This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: mDRLGqQN6vRMCyf+I0mQL2Ow4OwWaohZoGKNxQJ/WZw= Subject key identifier: 54:40:0B:D3:42:84:CB:0A:CC:24:37:86:2F:71:73:F9:96:9A:4C:D0 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0EC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0EB4 Signing time: Sat 24 Jan 2026 17:21:29 +0000 Manifest this update: Sat 24 Jan 2026 17:21:28 +0000 Manifest next update: Sat 31 Jan 2026 17:21:28 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: 5G48/WpuHjHapRh65OL0dTvSWE9G/VkWVyesURX7HWk=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3777 (0xec1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Jan 24 17:21:28 2026 GMT Not After : Jan 31 17:21:28 2026 GMT Subject: CN=6974ff99-3108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:df:2b:6a:0d:b1:a3:fb:dc:bb:08:d1:06: 91:4c:bb:22:2a:d7:f0:af:5f:6d:4a:06:51:33:e6: 25:1a:f9:eb:f4:66:9f:94:db:48:d9:09:1e:bc:a3: 9b:3b:1a:29:71:e8:48:e4:f3:ab:cc:2b:08:e5:92: 02:3a:b3:11:9a:35:0d:a6:fc:59:11:37:23:a9:08: 71:93:33:83:5e:21:af:95:26:01:7a:d4:75:06:09: 4c:ef:ee:72:73:04:56:2e:92:ee:c5:27:23:96:11: 6c:ee:6a:15:3f:85:06:57:8d:07:d6:ba:74:9a:a2: b9:7e:1c:78:fb:fd:48:4c:08:19:cf:bd:8c:3b:a2: 4f:b9:a0:bb:bd:e7:dc:a9:e4:39:21:f1:04:42:3d: 85:48:a2:b0:fd:0d:fa:85:8c:21:e5:fa:82:78:4c: 58:e1:1e:50:97:7a:89:89:6d:96:63:e1:67:bd:3e: 72:89:e6:d5:eb:af:0e:90:d2:42:13:9b:66:64:5b: dc:47:bd:86:80:81:64:49:00:a0:97:dc:f0:bf:9e: 16:4c:ee:e4:aa:4f:62:75:c6:72:b5:61:8c:f2:fd: 94:71:eb:f2:a4:6b:e0:6c:d2:f4:07:86:73:52:42: e7:ca:2f:1a:12:46:d4:04:37:b7:d2:b4:e3:7d:85: 39:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:40:0B:D3:42:84:CB:0A:CC:24:37:86:2F:71:73:F9:96:9A:4C:D0 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:60:9f:fb:5c:53:3f:ee:05:e5:b9:f4:f6:8e:97:36:12:50: 3c:3e:ec:1d:18:57:cf:43:9c:87:c3:32:42:72:b5:d0:cb:83: 76:41:5f:4b:ca:fa:15:cd:32:4c:59:66:95:a2:2f:b0:d0:71: 6f:e6:5e:4c:e0:02:8d:63:25:01:2c:af:94:ff:ba:69:83:82: d9:ae:1f:f2:64:01:c3:cb:e9:d9:d2:0e:b6:a7:71:17:38:1c: 59:79:3c:82:d8:68:17:19:14:fd:3a:21:63:57:61:e1:7b:da: 53:f8:92:62:bb:9e:3e:f8:a7:ef:05:02:c1:0c:5c:5e:d7:45: 9d:7e:d3:81:fa:45:be:c0:7f:d9:71:aa:97:cf:bc:9a:e2:43: 43:00:a8:28:2a:e5:be:b7:94:3c:8c:ef:06:c5:8b:e4:2f:b1: 4b:fc:bc:eb:4c:3d:3b:9a:48:9a:c3:7b:c7:64:e6:4f:45:7d: c5:13:4c:90:79:5a:73:2e:a0:24:9e:9d:b2:05:d2:e8:88:52: 33:c4:66:e8:6c:39:9a:c5:1c:15:6b:34:b8:8f:d9:0b:d9:d1: bb:85:ed:6f:e4:77:f8:99:e6:a2:76:db:f7:2b:2a:e1:d3:46: 3a:fb:5c:c2:f6:9b:cc:1f:16:96:61:46:45:50:19:d5:b5:9f: db:5e:ae:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjYwMTI0MTcyMTI4WhcNMjYwMTMxMTcyMTI4WjAYMRYwFAYD VQQDDA02OTc0ZmY5OS0zMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumPfK2oNsaP73LsI0QaRTLsiKtfwr19tSgZRM+YlGvnr9GaflNtI2QkevKOb OxopcehI5POrzCsI5ZICOrMRmjUNpvxZETcjqQhxkzODXiGvlSYBetR1BglM7+5y cwRWLpLuxScjlhFs7moVP4UGV40H1rp0mqK5fhx4+/1ITAgZz72MO6JPuaC7vefc qeQ5IfEEQj2FSKKw/Q36hYwh5fqCeExY4R5Ql3qJiW2WY+FnvT5yiebV668OkNJC E5tmZFvcR72GgIFkSQCgl9zwv54WTO7kqk9idcZytWGM8v2UcevypGvgbNL0B4Zz UkLnyi8aEkbUBDe30rTjfYU5vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRAC9NC hMsKzCQ3hi9xc/mWmkzQMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQYJ/7XFM/7gXlufT2jpc2ElA8PuwdGFfPQ5yHwzJCcrXQy4N2QV9L yvoVzTJMWWaVoi+w0HFv5l5M4AKNYyUBLK+U/7ppg4LZrh/yZAHDy+nZ0g62p3EX OBxZeTyC2GgXGRT9OiFjV2Hhe9pT+JJiu54++KfvBQLBDFxe10WdftOB+kW+wH/Z caqXz7ya4kNDAKgoKuW+t5Q8jO8GxYvkL7FL/LzrTD07mkiaw3vHZOZPRX3FE0yQ eVpzLqAknp2yBdLoiFIzxGbobDmaxRwVazS4j9kL2dG7he1v5Hf4meaidtv3Kyrh 00Y6+1zC9pvMHxaWYUZFUBnVtZ/bXq4Q -----END CERTIFICATE-----Generated at Sun Jan 25 06:11:51 2026 by rpki-client