This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: FLzy/Mm1kMpK67rBlLDvRNiiMXpEtZjrYjf5OsYnGjg= Subject key identifier: 56:96:38:1D:FB:C0:83:BE:75:5D:3C:ED:41:7D:41:B4:A4:C4:14:98 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0574 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0568 Signing time: Sat 24 Jan 2026 22:36:57 +0000 Manifest this update: Sat 24 Jan 2026 22:36:56 +0000 Manifest next update: Sat 31 Jan 2026 22:36:56 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: rPwkzTMnF+NsQDb2jO8jVSCg5AL11IC2eqb6gXcNZnA=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: mQcImRO4WHDBeg3hYUSQht+fqF5qfBOe9KqwrJnunlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Jan 24 22:36:56 2026 GMT Not After : Jan 31 22:36:56 2026 GMT Subject: CN=69754989-9f06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2c:4a:6f:cc:75:a1:f9:f6:e0:89:2f:bb:08: 1d:77:06:24:73:fd:d4:2d:b0:a6:9c:e6:89:3b:e8: 88:a0:11:27:4b:f0:46:20:49:96:69:ea:6a:ca:d3: 18:1e:fc:ae:9f:05:6a:0c:47:87:71:ef:3a:eb:66: 59:4c:00:8d:e8:e5:a3:58:85:5b:1c:63:9c:15:af: e6:3b:f1:bb:46:1f:0e:5f:bf:78:7d:5b:c2:c3:50: 7b:11:96:5b:4d:53:27:bd:46:98:2f:ae:21:37:d7: bf:b1:9d:da:1e:30:14:f2:6f:09:91:fc:a6:6a:ef: 66:a5:e4:f3:66:9a:29:8d:5a:a3:78:9c:5d:ea:bc: b6:d1:b6:26:8c:c6:9b:c3:9a:80:97:1c:d0:48:1d: dc:8f:2f:5f:48:bc:b1:11:bb:cf:a7:c1:f8:f3:f0: 34:e8:39:a9:2a:f4:e0:d1:80:20:d4:0b:7c:a5:9e: 07:b0:c3:d7:91:7f:f6:f7:ea:d1:76:a4:1a:3a:35: aa:87:f5:73:de:c9:bf:01:fc:3f:c3:e6:a9:27:19: 3b:15:81:0b:63:9c:df:be:8c:8c:3d:c9:ae:bc:38: fd:35:53:c4:96:ab:c0:81:d7:1e:75:3d:e4:c0:74: bd:6b:88:f2:ed:4a:76:46:5d:d1:6c:fa:7d:bc:a2: 3f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:96:38:1D:FB:C0:83:BE:75:5D:3C:ED:41:7D:41:B4:A4:C4:14:98 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:c4:29:e6:e1:bb:6d:1e:51:18:dc:9c:f3:c2:52:85:c4:71: 1b:c2:54:e7:6c:c7:00:b9:73:c9:d6:c7:61:fb:75:e4:13:be: e4:10:6f:0e:48:a4:5f:cf:13:b5:39:00:f4:87:5e:e8:28:82: a6:4d:74:5e:e9:c8:36:a1:f4:0f:c2:25:62:72:79:36:bf:2a: 8f:0f:0f:17:74:2c:f7:97:f4:d8:f1:7f:a0:15:f2:59:1f:d4: 18:0f:92:41:b8:80:8b:96:e9:5e:59:0b:80:d9:22:5a:79:4b: 1b:6a:2f:5c:69:ad:4f:8c:76:b4:c7:6c:97:35:43:68:35:ed: b7:b3:d2:8d:5b:32:ac:60:c6:13:e7:9c:68:f4:78:62:59:ce: f2:84:c2:be:f2:e2:76:98:b1:2f:b0:b7:ac:33:f3:c6:6f:00: e7:7f:52:0e:86:0b:df:dc:38:2c:ec:4e:ca:4b:f8:4e:1f:49: 8d:2e:2c:b5:b6:bd:7a:c3:62:fc:37:ff:a4:fd:78:f6:8b:1a: e5:11:3f:1e:78:c6:1a:26:6e:71:cc:ff:ae:5b:97:f1:f9:29: 80:ba:22:dd:0a:b4:15:7b:40:bd:d8:52:51:a5:50:7d:74:32: 39:60:22:5a:6f:24:52:55:a5:00:6c:33:bc:c0:66:55:54:d2: f5:9a:ef:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMTI0MjIzNjU2WhcNMjYwMTMxMjIzNjU2WjAYMRYwFAYD VQQDDA02OTc1NDk4OS05ZjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CxKb8x1ofn24IkvuwgddwYkc/3ULbCmnOaJO+iIoBEnS/BGIEmWaepqytMY HvyunwVqDEeHce8662ZZTACN6OWjWIVbHGOcFa/mO/G7Rh8OX794fVvCw1B7EZZb TVMnvUaYL64hN9e/sZ3aHjAU8m8Jkfymau9mpeTzZpopjVqjeJxd6ry20bYmjMab w5qAlxzQSB3cjy9fSLyxEbvPp8H48/A06DmpKvTg0YAg1At8pZ4HsMPXkX/29+rR dqQaOjWqh/Vz3sm/Afw/w+apJxk7FYELY5zfvoyMPcmuvDj9NVPElqvAgdcedT3k wHS9a4jy7Up2Rl3RbPp9vKI/yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaWOB37 wIO+dV087UF9QbSkxBSYMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJxCnm4bttHlEY3JzzwlKFxHEbwlTnbMcAuXPJ1sdh+3XkE77kEG8O SKRfzxO1OQD0h17oKIKmTXRe6cg2ofQPwiVicnk2vyqPDw8XdCz3l/TY8X+gFfJZ H9QYD5JBuICLluleWQuA2SJaeUsbai9caa1PjHa0x2yXNUNoNe23s9KNWzKsYMYT 55xo9HhiWc7yhMK+8uJ2mLEvsLesM/PGbwDnf1IOhgvf3Dgs7E7KS/hOH0mNLiy1 tr16w2L8N/+k/Xj2ixrlET8eeMYaJm5xzP+uW5fx+SmAuiLdCrQVe0C92FJRpVB9 dDI5YCJabyRSVaUAbDO8wGZVVNL1mu8c -----END CERTIFICATE-----Generated at Sun Jan 25 07:46:55 2026 by rpki-client