This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft File: IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft (raw, json) Hash identifier: Xqx75uouLDtSBRV4nABbsaTyF+GFhvYHVaKOXqWLUwE= Subject key identifier: 8E:27:E5:BB:61:0C:12:A7:C0:92:7D:08:4B:0B:1F:8A:89:D4:C2:20 Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 08E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft Manifest number: 08A2 Signing time: Sat 24 Jan 2026 20:02:05 +0000 Manifest this update: Sat 24 Jan 2026 20:02:04 +0000 Manifest next update: Sat 31 Jan 2026 20:02:04 +0000 Files and hashes: 1: IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl (hash: nuKGuX8jHs950UyPCMdEYNajvWFDksYQvgloKomzi/I=) 2: C8C64A4AED4D11EA895BC037C4F9AE02.roa (hash: DYR7hTrI+N8bTdN4wmisSUlD2zvzUkj32q6n8M3PxAo=) 3: 94EC9E22BEF311F0A6F14E84C4F9AE02.roa (hash: YVtST4vMUYXukdvRwVNc/YgxZwNEf2C/1tkRXtme8vo=) 4: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (hash: 4dlrQ4m4GuqrlwQC8/clahOIGGqO7yOvH8v7wChtYp8=) 5: F8E5E56ABA3311F097F3633AC4F9AE02.roa (hash: NIZyKmCCRM9ECKj6ukBywbK33SdgVkLHapOUhLqLTmM=) 6: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (hash: ifnttSikDir1yImvAFVipioa7skYYnhRDTcV+wTBhrA=) 7: 02BCB71ABF0411F097C9AB09C4F9AE02.roa (hash: d+m4wtrot8DpRxhdQ6Ribq/qs/RNt/ooPnFIs7N6xZg=) 8: 46D8E036BED211F093382E71C4F9AE02.roa (hash: eINr8bBJLexDH0uRI9+njk6x3SxCqw4nJv16fxVj6+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Jan 24 20:02:04 2026 GMT Not After : Jan 31 20:02:04 2026 GMT Subject: CN=6975253c-5341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:39:fa:78:50:7a:30:11:bc:ae:f6:a3:83:81: 2c:17:35:67:2e:33:e9:86:e0:a9:b4:68:e3:a3:aa: 52:f3:4b:ae:1c:f2:14:60:e7:80:46:f7:11:09:05: 90:b9:8c:c6:37:92:d8:5d:76:aa:ec:fc:7e:ee:ed: 25:49:ec:c2:9b:cc:ac:21:7b:07:39:0e:9b:7d:cd: aa:96:ac:9f:20:f6:2d:97:48:2a:66:41:f2:59:6d: db:15:aa:59:d7:d1:37:11:b9:c1:a8:0e:78:6c:b3: e8:48:4e:e2:39:32:7e:76:d9:09:ae:40:0b:2a:f4: be:d4:af:84:45:0f:c1:e1:74:52:c2:ba:4d:b1:b5: d2:d6:10:7e:cb:2a:50:66:23:2e:9f:0a:d3:2b:d3: 89:56:b7:7c:41:5c:e0:91:c8:70:8f:24:ed:35:cf: ee:63:f4:8d:44:55:5d:b3:53:a3:48:79:af:ba:d7: ae:f8:d1:51:8d:fe:32:12:db:0d:87:ce:3b:58:e0: 57:c3:48:1f:da:a2:21:9d:7f:6a:72:9e:56:3d:b2: 06:3c:df:b5:8f:73:ab:49:39:14:1a:50:eb:4f:52: 3d:17:8a:1d:c0:66:7e:0a:58:94:dd:2e:f0:5e:77: 9a:fb:d4:e6:bb:8b:f1:97:ea:91:9a:3c:0a:ad:4d: c3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:27:E5:BB:61:0C:12:A7:C0:92:7D:08:4B:0B:1F:8A:89:D4:C2:20 X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:ca:b0:d2:5c:14:22:60:b5:15:87:42:ea:a3:50:2b:b3:1e: 2f:01:aa:c4:04:9b:a9:6a:d2:74:71:c9:d5:af:53:8d:96:4f: 92:aa:2a:4e:6b:bc:63:65:d5:36:d8:0e:f2:81:0d:8b:da:31: dc:ce:f2:a4:71:5e:b1:44:f2:b5:0c:78:5b:59:84:48:40:4b: f7:f8:49:f2:7b:40:c5:72:65:27:72:76:e2:56:f2:bb:73:8b: 4b:e8:da:7d:2c:88:5a:e6:31:d3:e0:2c:e7:39:e7:33:02:7f: 56:02:4f:db:4f:16:e1:24:c5:2e:75:2d:7e:6e:cc:9d:80:6e: c6:db:4f:7c:c0:cf:d2:1c:39:8c:b4:93:ea:a0:80:fb:85:25: 42:7d:ce:c2:b1:bd:b5:1d:56:5b:5c:52:85:84:10:82:10:43: 4f:e6:fe:17:0b:a3:6e:62:f3:21:21:7d:0b:09:cb:15:a5:bf: e3:ac:a0:50:46:8a:2e:88:00:a7:40:88:95:10:be:30:ad:72: 50:7e:bd:0c:12:f2:2a:25:48:9c:eb:48:8d:98:06:38:9e:66: bd:58:42:10:a3:9f:90:ec:f6:c9:06:54:e3:01:07:f0:bb:1e: 5a:38:b9:35:87:fd:73:30:1b:0a:9b:d4:1d:a2:41:3d:1c:83: 53:e3:4c:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjYwMTI0MjAwMjA0WhcNMjYwMTMxMjAwMjA0WjAYMRYwFAYD VQQDDA02OTc1MjUzYy01MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTn6eFB6MBG8rvajg4EsFzVnLjPphuCptGjjo6pS80uuHPIUYOeARvcRCQWQ uYzGN5LYXXaq7Px+7u0lSezCm8ysIXsHOQ6bfc2qlqyfIPYtl0gqZkHyWW3bFapZ 19E3EbnBqA54bLPoSE7iOTJ+dtkJrkALKvS+1K+ERQ/B4XRSwrpNsbXS1hB+yypQ ZiMunwrTK9OJVrd8QVzgkchwjyTtNc/uY/SNRFVds1OjSHmvuteu+NFRjf4yEtsN h847WOBXw0gf2qIhnX9qcp5WPbIGPN+1j3OrSTkUGlDrT1I9F4odwGZ+CliU3S7w Xnea+9Tmu4vxl+qRmjwKrU3DzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4n5bth DBKnwJJ9CEsLH4qJ1MIgMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZEOS84MERGREVDMEU1REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0 MnloWWhyMXhISGloVGZVU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATyrDSXBQiYLUVh0Lqo1Arsx4vAarEBJupatJ0ccnVr1ONlk+SqipO a7xjZdU22A7ygQ2L2jHczvKkcV6xRPK1DHhbWYRIQEv3+Enye0DFcmUncnbiVvK7 c4tL6Np9LIha5jHT4CznOeczAn9WAk/bTxbhJMUudS1+bsydgG7G2098wM/SHDmM tJPqoID7hSVCfc7Csb21HVZbXFKFhBCCEENP5v4XC6NuYvMhIX0LCcsVpb/jrKBQ RoouiACnQIiVEL4wrXJQfr0MEvIqJUic60iNmAY4nma9WEIQo5+Q7PbJBlTjAQfw ux5aOLk1h/1zMBsKm9QdokE9HINT40yO -----END CERTIFICATE-----Generated at Sun Jan 25 09:34:15 2026 by rpki-client