This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: WjzOio4kTkGVE9z4oiaj0zdIhL2kTIf2JfuhKHhVnA0= Subject key identifier: 0B:6E:DF:E7:FB:00:A5:98:75:BE:4E:87:D0:17:EC:5F:A8:5D:4E:59 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 032F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 0329 Signing time: Sun 25 Jan 2026 00:13:49 +0000 Manifest this update: Sun 25 Jan 2026 00:13:49 +0000 Manifest next update: Sun 01 Feb 2026 00:13:49 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: XJoBxeKh4ajp5iRPCPLoOWooKSvW9YRWvtXtEtIAhWk=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Jan 25 00:13:49 2026 GMT Not After : Feb 1 00:13:49 2026 GMT Subject: CN=6975603d-94a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5c:52:35:38:fe:84:80:04:4c:f8:7a:87:1f: e2:05:9a:37:f9:af:96:32:5e:f2:b3:ca:04:35:61: 66:a1:75:6a:e9:a4:b1:78:0b:82:bc:b5:a9:23:f0: a1:4c:9a:63:a6:e1:2d:58:7d:2b:92:76:6b:b2:62: 1a:37:13:84:5e:6c:d3:de:02:f3:a8:0f:61:4e:c5: 8e:6d:71:d5:e2:11:bf:44:98:4e:58:51:44:6e:d4: b3:a8:37:be:3b:47:ae:a3:0d:dd:5c:44:8e:ce:4d: 2d:02:03:a2:25:77:83:8d:a5:eb:c8:c7:84:70:25: 11:29:ed:9a:f6:35:91:53:f3:19:c7:2b:13:25:36: 90:4d:af:08:85:21:3c:d9:4c:90:c5:1d:c9:3f:12: 6f:8d:94:60:1d:71:52:ca:16:41:d5:b7:f0:25:6b: 36:f8:7d:0b:ba:b1:ea:04:92:3f:30:c0:f4:30:4f: ec:3d:45:66:31:6b:5c:05:35:a1:ec:78:1e:88:24: 3b:1c:1e:40:1f:db:71:15:ac:f1:9f:e3:85:77:c0: c1:47:c5:93:7e:21:89:c1:ea:28:84:2a:06:da:ff: 25:b3:83:cf:27:0b:7b:e7:d6:a3:52:40:05:f6:17: 74:2b:a9:66:ca:16:5d:5d:03:21:23:c3:0b:4c:dd: ce:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6E:DF:E7:FB:00:A5:98:75:BE:4E:87:D0:17:EC:5F:A8:5D:4E:59 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c8:b8:c4:61:31:8b:3d:9f:a1:f3:1c:4d:7e:2c:76:f6:34: 71:f1:b6:e5:6f:a7:18:c2:4b:62:e0:c0:b7:99:88:83:e2:f0: ae:b0:6e:5f:80:1e:44:41:88:b8:47:d8:8d:59:e7:bd:1a:5b: c2:7d:58:be:3b:ae:3a:a3:b5:bf:28:c6:77:9f:3a:e7:8a:a2: 9d:73:a3:b9:29:76:9c:4c:5a:90:ae:f3:52:1f:ad:32:97:4e: a2:b0:07:a7:d0:c3:5a:ff:6f:f8:5c:3b:27:29:f3:2c:09:2c: b9:62:d6:bc:d3:52:b8:2e:90:95:ad:71:d8:66:81:a9:f8:34: eb:10:21:c7:e7:f2:41:ba:d7:68:e6:e6:93:4d:53:b1:aa:05: 4e:af:1f:2b:24:bc:3b:46:69:db:52:7a:fd:a5:d8:a7:04:a7: b9:2d:5b:20:70:7e:1f:10:44:fb:2f:b3:42:5e:1b:8e:05:87: c7:fa:f7:dc:a1:20:b5:50:af:c8:85:78:9e:df:ef:43:73:4f: 89:35:18:72:fc:a1:6d:e0:d8:b5:35:74:2a:70:93:b5:bb:8e: 87:f5:40:8f:e4:ec:17:e2:92:df:a6:be:6e:11:30:c7:6a:3a: 9d:f9:a5:d9:b0:65:d8:dc:99:ff:f7:c2:1e:c2:38:22:f7:b4: 53:d1:27:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjYwMTI1MDAxMzQ5WhcNMjYwMjAxMDAxMzQ5WjAYMRYwFAYD VQQDDA02OTc1NjAzZC05NGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAllxSNTj+hIAETPh6hx/iBZo3+a+WMl7ys8oENWFmoXVq6aSxeAuCvLWpI/Ch TJpjpuEtWH0rknZrsmIaNxOEXmzT3gLzqA9hTsWObXHV4hG/RJhOWFFEbtSzqDe+ O0euow3dXESOzk0tAgOiJXeDjaXryMeEcCURKe2a9jWRU/MZxysTJTaQTa8IhSE8 2UyQxR3JPxJvjZRgHXFSyhZB1bfwJWs2+H0LurHqBJI/MMD0ME/sPUVmMWtcBTWh 7HgeiCQ7HB5AH9txFazxn+OFd8DBR8WTfiGJweoohCoG2v8ls4PPJwt759ajUkAF 9hd0K6lmyhZdXQMhI8MLTN3ORQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtu3+f7 AKWYdb5Oh9AX7F+oXU5ZMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwyLjEYTGLPZ+h8xxNfix29jRx8bblb6cYwkti4MC3mYiD4vCusG5f gB5EQYi4R9iNWee9GlvCfVi+O646o7W/KMZ3nzrniqKdc6O5KXacTFqQrvNSH60y l06isAen0MNa/2/4XDsnKfMsCSy5Yta801K4LpCVrXHYZoGp+DTrECHH5/JButdo 5uaTTVOxqgVOrx8rJLw7RmnbUnr9pdinBKe5LVsgcH4fEET7L7NCXhuOBYfH+vfc oSC1UK/IhXie3+9Dc0+JNRhy/KFt4Ni1NXQqcJO1u46H9UCP5OwX4pLfpr5uETDH ajqd+aXZsGXY3Jn/98Iewjgi97RT0Sfb -----END CERTIFICATE-----Generated at Sun Jan 25 08:07:22 2026 by rpki-client