This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: +2K87QmltKCXLCYZJrDGdEevqIqWmJCiKAN0+k0oCyY= Subject key identifier: D3:88:7A:23:00:59:2E:1F:1D:20:F6:7F:7A:71:AC:22:E3:FE:05:92 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 0224 Signing time: Sun 25 Jan 2026 01:36:59 +0000 Manifest this update: Sun 25 Jan 2026 01:36:58 +0000 Manifest next update: Sun 01 Feb 2026 01:36:58 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: EY1AcWsanPb7HhBhs+t4JqdDbF2y+Xsq/O+HlvHLe+w=) 2: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) 3: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: mJLvR1p4ts88KkpVKKt2PVk1iLkTAtrbOa4ytntbS6o=) 4: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: g8h4AuAjSU2htCTyorJM2XPUCNXDA6cYYOZOcIV/cZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jan 25 01:36:58 2026 GMT Not After : Feb 1 01:36:58 2026 GMT Subject: CN=697573bb-c929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:04:74:01:51:0c:e5:93:bb:06:83:75:2b:79: a8:20:ca:6c:1e:07:4d:c2:d1:fe:28:15:b9:b9:a1: 41:37:7d:11:52:d5:ff:ed:69:db:37:a8:bb:2a:39: e5:88:41:79:c7:83:7f:41:b5:14:2e:2d:6f:9e:29: ef:0c:ba:89:fe:23:4a:7f:fd:ff:0c:a6:30:60:04: e3:12:93:6f:9d:d4:6c:50:0e:11:c6:d3:e3:67:f5: 52:4f:8a:4d:8a:d8:57:a6:f1:b4:94:ab:17:9a:9c: f2:1c:3b:6a:8d:7b:1e:1d:84:b8:4c:72:31:6c:96: 7f:c7:57:dc:13:a4:1e:d4:45:e1:1d:8f:e7:d1:4b: 8a:c8:15:e2:96:10:03:9b:cc:68:78:e6:6b:3a:08: 8f:bc:ac:cc:f1:74:df:c8:6e:43:53:dd:5b:8a:e3: 68:7a:50:76:4b:1b:d0:2a:c2:06:25:5c:b8:7c:85: e6:66:d3:56:af:ec:73:28:d5:1d:15:40:3a:3e:3f: f6:df:3b:c2:bf:cd:21:4c:7e:15:c9:51:a0:69:0b: 65:c2:c1:bb:2f:8e:81:da:1b:0b:bd:85:a8:13:64: fa:8f:bb:a9:7f:a1:fb:40:2b:a6:31:fd:73:ad:34: 31:b6:bf:e8:5e:ac:d6:64:4c:b9:35:67:31:02:38: e4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:88:7A:23:00:59:2E:1F:1D:20:F6:7F:7A:71:AC:22:E3:FE:05:92 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b3:1a:92:0b:d6:c2:51:86:b2:49:bb:9b:03:03:d6:7d:bd: 59:06:36:88:bd:06:97:e3:4b:1b:e8:71:b5:63:59:78:87:ce: 43:4c:52:bc:44:d4:dd:6a:67:7e:48:73:c5:ab:54:f2:55:a1: bd:a9:ce:c1:e0:2a:b9:a8:05:77:a0:07:1e:24:d7:4a:6c:21: 63:a8:56:72:b6:82:40:b7:78:25:ab:43:32:60:47:51:9c:03: e1:db:08:7a:b4:35:0b:d5:ac:03:ce:6d:db:d2:72:d7:bc:93: 2a:77:4f:9d:fa:46:e7:2e:85:b7:b3:bc:05:4f:4d:c9:d4:5c: 8a:e6:0a:f0:37:bf:e0:f7:d0:d2:8c:a8:fb:fd:21:fb:3a:9b: 2c:c6:f6:cd:56:c7:da:e6:0e:5a:72:e3:81:7f:2b:8f:a9:0a: 44:f6:ac:d0:59:bf:d1:66:c6:f8:57:c7:c6:1b:2f:1a:01:5b: 34:2f:72:ba:85:f4:ef:7a:3d:f4:43:f2:4b:4b:98:aa:80:f0: 6b:20:ed:5e:7c:83:57:21:7f:2e:e2:cd:f1:31:5f:7a:c5:25: 21:62:4d:1f:79:67:0c:69:58:ec:01:b5:8b:55:15:ee:9b:a7: 28:39:74:28:5c:0f:ef:7a:5b:b7:11:c2:5b:51:4f:cb:f6:80: b9:2b:f3:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjYwMTI1MDEzNjU4WhcNMjYwMjAxMDEzNjU4WjAYMRYwFAYD VQQDDA02OTc1NzNiYi1jOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgR0AVEM5ZO7BoN1K3moIMpsHgdNwtH+KBW5uaFBN30RUtX/7WnbN6i7Kjnl iEF5x4N/QbUULi1vninvDLqJ/iNKf/3/DKYwYATjEpNvndRsUA4RxtPjZ/VST4pN ithXpvG0lKsXmpzyHDtqjXseHYS4THIxbJZ/x1fcE6Qe1EXhHY/n0UuKyBXilhAD m8xoeOZrOgiPvKzM8XTfyG5DU91biuNoelB2SxvQKsIGJVy4fIXmZtNWr+xzKNUd FUA6Pj/23zvCv80hTH4VyVGgaQtlwsG7L46B2hsLvYWoE2T6j7upf6H7QCumMf1z rTQxtr/oXqzWZEy5NWcxAjjkLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOIeiMA WS4fHSD2f3pxrCLj/gWSMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNsxqSC9bCUYaySbubAwPWfb1ZBjaIvQaX40sb6HG1Y1l4h85DTFK8 RNTdamd+SHPFq1TyVaG9qc7B4Cq5qAV3oAceJNdKbCFjqFZytoJAt3glq0MyYEdR nAPh2wh6tDUL1awDzm3b0nLXvJMqd0+d+kbnLoW3s7wFT03J1FyK5grwN7/g99DS jKj7/SH7OpssxvbNVsfa5g5acuOBfyuPqQpE9qzQWb/RZsb4V8fGGy8aAVs0L3K6 hfTvej30Q/JLS5iqgPBrIO1efINXIX8u4s3xMV96xSUhYk0feWcMaVjsAbWLVRXu m6coOXQoXA/velu3EcJbUU/L9oC5K/NE -----END CERTIFICATE-----Generated at Sun Jan 25 15:57:06 2026 by rpki-client