This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: KhLKmABn7oiskvfqNdjik3WgU8AlrpxjX3l2deTkHTc= Subject key identifier: BA:4B:BE:12:BF:EF:39:F5:66:2D:BD:B2:BD:22:E5:E0:4B:FF:2E:84 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: D5 Signing time: Sun 25 Jan 2026 04:58:15 +0000 Manifest this update: Sun 25 Jan 2026 04:58:14 +0000 Manifest next update: Sun 01 Feb 2026 04:58:14 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: RNvh0+MZbBsrRZ9HFw+ITHPn0FEgZctEzTDz33BvZTw=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: d+YMDhO3s7LHfQoIYFn1Zc+4TdSQTJryf2fvTzdJLEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Jan 25 04:58:14 2026 GMT Not After : Feb 1 04:58:14 2026 GMT Subject: CN=6975a2e7-7db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:39:af:f7:61:8b:0f:b1:d9:c9:27:df:3f:4f: 29:42:05:7f:6d:87:4e:9c:f1:d1:c9:d9:95:c5:b0: d1:4e:67:1f:9c:d9:fc:25:cf:0c:ff:3d:37:95:84: a6:96:92:c2:3f:7c:a1:6f:31:85:ca:7d:f1:e6:d0: e5:37:aa:6e:f5:27:6f:58:69:55:60:c8:2d:fc:5c: 45:7d:00:86:dc:ab:2e:ae:91:73:a9:51:b0:f1:0a: 68:b7:51:99:58:80:74:02:8e:bb:31:46:de:0d:db: 2c:96:fb:f0:21:8d:c6:a3:e4:a3:f0:29:28:15:6d: 57:7f:5c:33:46:f6:65:33:9f:c1:0c:ae:0e:23:b9: 01:2e:6d:3c:4d:ab:89:db:0b:dc:0f:3c:3e:d2:14: f4:ee:6a:7a:82:a7:b3:65:9a:13:a6:85:01:74:46: 4d:4f:21:68:69:72:14:83:20:cc:07:e7:56:9c:71: 50:07:0c:0f:5f:7d:b9:e0:ae:fb:63:2a:ba:7c:27: 03:89:d0:0c:a1:88:51:1e:43:2a:b5:e5:6e:69:73: 55:d5:45:32:0e:c8:17:e6:a7:ac:b5:8b:d5:7a:66: c3:49:33:47:0a:c8:64:e7:fa:37:ec:e2:70:fc:fa: c3:9e:ee:8a:42:bf:ed:43:2a:45:59:e2:9c:0a:da: f5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4B:BE:12:BF:EF:39:F5:66:2D:BD:B2:BD:22:E5:E0:4B:FF:2E:84 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:96:e0:b6:1a:80:f0:1f:46:aa:a5:e3:d3:9e:a5:fe:79:ed: 6b:cc:27:39:63:8d:c1:34:d3:e1:45:35:65:6f:64:36:b9:4d: c2:5d:d8:ad:7a:1d:69:cb:45:08:bd:48:7f:2e:6e:78:1a:d7: 05:a1:d4:87:b3:00:96:35:fd:97:9d:20:9f:f3:0e:51:df:bc: 6e:16:95:27:c0:b4:b6:db:60:7d:5d:38:3e:a2:93:31:86:50: 61:61:a3:34:1c:11:63:56:eb:d8:c5:69:27:f4:0a:68:eb:11: e6:02:89:33:52:5b:b9:97:8c:6d:fb:8a:aa:e4:ba:be:4a:0c: 3e:9d:99:0f:81:0f:83:69:0c:66:3f:5b:46:17:76:ed:3c:c4: a9:fd:0a:cc:a3:0a:13:9c:0d:4e:44:b3:c1:a6:99:06:4d:61: ce:e1:18:27:8c:a0:d8:31:38:73:ab:f0:ab:4b:49:44:f3:c3: 94:8b:b6:e9:21:c0:7d:0f:75:43:22:df:b4:c2:3b:99:b4:44: 81:7b:b2:01:3d:31:b0:32:f2:4e:5d:fd:f1:ef:14:ff:a6:6a: 7d:db:a9:87:6a:3d:f4:ca:7a:b3:61:f3:cf:83:39:06:1f:0f: 21:ab:6c:3e:56:fa:19:1c:88:00:16:fa:e9:e4:38:c7:7d:f3: de:51:4c:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjYwMTI1MDQ1ODE0WhcNMjYwMjAxMDQ1ODE0WjAYMRYwFAYD VQQDDA02OTc1YTJlNy03ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jmv92GLD7HZySffP08pQgV/bYdOnPHRydmVxbDRTmcfnNn8Jc8M/z03lYSm lpLCP3yhbzGFyn3x5tDlN6pu9SdvWGlVYMgt/FxFfQCG3KsurpFzqVGw8Qpot1GZ WIB0Ao67MUbeDdsslvvwIY3Go+Sj8CkoFW1Xf1wzRvZlM5/BDK4OI7kBLm08TauJ 2wvcDzw+0hT07mp6gqezZZoTpoUBdEZNTyFoaXIUgyDMB+dWnHFQBwwPX3254K77 Yyq6fCcDidAMoYhRHkMqteVuaXNV1UUyDsgX5qestYvVembDSTNHCshk5/o37OJw /PrDnu6KQr/tQypFWeKcCtr1CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpLvhK/ 7zn1Zi29sr0i5eBL/y6EMB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQluC2GoDwH0aqpePTnqX+ee1rzCc5Y43BNNPhRTVlb2Q2uU3CXdit eh1py0UIvUh/Lm54GtcFodSHswCWNf2XnSCf8w5R37xuFpUnwLS222B9XTg+opMx hlBhYaM0HBFjVuvYxWkn9Apo6xHmAokzUlu5l4xt+4qq5Lq+Sgw+nZkPgQ+DaQxm P1tGF3btPMSp/QrMowoTnA1ORLPBppkGTWHO4RgnjKDYMThzq/CrS0lE88OUi7bp IcB9D3VDIt+0wjuZtESBe7IBPTGwMvJOXf3x7xT/pmp926mHaj30ynqzYfPPgzkG Hw8hq2w+VvoZHIgAFvrp5DjHffPeUUxr -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:32 2026 by rpki-client