This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: J50Ttj72qEpqSFZXKfUdz2JFBREUP+SXniJwAbmmHUo= Subject key identifier: 4C:68:9C:80:69:34:74:78:C9:72:7F:B3:1E:C3:12:7B:BA:45:E2:B6 Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 0A2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 0A1B Signing time: Sat 24 Jan 2026 19:16:43 +0000 Manifest this update: Sat 24 Jan 2026 19:16:43 +0000 Manifest next update: Sat 31 Jan 2026 19:16:43 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: HNgDbcyVzYN8fZXF2H7so0nR/sd772Ml9kZA4lpxdb4=) 2: 49484A22DDBE11F0A59AB1524A6F56BC.roa (hash: MTPFNjVRIFfamyxT5rxM+L/QRwsJoQt0tdhl/bAA/SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2604 (0xa2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Jan 24 19:16:43 2026 GMT Not After : Jan 31 19:16:43 2026 GMT Subject: CN=69751a9b-2d18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:71:5c:fe:65:0c:d8:49:4e:86:29:9d:ae:e6: 67:e3:06:d4:0f:31:c0:7e:59:d9:dc:b5:fb:79:b5: 9d:dd:fc:c4:1e:47:3c:c3:8c:69:ac:b8:3a:0d:50: db:26:5b:71:14:dc:5c:ea:af:b6:78:7f:71:27:b7: 61:f5:ff:50:f5:81:f8:83:59:d7:6d:6c:e5:bf:e3: 51:d4:f7:b3:ca:70:28:33:02:5b:8f:2b:ab:9b:d7: 73:e4:07:bf:bb:d4:de:34:67:5c:65:bf:26:da:f9: 3f:e5:c2:fd:f1:d1:8e:bf:6e:91:1f:3b:9a:15:80: ab:58:14:c7:f6:c4:d4:a1:10:da:3d:3c:68:b5:95: ac:61:fe:90:60:56:31:85:7c:73:57:f9:b1:4a:82: 8a:99:ab:42:12:c6:ea:a0:50:89:e6:96:75:5a:9f: 14:76:11:c1:6a:1d:20:71:c5:2e:c5:d2:f6:ba:d5: 07:03:f4:11:a8:62:94:ff:66:88:e2:6f:10:f0:f6: a8:42:9f:d5:2a:f9:84:ad:39:b1:a2:28:55:9a:81: a8:0c:7b:b5:fe:be:45:8a:e2:0e:f4:84:07:26:91: cb:ef:5e:72:26:25:56:5b:40:c2:14:a9:a0:ab:d5: 80:33:6e:7c:3a:b2:70:26:e2:f3:11:0b:8c:50:9d: f9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:68:9C:80:69:34:74:78:C9:72:7F:B3:1E:C3:12:7B:BA:45:E2:B6 X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:84:a7:d5:dd:de:df:46:ae:a1:e7:96:af:ba:6c:57:34:5a: b6:bd:4e:77:2e:0f:36:95:fa:e8:a3:59:33:f8:cd:fc:aa:57: c6:3c:18:ca:c1:a1:25:d6:1c:3e:27:9c:42:c4:24:0a:54:9f: 8e:af:33:23:da:67:7b:bd:3b:cf:e8:57:9b:91:7b:fb:24:c6: 92:4f:be:7f:81:fe:e0:bd:11:f2:16:bb:9e:bd:08:3b:9a:5b: c9:02:41:47:8f:5b:05:2e:ac:00:ce:2c:99:25:82:1c:54:bc: f1:92:86:71:99:53:88:42:25:66:06:43:94:5c:bb:dd:49:6c: 61:10:31:42:f8:75:07:22:a4:7f:d4:92:07:87:58:d0:af:0f: 41:df:9b:ec:cf:48:f9:02:a0:04:6b:36:2d:93:90:3a:af:e5: 4a:36:5d:f5:6c:da:d8:82:3b:14:a9:f6:b3:73:e7:dc:78:f3: c4:a6:29:a4:5d:cd:1b:1c:82:d1:d8:66:87:10:01:42:87:89: 6f:43:76:be:54:de:30:e8:42:fb:0d:d8:6d:99:89:b8:96:bf: 5f:a2:c0:86:8b:0b:85:1e:47:13:40:a1:0b:a9:67:74:d4:1e: ea:3b:01:53:09:c9:ee:37:94:ec:81:69:86:45:57:13:51:c2: a7:10:e4:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjYwMTI0MTkxNjQzWhcNMjYwMTMxMTkxNjQzWjAYMRYwFAYD VQQDDA02OTc1MWE5Yi0yZDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnFc/mUM2ElOhimdruZn4wbUDzHAflnZ3LX7ebWd3fzEHkc8w4xprLg6DVDb JltxFNxc6q+2eH9xJ7dh9f9Q9YH4g1nXbWzlv+NR1PezynAoMwJbjyurm9dz5Ae/ u9TeNGdcZb8m2vk/5cL98dGOv26RHzuaFYCrWBTH9sTUoRDaPTxotZWsYf6QYFYx hXxzV/mxSoKKmatCEsbqoFCJ5pZ1Wp8UdhHBah0gccUuxdL2utUHA/QRqGKU/2aI 4m8Q8PaoQp/VKvmErTmxoihVmoGoDHu1/r5FiuIO9IQHJpHL715yJiVWW0DCFKmg q9WAM258OrJwJuLzEQuMUJ354wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExonIBp NHR4yXJ/sx7DEnu6ReK2MB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkhKfV3d7fRq6h55avumxXNFq2vU53Lg82lfroo1kz+M38qlfGPBjK waEl1hw+J5xCxCQKVJ+OrzMj2md7vTvP6FebkXv7JMaST75/gf7gvRHyFruevQg7 mlvJAkFHj1sFLqwAziyZJYIcVLzxkoZxmVOIQiVmBkOUXLvdSWxhEDFC+HUHIqR/ 1JIHh1jQrw9B35vsz0j5AqAEazYtk5A6r+VKNl31bNrYgjsUqfazc+fcePPEpimk Xc0bHILR2GaHEAFCh4lvQ3a+VN4w6EL7DdhtmYm4lr9fosCGiwuFHkcTQKELqWd0 1B7qOwFTCcnuN5TsgWmGRVcTUcKnEOQi -----END CERTIFICATE-----Generated at Sun Jan 25 04:37:52 2026 by rpki-client