This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft File: XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft (raw, json) Hash identifier: 7Ib8fPdsSWGzhk6kBfdPujcX2S0uSSKLud3Z3MmlRrg= Subject key identifier: F0:99:43:14:7B:11:91:11:FF:7C:1C:2B:6C:0E:D8:1C:79:EE:59:B9 Authority key identifier: 5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 Certificate issuer: /CN=A91E7B89/serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft Manifest number: 16 Signing time: Sun 25 Jan 2026 06:59:02 +0000 Manifest this update: Sun 25 Jan 2026 06:59:01 +0000 Manifest next update: Sun 01 Feb 2026 06:59:01 +0000 Files and hashes: 1: XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl (hash: /dBCLU0RWX1uU0oRadgDPCHFMKfyqBLiG2gAX2b7Q3E=) 2: 72480DC0D9A111F0989DD75268D3641D.roa (hash: nxYL3Wuobzg2i8iYKqWQVhQYvBYI0L/O9fatJEnTKyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7B89, serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Validity Not Before: Jan 25 06:59:01 2026 GMT Not After : Feb 1 06:59:01 2026 GMT Subject: CN=6975bf36-5c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:01:d5:da:fe:ed:2e:75:41:32:dc:81:da:d4: eb:ff:53:3b:dd:1a:7b:55:1d:8f:be:cf:b0:81:fb: 33:2f:6d:78:4e:e5:e0:52:79:c8:6d:3e:c9:cf:e6: a4:6d:8a:7b:67:4c:36:02:f5:73:bc:7a:a0:18:e6: 87:07:12:66:e3:32:5c:dd:66:77:9e:78:f1:e4:88: 54:1f:91:67:ba:f3:01:5c:c1:fd:da:53:1b:7f:08: 23:f4:b9:96:20:e4:d6:92:48:92:7d:68:c4:d8:0d: cb:43:26:89:00:0d:35:f5:e7:81:6b:50:9b:ce:e8: 90:93:87:63:13:46:5e:c4:1d:6c:eb:1d:e8:38:bf: 9b:cc:e1:f5:80:02:c9:8e:cc:6d:ce:66:34:f9:a8: e5:c5:e2:64:8e:41:51:cd:99:b0:bd:cb:20:89:bd: 18:bf:af:0a:de:87:de:00:99:a6:6a:95:82:c5:53: c1:ef:2f:a1:fc:3a:c8:2c:35:65:85:3b:02:d8:b1: 76:c3:e9:52:9b:e9:fa:aa:84:18:07:b9:4a:c3:1c: fc:d8:01:81:71:1d:f5:6c:0e:97:9d:65:2e:84:a3: b0:3d:56:5a:bc:e2:f0:99:1d:26:53:51:53:22:55: d2:3a:e4:bb:fd:8e:ff:c9:81:a2:0c:eb:15:5d:0b: 30:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:99:43:14:7B:11:91:11:FF:7C:1C:2B:6C:0E:D8:1C:79:EE:59:B9 X509v3 Authority Key Identifier: keyid:5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ca:e0:53:2f:28:ca:f2:c9:e0:1c:3f:6a:23:92:e8:d8:fd: 79:6b:f5:f2:95:8d:2f:5a:bd:a5:aa:5e:9d:88:b1:59:0b:45: 3d:69:44:a2:ab:bb:ce:72:ba:f2:0d:4c:ed:47:c1:f2:98:f9: 2a:72:ae:39:de:1b:a2:da:bc:ec:c5:a2:27:fe:39:b1:6f:d2: 92:7a:bf:a7:ec:5d:a8:ac:d7:b3:42:38:84:17:8d:e2:11:a5: f3:b5:b0:50:af:07:c7:81:ff:3f:6c:2b:16:58:26:f7:f6:4e: 17:99:b2:72:13:82:fa:e5:0a:9a:be:07:9a:7a:c4:7b:b3:50: cf:32:6e:6a:b4:b9:69:ef:57:87:1c:44:95:04:1b:1e:c8:cf: 71:c8:96:00:98:d5:62:e8:09:79:8c:f5:7e:45:8a:2f:be:59: 05:e7:38:b6:cd:9d:9f:0d:c4:50:b0:0e:1c:84:94:47:69:ef: c7:c8:08:c0:4c:da:dc:bb:b4:4f:45:96:03:44:e8:32:0d:b6: a6:01:56:b4:26:59:e2:b3:70:29:db:09:e8:f3:b4:0d:b5:1e: b0:3d:5f:28:c7:5a:84:89:5e:4f:a7:cd:78:a2:31:92:f0:11: 12:5e:15:87:c3:3c:4f:bc:14:0a:b2:48:96:10:3d:f5:97:95: fa:fa:16:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0I4OTExMC8GA1UEBRMoNUU3ODY0MkIwM0NDMzdFMjZGRDQxNUU3RDc2MUJFNDg0 NzM2QzU2NjAeFw0yNjAxMjUwNjU5MDFaFw0yNjAyMDEwNjU5MDFaMBgxFjAUBgNV BAMMDTY5NzViZjM2LTVjM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzAdXa/u0udUEy3IHa1Ov/UzvdGntVHY++z7CB+zMvbXhO5eBSechtPsnP5qRt intnTDYC9XO8eqAY5ocHEmbjMlzdZneeePHkiFQfkWe68wFcwf3aUxt/CCP0uZYg 5NaSSJJ9aMTYDctDJokADTX154FrUJvO6JCTh2MTRl7EHWzrHeg4v5vM4fWAAsmO zG3OZjT5qOXF4mSOQVHNmbC9yyCJvRi/rwreh94AmaZqlYLFU8HvL6H8OsgsNWWF OwLYsXbD6VKb6fqqhBgHuUrDHPzYAYFxHfVsDpedZS6Eo7A9Vlq84vCZHSZTUVMi VdI65Lv9jv/JgaIM6xVdCzBVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8JlDFHsR kRH/fBwrbA7YHHnuWbkwHwYDVR0jBBgwFoAUXnhkKwPMN+Jv1BXn12G+SEc2xWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3Qjg5LzQxQkU0RjQ0RDlB MDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1KdjFCWG4xMkctU0VjMnhX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5oa0t3UE1OLUp2MUJYbjEyRy1TRWMyeFdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 Qjg5LzQxQkU0RjQ0RDlBMDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1K djFCWG4xMkctU0VjMnhXWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFzK4FMvKMryyeAcP2ojkujY/Xlr9fKVjS9avaWqXp2IsVkLRT1pRKKr u85yuvINTO1HwfKY+SpyrjneG6LavOzFoif+ObFv0pJ6v6fsXais17NCOIQXjeIR pfO1sFCvB8eB/z9sKxZYJvf2TheZsnITgvrlCpq+B5p6xHuzUM8ybmq0uWnvV4cc RJUEGx7Iz3HIlgCY1WLoCXmM9X5Fii++WQXnOLbNnZ8NxFCwDhyElEdp78fICMBM 2ty7tE9FlgNE6DINtqYBVrQmWeKzcCnbCejztA21HrA9XyjHWoSJXk+nzXiiMZLw ERJeFYfDPE+8FAqySJYQPfWXlfr6FnM= -----END CERTIFICATE-----Generated at Sun Jan 25 12:46:30 2026 by rpki-client