This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: +d+ZNDBlH5OCmo+BFfab5QMJpYBNkbM7ltEeQZeRCb0= Subject key identifier: 06:76:A0:EF:9C:3C:48:40:4C:B8:F9:C4:BC:B6:62:C1:CA:CE:4E:23 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0EA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E85 Signing time: Sat 24 Jan 2026 17:24:44 +0000 Manifest this update: Sat 24 Jan 2026 17:24:43 +0000 Manifest next update: Sat 31 Jan 2026 17:24:43 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: 6wKKQIC+qA07xumcAt0+PnVQa9D9kZx3R4HUMhGVCzQ=) 2: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) 3: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 4: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Jan 24 17:24:43 2026 GMT Not After : Jan 31 17:24:43 2026 GMT Subject: CN=6975005b-d19a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:82:7f:04:8a:ea:2d:c5:a4:ea:0d:72:51:dc: c6:3c:d5:a1:89:c2:ef:5f:75:91:82:ab:af:60:5b: 7f:11:2b:4e:a2:3f:7c:0d:d2:13:a1:7d:da:1f:dc: 69:9d:5e:ac:11:56:b6:6c:7c:64:8f:fd:24:5e:13: 3a:39:c8:29:da:19:a9:44:76:74:a1:f5:4d:9a:7c: 9a:dc:85:6c:8f:93:43:94:8c:61:87:64:d8:98:83: 14:11:5b:4f:5c:fc:7f:4a:1f:cb:46:e5:82:9f:5e: 10:61:00:c6:99:3a:5d:04:37:5a:c2:0f:04:8b:83: 6f:ae:02:3f:aa:7f:70:c8:00:2b:47:d6:8f:ac:53: 4b:dc:d4:3d:16:d9:28:07:4b:0a:4e:34:49:c2:67: 2f:6c:29:28:b1:03:94:ad:3d:c3:70:32:1f:3b:7e: 3b:52:b2:8f:7f:c0:b7:fe:1d:51:c7:98:1d:55:9b: 84:a0:f5:4e:56:fb:2d:70:d8:ab:c0:8c:e3:9d:32: 0a:af:8d:7e:99:63:e4:69:e3:f5:6a:ed:b2:c9:99: 77:61:ee:7a:b7:89:f0:97:72:9f:48:fd:74:54:e5: 90:13:90:30:9c:30:dd:ec:d0:f1:a1:fe:55:9c:e5: 59:80:dc:e4:b3:da:4e:a4:a7:88:91:59:79:39:d4: 2a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:76:A0:EF:9C:3C:48:40:4C:B8:F9:C4:BC:B6:62:C1:CA:CE:4E:23 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:2f:fb:ab:a0:d6:7e:eb:f7:8b:43:35:7e:5e:91:be:ed:a7: eb:f5:08:33:84:06:66:21:5f:bf:ed:24:45:fc:df:57:f2:86: 1f:9b:8e:2c:6c:28:92:35:38:df:8f:b9:ea:20:52:0a:dd:56: b1:6a:e2:f8:2a:d5:a2:da:83:44:e7:19:50:36:bb:e6:8c:42: 77:f7:19:80:e2:31:27:42:15:1c:b8:21:89:b2:9e:71:cf:9b: bb:f3:ab:ed:f9:2d:57:2e:7b:81:10:d4:91:e1:3f:37:f1:8b: 06:f5:71:a8:57:32:43:89:4b:d1:29:64:89:f0:81:35:bb:28: 85:08:76:bd:cc:ab:86:f5:46:81:e3:e4:ac:c8:0c:fd:ff:9a: 57:bf:9f:74:c0:1a:f1:3c:7a:7e:e9:67:8f:26:2e:36:68:7d: 1a:9d:7c:cd:bf:60:f6:40:dc:28:fa:ec:a9:55:0e:b3:cb:b8: 1a:ae:4f:1a:4f:9b:ac:a1:e9:83:53:5e:ef:fd:de:fe:79:29: 41:e9:a2:43:0c:67:39:94:27:22:c3:6f:83:33:d5:f8:15:c6: 92:29:02:c1:83:59:f0:e7:9b:ca:d7:12:e2:8a:17:fb:55:4f: e7:86:d9:e2:0e:fb:84:b9:c4:68:21:ba:d4:46:c8:e3:f1:45: d5:7e:ce:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjYwMTI0MTcyNDQzWhcNMjYwMTMxMTcyNDQzWjAYMRYwFAYD VQQDDA02OTc1MDA1Yi1kMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYJ/BIrqLcWk6g1yUdzGPNWhicLvX3WRgquvYFt/EStOoj98DdIToX3aH9xp nV6sEVa2bHxkj/0kXhM6Ocgp2hmpRHZ0ofVNmnya3IVsj5NDlIxhh2TYmIMUEVtP XPx/Sh/LRuWCn14QYQDGmTpdBDdawg8Ei4NvrgI/qn9wyAArR9aPrFNL3NQ9Ftko B0sKTjRJwmcvbCkosQOUrT3DcDIfO347UrKPf8C3/h1Rx5gdVZuEoPVOVvstcNir wIzjnTIKr41+mWPkaeP1au2yyZl3Ye56t4nwl3KfSP10VOWQE5AwnDDd7NDxof5V nOVZgNzks9pOpKeIkVl5OdQq6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZ2oO+c PEhATLj5xLy2YsHKzk4jMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdL/uroNZ+6/eLQzV+XpG+7afr9QgzhAZmIV+/7SRF/N9X8oYfm44s bCiSNTjfj7nqIFIK3VaxauL4KtWi2oNE5xlQNrvmjEJ39xmA4jEnQhUcuCGJsp5x z5u786vt+S1XLnuBENSR4T838YsG9XGoVzJDiUvRKWSJ8IE1uyiFCHa9zKuG9UaB 4+SsyAz9/5pXv590wBrxPHp+6WePJi42aH0anXzNv2D2QNwo+uypVQ6zy7gark8a T5usoemDU17v/d7+eSlB6aJDDGc5lCciw2+DM9X4FcaSKQLBg1nw55vK1xLiihf7 VU/nhtniDvuEucRoIbrURsjj8UXVfs78 -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:43 2026 by rpki-client