This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: C71UPVdyXpYsBY3UDZqG2zRhRs/i9FhhN8z+gpdWqyA= Subject key identifier: 49:76:D6:2D:7D:EF:33:DE:3F:9C:42:74:0A:83:8D:9A:1E:C4:35:25 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 062A Signing time: Sat 24 Jan 2026 22:08:48 +0000 Manifest this update: Sat 24 Jan 2026 22:08:48 +0000 Manifest next update: Sat 31 Jan 2026 22:08:48 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: hQmDnQfzma02ptzEv3eE9gbYKLvOCQRjV8LyFQICNCU=) 2: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: gHDAbk+csdO0hOBDuH+ZATTF34H0ukA+S9Q9dMiUWDk=) 3: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: wpBZBtNCDLHxBkBL5a29BX4r7aASlL8Pki5MOyVlQBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Jan 24 22:08:48 2026 GMT Not After : Jan 31 22:08:48 2026 GMT Subject: CN=697542f0-485d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9e:ec:87:68:05:7a:60:e9:6d:f6:13:c4:e8: 9a:21:86:48:b3:32:aa:95:55:f1:7c:03:81:95:9e: 29:77:ca:cd:b6:63:56:84:8f:a9:b3:a0:2c:5c:3d: 53:b0:5b:ce:45:bb:b2:df:13:45:38:17:68:8a:cc: 81:19:94:f3:61:6f:fe:10:3a:9e:d6:c0:f6:c9:df: c7:0d:8e:5d:2e:86:81:5f:e4:bc:e0:be:0b:3e:a6: c2:11:89:3d:b1:1b:aa:4f:d8:33:05:92:15:76:f9: 62:b8:12:74:12:8f:1f:22:17:9b:76:1c:04:31:fd: bd:35:92:02:a7:98:22:f2:b6:72:55:a1:f7:76:2d: d8:5d:42:a7:e3:3b:e6:39:b2:fe:b1:b4:57:88:ed: 01:61:bd:b8:95:36:06:07:84:3c:e6:12:7e:33:db: 88:d7:52:ee:cf:36:a6:5c:b2:16:25:4a:45:ca:4b: 08:49:94:d2:cf:c4:dc:10:78:a4:79:1d:4d:58:20: 5d:26:c9:80:76:8d:24:6a:53:98:89:f5:67:3e:29: dd:a5:18:02:f3:19:68:fe:72:7d:69:e2:34:4b:a4: d2:18:67:89:74:97:7b:42:61:64:bf:1d:e0:34:9e: cf:db:e9:97:b0:c3:a8:e5:20:3f:e3:f1:65:47:aa: 33:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:76:D6:2D:7D:EF:33:DE:3F:9C:42:74:0A:83:8D:9A:1E:C4:35:25 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:bd:b5:d1:2b:d1:42:78:0d:16:f5:8a:93:ff:35:8d:d2:50: 1b:cb:a1:2d:85:41:77:f9:35:0e:84:8a:37:92:23:3f:e1:99: 86:e3:c6:82:82:34:92:3c:bf:b8:b9:22:db:b2:aa:07:00:b6: 8d:46:42:e4:89:0f:97:75:bb:d3:ad:e0:b2:39:77:ce:e4:8a: e7:e8:72:57:05:b4:34:43:3a:d1:08:26:eb:21:f5:d4:d0:8a: b8:68:26:98:21:75:17:c5:91:e1:3d:63:c5:eb:16:92:14:45: dc:0f:45:77:00:00:b0:dc:18:e2:28:3e:6e:c6:d8:55:23:5a: df:31:b2:84:62:f2:e7:42:59:dc:c6:47:0d:46:1d:26:56:8f: d6:47:a1:1a:38:34:dc:50:f3:1c:4b:23:c8:29:a5:13:bd:8d: f1:29:0a:09:59:e0:8a:8b:9a:7b:b0:76:69:7d:a1:c7:e5:1b: 0d:dc:75:2f:27:bb:6e:5b:4a:8f:a8:f7:a4:71:6c:2b:2a:05: 3b:da:f2:fd:fc:85:c8:02:10:0b:08:3f:44:87:3d:2b:8a:c7: 16:97:fe:ad:d5:70:09:67:8f:1e:4d:c0:64:a2:cc:c4:3a:7d: 24:3b:e8:2c:ac:9d:63:84:90:2d:ae:1e:60:8a:d0:88:36:16: 3e:1c:a9:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwMTI0MjIwODQ4WhcNMjYwMTMxMjIwODQ4WjAYMRYwFAYD VQQDDA02OTc1NDJmMC00ODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJ7sh2gFemDpbfYTxOiaIYZIszKqlVXxfAOBlZ4pd8rNtmNWhI+ps6AsXD1T sFvORbuy3xNFOBdoisyBGZTzYW/+EDqe1sD2yd/HDY5dLoaBX+S84L4LPqbCEYk9 sRuqT9gzBZIVdvliuBJ0Eo8fIhebdhwEMf29NZICp5gi8rZyVaH3di3YXUKn4zvm ObL+sbRXiO0BYb24lTYGB4Q85hJ+M9uI11LuzzamXLIWJUpFyksISZTSz8TcEHik eR1NWCBdJsmAdo0kalOYifVnPindpRgC8xlo/nJ9aeI0S6TSGGeJdJd7QmFkvx3g NJ7P2+mXsMOo5SA/4/FlR6ozqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEl21i19 7zPeP5xCdAqDjZoexDUlMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcvbXRK9FCeA0W9YqT/zWN0lAby6EthUF3+TUOhIo3kiM/4ZmG48aC gjSSPL+4uSLbsqoHALaNRkLkiQ+XdbvTreCyOXfO5Irn6HJXBbQ0QzrRCCbrIfXU 0Iq4aCaYIXUXxZHhPWPF6xaSFEXcD0V3AACw3BjiKD5uxthVI1rfMbKEYvLnQlnc xkcNRh0mVo/WR6EaODTcUPMcSyPIKaUTvY3xKQoJWeCKi5p7sHZpfaHH5RsN3HUv J7tuW0qPqPekcWwrKgU72vL9/IXIAhALCD9Ehz0riscWl/6t1XAJZ48eTcBkoszE On0kO+gsrJ1jhJAtrh5gitCINhY+HKk3 -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:43 2026 by rpki-client