This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: x/xAcTt6IXM0vhbmHrCXlhoqyNNaoHLyPSRZdKBf72Y= Subject key identifier: 4C:69:1D:24:3E:B3:EB:F8:E7:2E:8D:96:64:C6:B4:5E:99:BC:94:97 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 0968 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 0957 Signing time: Sat 24 Jan 2026 19:34:47 +0000 Manifest this update: Sat 24 Jan 2026 19:34:46 +0000 Manifest next update: Sat 31 Jan 2026 19:34:46 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: ixzE40Yv9OBo+KAzoKsDaffirzxiBlEeIDX1QDiaFDA=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: 7Rz4+k6mAxaMGjURB8/55D4QBQngSJ+avXX3hTaAO80=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: gtW0T63Z+cyhIr7vbr9l7KyLrM/pqhz2h7OhpzuAs3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2408 (0x968) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Jan 24 19:34:46 2026 GMT Not After : Jan 31 19:34:46 2026 GMT Subject: CN=69751ed6-ddbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:66:5a:cf:e9:6c:e1:c6:db:57:fb:59:13: 16:47:92:08:d9:bc:3f:d8:75:d9:54:a8:92:ff:7d: 1a:d0:df:71:24:48:23:60:c8:66:08:e1:4c:2a:be: 32:66:b8:1f:f6:f9:14:9d:2e:5b:f0:27:c4:69:94: 05:81:0d:04:00:d1:04:be:7f:01:fd:82:94:e9:43: 2d:c1:73:31:de:8b:df:98:c3:79:e3:5c:7d:aa:25: 19:08:38:9d:bf:1b:0b:39:63:61:13:d5:95:59:a1: d7:ec:e3:ff:f3:9f:e2:d3:91:46:21:37:3b:3d:83: 2a:cf:f8:ef:7f:3a:9c:8b:31:0d:9f:a5:06:be:5e: 04:d0:39:6b:6b:d8:9d:e3:95:33:8d:95:46:b9:e7: 56:f5:08:fa:d3:80:01:eb:b4:6c:cc:9a:3b:e0:52: 2c:af:b6:12:93:27:41:45:ac:f8:c6:a7:16:a5:d0: e7:4e:76:bf:bb:34:9e:21:b5:4d:57:a2:ee:95:3e: 13:61:29:65:1c:22:75:ee:23:d8:9e:a7:2c:3a:1a: 36:b0:b2:55:de:47:14:66:df:bc:b3:50:36:3c:fb: a9:ec:a8:df:71:d1:6b:9f:0d:d3:12:dd:e0:72:f6: 22:28:6d:8c:3c:92:bd:19:4d:fd:b9:b6:a5:44:d2: a1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:69:1D:24:3E:B3:EB:F8:E7:2E:8D:96:64:C6:B4:5E:99:BC:94:97 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:81:3a:3a:1a:4d:1c:0a:9f:8c:2c:26:fb:69:31:64:e0:cf: 8b:c9:d8:c8:ea:6a:56:5e:de:fc:df:76:c8:58:7f:04:0e:8f: 94:54:53:24:97:6c:d5:4d:9e:cc:9c:3d:cd:72:43:37:d4:76: 53:6d:dc:c1:34:e1:84:71:1a:43:91:03:03:14:49:72:9c:14: 3c:5e:a5:5b:17:5c:b0:8f:83:9c:65:1e:59:7d:6f:54:cf:5c: 85:7f:00:c7:7a:ad:db:41:07:59:ae:c6:bb:9d:35:6d:03:c4: bf:84:44:9c:e7:05:78:e2:1f:39:6d:46:b8:1f:22:c2:fa:dd: d9:c5:68:2d:4d:8c:da:01:0e:3d:f2:fd:05:c2:e6:cf:a6:0a: 5b:d5:e2:7d:a6:a3:8c:a0:55:03:5b:d9:76:a8:58:1c:39:97: e6:37:2c:c1:5c:80:49:42:ee:52:8e:2d:35:f7:9f:73:98:3c: 70:1f:d3:ad:f9:34:26:0a:e3:fd:3b:f5:4a:1f:2e:31:af:31: 95:34:f6:1c:d8:c6:c9:ce:00:88:7c:4e:2f:ea:30:ce:c0:43: 18:f6:2e:aa:57:9e:6b:31:ac:8a:ff:3a:e4:f5:07:a0:36:3e: 9f:9e:d8:05:41:b5:a4:4e:96:f4:bf:54:62:30:06:98:f5:31: a8:0a:95:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjYwMTI0MTkzNDQ2WhcNMjYwMTMxMTkzNDQ2WjAYMRYwFAYD VQQDDA02OTc1MWVkNi1kZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDdmWs/pbOHG21f7WRMWR5II2bw/2HXZVKiS/30a0N9xJEgjYMhmCOFMKr4y Zrgf9vkUnS5b8CfEaZQFgQ0EANEEvn8B/YKU6UMtwXMx3ovfmMN541x9qiUZCDid vxsLOWNhE9WVWaHX7OP/85/i05FGITc7PYMqz/jvfzqcizENn6UGvl4E0Dlra9id 45UzjZVGuedW9Qj604AB67RszJo74FIsr7YSkydBRaz4xqcWpdDnTna/uzSeIbVN V6LulT4TYSllHCJ17iPYnqcsOho2sLJV3kcUZt+8s1A2PPup7KjfcdFrnw3TEt3g cvYiKG2MPJK9GU39ubalRNKhGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExpHSQ+ s+v45y6NlmTGtF6ZvJSXMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhgTo6Gk0cCp+MLCb7aTFk4M+LydjI6mpWXt7833bIWH8EDo+UVFMk l2zVTZ7MnD3NckM31HZTbdzBNOGEcRpDkQMDFElynBQ8XqVbF1ywj4OcZR5ZfW9U z1yFfwDHeq3bQQdZrsa7nTVtA8S/hESc5wV44h85bUa4HyLC+t3ZxWgtTYzaAQ49 8v0FwubPpgpb1eJ9pqOMoFUDW9l2qFgcOZfmNyzBXIBJQu5Sji01959zmDxwH9Ot +TQmCuP9O/VKHy4xrzGVNPYc2MbJzgCIfE4v6jDOwEMY9i6qV55rMayK/zrk9Qeg Nj6fntgFQbWkTpb0v1RiMAaY9TGoCpUm -----END CERTIFICATE-----Generated at Sun Jan 25 17:21:36 2026 by rpki-client