26925FA9AD3641D.roa (hash: diBgUHCuWxCsrUKo2z8nkKuYx+/V0PX1Z2jBaelCkhc=) 3: F93DE378B66911F09D7E8031C4F9AE02.roa (hash: /hP6RI7E6dXuopaTBp1V0bPHajqNWLoEHVZxzKBu1UQ=) 4: 2A490316D97011F0A9AB95F59AD3641D.roa (hash: DMj/7tmpQ/nmbhEkwyw/tp+gJpMzZLhg72S9/+TVe10=) 5: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: 7pgWej23b80g6BAye7XK6ZW+PkmS+EkTXRGsbDwGPHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Jan 24 22:40:08 2026 GMT Not After : Jan 31 22:40:08 2026 GMT Subject: CN=69754a49-f786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0a:1d:59:55:c2:8e:c4:fe:e8:f6:f9:4f:44: 95:95:a2:22:05:40:63:cf:9a:0b:c3:4c:c7:8d:26: af:7f:ff:c0:8b:56:1b:98:bb:d9:cc:3a:17:9b:53: 21:5d:a5:2c:db:ee:51:7e:57:c4:2f:75:45:3c:27: 95:1f:83:f7:65:4b:87:5e:04:22:5a:d2:0b:51:07: 4d:67:5c:8e:04:66:36:fd:2a:c1:ea:61:2d:fa:46: 33:68:dd:a8:dd:20:76:73:cc:bd:5c:e0:c1:50:35: 30:16:db:ce:27:49:e4:bc:87:3a:16:36:d9:76:f9: e2:d8:c5:25:2d:1a:5c:98:e8:30:b3:8d:05:53:3c: 67:bb:b5:7b:27:c8:9e:de:3f:58:b0:d3:b3:87:64: 1a:7a:22:c1:2a:af:27:18:db:9f:fe:74:40:32:f8: e5:47:ae:23:9a:2c:ad:aa:01:e5:e2:e3:ca:9e:ed: 28:0d:ea:72:21:c0:6e:a8:49:0b:0f:01:f1:60:44: a0:02:2b:16:bb:40:45:e1:28:ae:f8:66:86:39:e3: e2:fe:a5:b5:9e:b3:09:32:1c:39:50:97:46:78:5c: 12:04:1e:9b:38:c9:ab:9d:2b:8d:ef:fd:bf:e1:09: 2c:db:13:dc:58:20:9f:65:8e:fa:73:65:1f:f7:3c: 1e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CF:15:1B:CF:8E:55:46:06:6F:86:08:D4:87:8B:92:02:14:3E:B7 X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:cd:b9:4f:ac:56:fd:64:10:9c:a4:56:27:3c:c8:e0:f7:24: 78:22:1f:11:7c:15:78:d3:bc:1b:ad:e1:7a:48:20:10:ed:ec: 09:79:0b:58:f3:3c:6a:18:fa:7a:99:53:a0:42:1a:a8:ab:bf: 23:63:eb:5a:5a:65:49:5e:d1:5d:a8:e7:55:40:54:4f:f1:0d: 85:68:5c:d9:e8:1f:50:39:65:28:a7:d3:ce:16:86:7d:e8:f0: da:26:67:a4:a0:b8:b8:93:be:e3:35:d3:09:10:b2:79:18:4f: 00:af:85:5e:9e:cc:d2:22:a9:19:e7:17:dc:0c:0f:4c:d7:41: 2c:08:5c:d4:c9:cc:45:2a:72:90:fc:af:0d:27:62:a2:c4:8b: 8e:0b:7c:5f:49:27:ce:dd:75:3e:77:a9:0e:a9:bc:a9:09:64: c8:56:15:bb:d9:2e:c6:ec:10:48:af:dd:0c:21:e1:92:ba:0d: d1:b6:6e:6a:80:3f:bd:32:c0:80:ad:fe:83:1b:3c:af:96:d9: 4d:bf:27:3f:de:83:b4:c5:37:80:b9:66:1a:3e:2e:68:7c:2d: d0:b2:76:22:b0:1d:4d:0e:c0:0b:ec:c0:a9:24:97:ba:9e:6f: d5:f0:13:40:dc:33:63:d0:6e:7a:10:b9:97:a1:80:e0:c2:81: d9:63:d7:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjYwMTI0MjI0MDA4WhcNMjYwMTMxMjI0MDA4WjAYMRYwFAYD VQQDDA02OTc1NGE0OS1mNzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wodWVXCjsT+6Pb5T0SVlaIiBUBjz5oLw0zHjSavf//Ai1YbmLvZzDoXm1Mh XaUs2+5RflfEL3VFPCeVH4P3ZUuHXgQiWtILUQdNZ1yOBGY2/SrB6mEt+kYzaN2o 3SB2c8y9XODBUDUwFtvOJ0nkvIc6FjbZdvni2MUlLRpcmOgws40FUzxnu7V7J8ie 3j9YsNOzh2QaeiLBKq8nGNuf/nRAMvjlR64jmiytqgHl4uPKnu0oDepyIcBuqEkL DwHxYESgAisWu0BF4Siu+GaGOePi/qW1nrMJMhw5UJdGeFwSBB6bOMmrnSuN7/2/ 4Qks2xPcWCCfZY76c2Uf9zweRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzPFRvP jlVGBm+GCNSHi5ICFD63MB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDzblPrFb9ZBCcpFYnPMjg9yR4Ih8RfBV407wbreF6SCAQ7ewJeQtY 8zxqGPp6mVOgQhqoq78jY+taWmVJXtFdqOdVQFRP8Q2FaFzZ6B9QOWUop9POFoZ9 6PDaJmekoLi4k77jNdMJELJ5GE8Ar4VenszSIqkZ5xfcDA9M10EsCFzUycxFKnKQ /K8NJ2KixIuOC3xfSSfO3XU+d6kOqbypCWTIVhW72S7G7BBIr90MIeGSug3Rtm5q gD+9MsCArf6DGzyvltlNvyc/3oO0xTeAuWYaPi5ofC3QsnYisB1NDsAL7MCpJJe6 nm/V8BNA3DNj0G56ELmXoYDgwoHZY9e1 -----END CERTIFICATE-----Generated at Sun Jan 25 13:56:12 2026 by rpki-client