This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: 9aw7Huu7ZV8S9hB1HZiPXMpZIBc5iDeKNq2HYmPVkT0= Subject key identifier: CC:D1:19:07:82:ED:E7:E0:46:F7:D3:E4:C6:61:0A:CE:72:A8:51:94 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 0906 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 0931 Signing time: Sat 24 Jan 2026 19:45:30 +0000 Manifest this update: Sat 24 Jan 2026 19:45:29 +0000 Manifest next update: Sat 31 Jan 2026 19:45:29 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: v2YR39mjZ5XrvtOCH27iWxF3kaoNFCwjN9leP8HxtIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Jan 24 19:45:29 2026 GMT Not After : Jan 31 19:45:29 2026 GMT Subject: CN=6975215a-fb84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:91:34:91:74:b2:2f:e0:8f:bf:48:e5:03:1f: fa:ed:51:cf:5e:be:ca:60:86:7a:2c:f0:ba:7c:1f: 87:8b:00:7f:9e:7a:35:42:db:3b:4d:ab:78:ec:16: 36:36:2b:13:82:f2:30:a7:0a:5a:df:a5:2d:38:54: 06:a8:d4:09:28:95:7f:86:fd:48:7a:3f:75:64:69: 39:72:a3:fe:ed:37:f8:7e:36:ec:34:f7:00:76:b8: 57:0b:36:ec:d6:e0:0d:5d:1c:7b:5d:08:c3:79:60: 27:f6:2a:a8:3d:7c:ca:7f:75:a1:56:47:e7:65:bc: 37:1c:68:99:7f:d0:4f:c8:d0:36:5a:a4:28:1d:bc: 6f:77:9a:58:38:15:01:34:ac:fc:9c:07:3f:27:38: 60:5d:a5:5c:b4:55:ea:5c:52:aa:80:32:bf:96:d1: cf:cb:c9:bb:ec:87:7d:12:e9:42:42:04:bd:f5:30: 64:b2:15:c5:9f:4f:bc:b6:5c:74:f3:d9:1e:a2:f0: 42:6d:b2:66:77:71:af:4e:12:78:cc:80:dc:26:1b: 36:fd:5f:d5:1d:42:4d:82:db:87:b3:20:cb:56:cb: 9a:4d:b5:d2:55:73:b0:82:04:b9:de:84:85:98:3e: 3f:a8:71:4b:aa:ac:3a:2d:d8:11:f9:7b:74:75:de: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D1:19:07:82:ED:E7:E0:46:F7:D3:E4:C6:61:0A:CE:72:A8:51:94 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ee:4b:82:f9:5c:0b:2d:92:69:b8:e5:e5:93:56:a1:74:e9: 02:db:b5:63:f2:f6:c2:ab:f6:82:d0:08:33:66:52:5f:40:f8: e4:b7:90:f5:cf:77:25:d8:e9:f9:a5:a4:b8:41:5d:32:b2:ab: 04:cc:c2:65:73:80:65:4f:f2:0b:6b:1e:f5:95:6d:5c:d9:6f: ed:d2:90:84:cd:44:3a:63:00:55:0b:bc:79:6a:8b:19:8a:9e: 61:e7:bb:67:b5:a0:24:0a:1c:57:62:84:7c:c2:a8:b1:58:46: c8:a5:f7:28:50:7b:3c:d5:cf:ea:b0:cc:7d:a6:91:30:cb:00: 8c:19:71:33:0f:69:64:8e:6a:db:43:46:d4:e1:6c:a7:06:1a: 13:d2:c9:99:0d:12:da:be:73:54:8f:50:a7:4a:5e:85:e6:53: 0f:09:f7:22:2c:c7:64:9f:85:3a:c9:5f:6e:bf:de:4e:6a:75: 06:0f:6c:27:d3:b5:d7:21:43:31:a6:0f:17:7c:bc:ea:7b:d8: 48:a0:e0:f4:31:50:d6:f8:33:68:f9:ba:37:12:63:b8:9d:b5: b9:c2:41:55:72:0a:c4:bf:a6:4e:d3:f8:9b:71:ee:eb:29:91: 06:b1:c7:07:49:a6:60:e1:e0:02:13:39:3f:ab:15:b8:c7:9e: 63:c3:31:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjYwMTI0MTk0NTI5WhcNMjYwMTMxMTk0NTI5WjAYMRYwFAYD VQQDDA02OTc1MjE1YS1mYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5E0kXSyL+CPv0jlAx/67VHPXr7KYIZ6LPC6fB+HiwB/nno1Qts7Tat47BY2 NisTgvIwpwpa36UtOFQGqNQJKJV/hv1Iej91ZGk5cqP+7Tf4fjbsNPcAdrhXCzbs 1uANXRx7XQjDeWAn9iqoPXzKf3WhVkfnZbw3HGiZf9BPyNA2WqQoHbxvd5pYOBUB NKz8nAc/JzhgXaVctFXqXFKqgDK/ltHPy8m77Id9EulCQgS99TBkshXFn0+8tlx0 89keovBCbbJmd3GvThJ4zIDcJhs2/V/VHUJNgtuHsyDLVsuaTbXSVXOwggS53oSF mD4/qHFLqqw6LdgR+Xt0dd69TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzRGQeC 7efgRvfT5MZhCs5yqFGUMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW7kuC+VwLLZJpuOXlk1ahdOkC27Vj8vbCq/aC0AgzZlJfQPjkt5D1 z3cl2On5paS4QV0ysqsEzMJlc4BlT/ILax71lW1c2W/t0pCEzUQ6YwBVC7x5aosZ ip5h57tntaAkChxXYoR8wqixWEbIpfcoUHs81c/qsMx9ppEwywCMGXEzD2lkjmrb Q0bU4WynBhoT0smZDRLavnNUj1CnSl6F5lMPCfciLMdkn4U6yV9uv95OanUGD2wn 07XXIUMxpg8XfLzqe9hIoOD0MVDW+DNo+bo3EmO4nbW5wkFVcgrEv6ZO0/ibce7r KZEGsccHSaZg4eACEzk/qxW4x55jwzE5 -----END CERTIFICATE-----Generated at Sun Jan 25 10:42:59 2026 by rpki-client