This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: Ym8fS7nIph5tMbbwy7iMS4awpispQHj8/Jr/+swDEQQ= Subject key identifier: AD:5E:F1:C0:95:05:18:06:0E:28:97:E5:B3:9A:99:45:69:7B:26:B8 Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 0885 Signing time: Sat 24 Jan 2026 19:57:17 +0000 Manifest this update: Sat 24 Jan 2026 19:57:17 +0000 Manifest next update: Sat 31 Jan 2026 19:57:17 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: 7b2UbiMuvLgniChtXRSN+FIiS/f9G+5I5n3520ou3t4=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Jan 24 19:57:17 2026 GMT Not After : Jan 31 19:57:17 2026 GMT Subject: CN=6975241d-3bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:97:0f:03:be:5c:a7:66:7e:fe:42:84:c1:c7: b9:38:63:da:9e:73:30:f6:18:02:60:39:93:7b:30: cf:9a:33:d9:1b:46:67:4c:43:e9:0f:1d:5b:7b:d0: 4f:d2:ac:b4:2f:a8:a6:2c:a3:f9:66:36:20:1e:bb: 1e:73:40:c9:2a:7c:33:90:0c:5b:eb:95:c1:af:3c: 4b:c4:7b:58:67:e8:ce:00:a4:c4:f4:83:c4:cc:2e: 17:5c:fd:fb:d8:7c:43:a6:36:a6:7e:6c:af:34:c4: 3a:c7:db:14:64:6b:01:aa:60:1f:d9:06:3b:c3:a5: a6:82:2a:33:d7:1b:4f:86:6d:a3:ed:e3:8b:e2:f3: 30:06:65:9a:f8:92:12:32:20:67:cc:72:5b:5c:9d: 6a:89:91:34:90:28:4d:82:0f:e2:1d:50:db:5d:2b: 95:0b:3b:d5:92:d1:a9:54:34:65:0e:9f:e5:01:81: b6:44:2b:c7:01:ce:48:8c:2d:88:d8:b9:33:7c:c4: 13:67:8a:a2:58:ec:5c:23:63:31:46:5e:76:dc:d6: c7:12:9b:03:92:d5:48:c4:2a:08:1a:4e:33:14:a4: 6a:b7:29:4c:e9:f1:09:7c:6f:09:2b:12:67:0f:22: 55:10:20:5a:bc:1a:71:de:ac:0f:2b:bc:1e:3f:dc: a6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5E:F1:C0:95:05:18:06:0E:28:97:E5:B3:9A:99:45:69:7B:26:B8 X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:07:03:54:a2:b6:89:7c:fa:59:18:e8:3e:f2:a4:cb:15:89: ee:3e:67:88:3f:20:a3:e0:2a:1d:d6:73:c0:82:1d:16:15:66: 05:c8:f9:32:0a:7e:74:cc:5b:38:71:42:e8:e0:c4:59:b0:2b: db:89:95:b7:7e:83:0e:b6:76:33:9d:2f:87:c8:8f:6f:97:27: 58:c4:36:75:8a:5c:76:86:7c:87:b4:a1:84:ba:44:8c:48:69: bc:d2:5e:c6:40:6d:60:cf:9d:f2:88:5a:04:50:e2:63:0d:24: 6d:dd:14:5a:82:b2:a7:cb:c2:11:f2:16:18:ae:b9:10:16:ed: 82:9e:44:2f:c9:48:57:e8:eb:86:cd:b8:95:e6:4e:59:2f:79: 58:ba:2a:88:f3:61:5c:cb:8e:09:f2:0c:99:e5:eb:23:49:9e: 4e:31:1c:24:53:c0:42:9a:a6:aa:fa:57:12:fe:df:da:d4:b7: bb:28:eb:aa:43:5b:9c:92:86:d7:58:e7:32:f2:5c:24:f0:85: ea:ae:7c:74:61:cc:80:43:53:7f:a3:66:0b:b8:fb:95:a3:92: fc:32:90:19:33:57:61:db:6d:d9:13:89:13:fe:56:b9:9c:89: 22:f5:a6:62:b9:d3:66:09:ea:22:bb:c3:dd:70:0b:6a:18:42: 09:27:84:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjYwMTI0MTk1NzE3WhcNMjYwMTMxMTk1NzE3WjAYMRYwFAYD VQQDDA02OTc1MjQxZC0zYmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJcPA75cp2Z+/kKEwce5OGPannMw9hgCYDmTezDPmjPZG0ZnTEPpDx1be9BP 0qy0L6imLKP5ZjYgHrsec0DJKnwzkAxb65XBrzxLxHtYZ+jOAKTE9IPEzC4XXP37 2HxDpjamfmyvNMQ6x9sUZGsBqmAf2QY7w6Wmgioz1xtPhm2j7eOL4vMwBmWa+JIS MiBnzHJbXJ1qiZE0kChNgg/iHVDbXSuVCzvVktGpVDRlDp/lAYG2RCvHAc5IjC2I 2LkzfMQTZ4qiWOxcI2MxRl523NbHEpsDktVIxCoIGk4zFKRqtylM6fEJfG8JKxJn DyJVECBavBpx3qwPK7weP9ymxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1e8cCV BRgGDiiX5bOamUVpeya4MB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiBwNUoraJfPpZGOg+8qTLFYnuPmeIPyCj4Cod1nPAgh0WFWYFyPky Cn50zFs4cULo4MRZsCvbiZW3foMOtnYznS+HyI9vlydYxDZ1ilx2hnyHtKGEukSM SGm80l7GQG1gz53yiFoEUOJjDSRt3RRagrKny8IR8hYYrrkQFu2CnkQvyUhX6OuG zbiV5k5ZL3lYuiqI82Fcy44J8gyZ5esjSZ5OMRwkU8BCmqaq+lcS/t/a1Le7KOuq Q1uckobXWOcy8lwk8IXqrnx0YcyAQ1N/o2YLuPuVo5L8MpAZM1dh223ZE4kT/la5 nIki9aZiudNmCeoiu8PdcAtqGEIJJ4RE -----END CERTIFICATE-----Generated at Sun Jan 25 06:11:54 2026 by rpki-client