This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: PThSgZy1jitX9dcTdd4m99ZTiVO+/tEosvRT7US7xJQ= Subject key identifier: 66:DE:EA:F9:42:FE:DF:65:AC:33:76:97:0A:6A:03:22:B7:DC:03:F3 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1317 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 4841 Signing time: Sat 24 Jan 2026 14:20:48 +0000 Manifest this update: Sat 24 Jan 2026 14:20:47 +0000 Manifest next update: Sat 31 Jan 2026 14:20:47 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: BRtM4oJw4uUd65x/4G8A4lX9hNWwpKuUgbsi6xk03jE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4887 (0x1317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Jan 24 14:20:47 2026 GMT Not After : Jan 31 14:20:47 2026 GMT Subject: CN=6974d53f-a1dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:52:d5:66:a7:7f:13:07:ea:36:70:eb:2f:9e: 04:d5:28:7e:09:83:26:7f:3a:d4:9d:cc:dd:9c:87: d1:80:db:31:3a:9e:2d:97:69:1d:44:75:6b:bc:42: b6:ef:20:01:81:38:79:ce:91:a6:ca:f3:46:5a:97: e6:fc:c7:60:fd:c6:86:0f:5b:0c:30:ea:e4:e9:b8: 29:4f:fb:06:82:7c:e3:01:92:94:73:10:ed:20:ed: 5d:06:a7:70:c1:af:93:49:f9:d7:7f:6d:81:01:57: 32:48:ff:5f:c9:8c:18:de:29:ec:c9:74:18:6d:db: 5c:9a:f9:08:fc:7e:c7:71:d7:91:00:c4:96:d5:8d: 06:d7:a0:dd:07:29:6e:23:c4:85:09:16:8a:9a:96: 07:1b:e8:d9:49:02:bc:98:3b:3b:56:5d:cb:40:db: 15:c1:02:66:aa:6e:39:b8:24:ed:b9:85:4b:a2:ed: f4:64:c0:ae:94:51:f0:a5:2e:e0:84:31:7e:5c:ca: b1:da:e9:42:77:54:56:d1:85:e7:ab:b8:0a:78:c6: 4f:1d:bd:83:d1:e0:29:fd:06:32:d9:84:01:dc:97: 6e:6a:bc:b2:7f:4e:59:39:46:a5:82:de:3a:ec:dd: 1a:ba:c2:e8:62:4f:51:f3:85:49:47:fe:d2:75:30: 25:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DE:EA:F9:42:FE:DF:65:AC:33:76:97:0A:6A:03:22:B7:DC:03:F3 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:73:a2:6d:75:96:5e:c2:be:77:da:e5:a0:e0:50:77:7b:1f: 77:81:9b:f2:27:60:05:7b:dc:35:6e:96:f9:25:46:f3:f8:c4: 7c:8e:12:47:3a:7e:20:21:dc:0a:fb:3e:17:f5:4a:5d:85:29: 08:7f:ad:16:3b:d1:cf:ab:b8:f5:f0:8a:f3:61:f1:cb:5c:2d: 04:f7:7d:60:47:39:a9:18:7f:69:d6:88:f8:26:75:98:f9:93: b0:e7:58:e8:65:08:9d:54:c7:89:59:1c:97:8a:42:f0:78:5d: 7c:c1:9c:4c:29:56:09:a7:ec:da:ab:97:f7:29:b1:3f:af:21: 26:c3:07:a1:9b:a0:7f:96:c5:9c:49:34:04:f0:80:f4:65:26: 2b:4f:62:19:ff:52:20:b9:ca:a6:c6:ee:55:18:71:77:c7:93: 92:41:05:5d:c5:03:2f:c1:69:da:e2:8f:fb:e9:69:16:bf:4f: e7:4a:eb:32:2b:d1:3f:f3:53:37:27:51:7a:e1:37:a0:da:1c: 9e:ac:9f:ca:d3:a0:78:15:8d:fe:3c:ba:ee:85:69:49:96:cd: da:46:ce:13:ce:55:76:83:84:40:7a:7c:df:be:88:c3:25:7a: 55:60:b9:fa:89:ad:2e:43:40:26:c9:9c:9f:3e:9d:0e:66:01: 06:02:76:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjYwMTI0MTQyMDQ3WhcNMjYwMTMxMTQyMDQ3WjAYMRYwFAYD VQQDDA02OTc0ZDUzZi1hMWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFLVZqd/EwfqNnDrL54E1Sh+CYMmfzrUnczdnIfRgNsxOp4tl2kdRHVrvEK2 7yABgTh5zpGmyvNGWpfm/Mdg/caGD1sMMOrk6bgpT/sGgnzjAZKUcxDtIO1dBqdw wa+TSfnXf22BAVcySP9fyYwY3insyXQYbdtcmvkI/H7HcdeRAMSW1Y0G16DdBylu I8SFCRaKmpYHG+jZSQK8mDs7Vl3LQNsVwQJmqm45uCTtuYVLou30ZMCulFHwpS7g hDF+XMqx2ulCd1RW0YXnq7gKeMZPHb2D0eAp/QYy2YQB3Jduaryyf05ZOUalgt46 7N0ausLoYk9R84VJR/7SdTAlGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbe6vlC /t9lrDN2lwpqAyK33APzMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7c6JtdZZewr532uWg4FB3ex93gZvyJ2AFe9w1bpb5JUbz+MR8jhJH On4gIdwK+z4X9UpdhSkIf60WO9HPq7j18IrzYfHLXC0E931gRzmpGH9p1oj4JnWY +ZOw51joZQidVMeJWRyXikLweF18wZxMKVYJp+zaq5f3KbE/ryEmwwehm6B/lsWc STQE8ID0ZSYrT2IZ/1Igucqmxu5VGHF3x5OSQQVdxQMvwWna4o/76WkWv0/nSusy K9E/81M3J1F64Teg2hyerJ/K06B4FY3+PLruhWlJls3aRs4TzlV2g4RAenzfvojD JXpVYLn6ia0uQ0AmyZyfPp0OZgEGAnZR -----END CERTIFICATE-----Generated at Sun Jan 25 10:35:19 2026 by rpki-client