This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: fUYghTdrfwRLSpu1jhiCYquvM1y7vSITZClEnrwI5Gc= Subject key identifier: 21:CC:29:DC:22:5D:9F:0B:EE:FF:F4:01:D2:6F:4D:B4:D8:DE:6D:60 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3511 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 350B Signing time: Sat 24 Jan 2026 14:59:17 +0000 Manifest this update: Sat 24 Jan 2026 14:59:17 +0000 Manifest next update: Sat 31 Jan 2026 14:59:17 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: i7aD0bgBUNaabMdm7O7SQb4o0DQw6m01b4407g9RbbU=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: M6Pt8WXLhq//MKcmuNDOr2BuMndgWlnu7AwCPG6iTjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13585 (0x3511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Jan 24 14:59:17 2026 GMT Not After : Jan 31 14:59:17 2026 GMT Subject: CN=6974de45-e647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0a:f4:20:a3:60:13:15:ba:c0:46:37:5a:40: 29:f2:dc:a3:23:b4:63:9a:b4:0d:46:21:1f:da:47: 93:d3:01:9e:9c:30:8e:58:9b:0e:19:0f:25:4e:6b: bc:50:d1:ef:ba:64:dd:a8:44:d8:68:2b:d0:bf:8f: ea:b2:44:fb:85:c5:53:43:b9:c7:98:7a:8d:66:23: 88:ec:5e:96:1e:59:c0:e4:ed:7d:e5:30:0c:2d:6b: ef:8c:19:39:77:bb:07:1c:ff:cf:ef:b7:92:da:01: 2b:f2:53:8f:4c:36:f2:8b:d7:f0:bf:12:de:c1:0b: 5c:26:3b:0a:f2:54:68:f0:ea:4e:2c:ae:39:ed:cd: 2d:ac:07:90:bb:36:ac:41:60:b0:56:1a:e7:db:df: 40:a1:19:3d:d8:75:e9:4a:e1:81:5d:46:9f:8f:a2: 81:4e:f4:f6:5b:a5:73:2f:c0:67:9d:e9:6f:13:cb: 44:a8:f1:db:92:6c:c9:58:0e:37:81:d8:2c:4e:97: 19:f0:77:c9:f3:f0:8e:58:4e:9d:5a:42:b5:a1:3e: a4:0f:6b:1a:5d:2c:cb:9c:67:00:32:de:49:32:46: c1:1b:98:f0:c2:a1:e4:6a:3d:db:50:54:df:5d:05: be:a7:62:f7:82:f6:fc:dc:77:07:27:58:a4:0b:82: b4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CC:29:DC:22:5D:9F:0B:EE:FF:F4:01:D2:6F:4D:B4:D8:DE:6D:60 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:51:53:46:95:08:c2:80:3a:16:d3:d0:0e:b4:6b:09:78:68: e3:7d:53:dc:fd:da:68:70:fa:e8:3a:84:85:c2:d8:d0:cc:ba: 15:c9:2d:ac:53:f9:3f:17:b6:f0:e7:b7:bb:1f:2c:4f:36:7a: eb:f0:41:48:13:51:f6:72:98:7e:c6:5f:12:d3:2f:4c:7c:cc: cd:89:86:1c:5f:4c:e3:7a:6f:7d:13:96:c3:e4:a7:e4:bf:d5: ff:4b:73:3c:ec:a4:2f:e9:c4:47:13:67:66:d9:16:46:02:5e: fc:80:cb:4f:2e:c4:25:79:92:0e:0d:d8:99:f8:52:73:9a:53: 1b:13:1e:8f:6e:59:1e:c4:10:0a:f6:a4:c7:28:4c:a5:57:c7: 4e:62:99:cd:0e:d7:f4:4c:f1:07:a4:52:a6:c8:8a:6a:88:2e: 44:0a:e1:85:b2:de:fb:b8:55:ab:56:16:41:b4:a3:78:bc:67: c7:27:d4:2e:12:a5:1f:b2:6e:a1:36:5a:95:50:a9:f7:88:5e: ae:04:05:78:77:fa:3f:c9:71:64:08:d4:f1:2a:3e:e3:97:3f: aa:f0:63:33:2b:21:be:f5:80:07:d5:50:b9:bb:e2:de:f7:84: b9:39:4b:67:e5:7c:62:52:21:71:83:ab:85:d5:ed:95:35:22: 40:60:e9:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwMTI0MTQ1OTE3WhcNMjYwMTMxMTQ1OTE3WjAYMRYwFAYD VQQDDA02OTc0ZGU0NS1lNjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgr0IKNgExW6wEY3WkAp8tyjI7RjmrQNRiEf2keT0wGenDCOWJsOGQ8lTmu8 UNHvumTdqETYaCvQv4/qskT7hcVTQ7nHmHqNZiOI7F6WHlnA5O195TAMLWvvjBk5 d7sHHP/P77eS2gEr8lOPTDbyi9fwvxLewQtcJjsK8lRo8OpOLK457c0trAeQuzas QWCwVhrn299AoRk92HXpSuGBXUafj6KBTvT2W6VzL8BnnelvE8tEqPHbkmzJWA43 gdgsTpcZ8HfJ8/COWE6dWkK1oT6kD2saXSzLnGcAMt5JMkbBG5jwwqHkaj3bUFTf XQW+p2L3gvb83HcHJ1ikC4K0yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHMKdwi XZ8L7v/0AdJvTbTY3m1gMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYUVNGlQjCgDoW09AOtGsJeGjjfVPc/dpocProOoSFwtjQzLoVyS2s U/k/F7bw57e7HyxPNnrr8EFIE1H2cph+xl8S0y9MfMzNiYYcX0zjem99E5bD5Kfk v9X/S3M87KQv6cRHE2dm2RZGAl78gMtPLsQleZIODdiZ+FJzmlMbEx6PblkexBAK 9qTHKEylV8dOYpnNDtf0TPEHpFKmyIpqiC5ECuGFst77uFWrVhZBtKN4vGfHJ9Qu EqUfsm6hNlqVUKn3iF6uBAV4d/o/yXFkCNTxKj7jlz+q8GMzKyG+9YAH1VC5u+Le 94S5OUtn5XxiUiFxg6uF1e2VNSJAYOmd -----END CERTIFICATE-----Generated at Sun Jan 25 15:24:16 2026 by rpki-client