This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: NkcMn44krUpQZiza/ngVakff+1VQmuxA7M5nc+Zjipc= Subject key identifier: 18:B9:90:2E:2C:A9:4A:E1:AB:58:B9:E1:5D:86:09:5E:6C:AF:EB:CC Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: D4 Signing time: Sun 25 Jan 2026 04:55:11 +0000 Manifest this update: Sun 25 Jan 2026 04:55:10 +0000 Manifest next update: Sun 01 Feb 2026 04:55:10 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: RsnpDjZcGxB9oG6dJ6cTsYuBwev3h5rHrwgaA+VXZic=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: nae7I/KEW+0m3zT4me5Qc5I3irrgd5B22dbuBfqdUCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Jan 25 04:55:10 2026 GMT Not After : Feb 1 04:55:10 2026 GMT Subject: CN=6975a22f-b58a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c5:2a:98:18:9e:2d:c1:0c:8a:c6:6b:96:73: a5:0a:81:38:e3:63:8a:34:a5:8f:0d:5d:ea:e1:11: 54:ab:6e:93:ba:95:1d:15:99:d3:33:ee:1e:92:22: bf:88:5d:2e:26:40:6e:11:27:35:7e:6a:07:eb:82: d0:c5:c3:55:ca:af:34:9d:c1:a6:00:8f:d4:f8:02: 27:64:eb:6f:0d:12:05:5f:9e:36:a6:41:c7:58:5a: 7a:c8:ca:25:e1:f5:1a:16:de:24:14:0e:61:f7:0b: a8:5f:e3:15:8d:5d:05:03:b9:59:54:1d:fd:37:6e: c5:b5:05:0b:ef:5d:89:cd:95:a6:15:13:f8:03:60: 93:3d:ae:8c:bf:77:1d:fa:ad:94:0c:4d:02:96:54: 21:a2:09:eb:97:0b:3e:28:17:36:4b:33:d9:72:d1: d1:ed:29:8b:35:ce:f6:dd:62:2b:0f:c3:0c:91:89: 41:18:7f:09:99:75:8e:32:e1:fa:f2:e6:a8:1b:16: e7:35:1e:e0:14:3f:d0:43:a6:a8:37:4d:40:7b:c6: 3c:43:23:e4:6b:fa:83:d8:44:6c:21:71:bb:78:1b: 90:05:71:b0:74:6f:01:b7:c4:8f:82:38:2d:e6:27: 68:42:40:69:11:c8:31:50:b8:ca:c1:06:e7:49:a6: da:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B9:90:2E:2C:A9:4A:E1:AB:58:B9:E1:5D:86:09:5E:6C:AF:EB:CC X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:b4:62:61:3b:49:76:de:63:57:75:75:9b:ba:00:25:78:15: 28:ec:c1:0e:d8:42:d9:c1:2c:db:4a:a2:fa:97:1f:3b:ec:f1: 7d:08:00:b5:e5:06:04:9c:63:bc:b9:20:a8:5c:8c:6f:4f:82: b7:ef:8b:14:e0:76:59:3a:d6:59:b8:05:2d:3a:46:b6:eb:6a: 69:67:a0:b0:83:73:ec:65:31:62:63:5e:91:45:97:29:e7:b3: b5:87:55:ff:51:27:3c:23:e6:8f:50:ec:5f:af:22:d4:89:56: 3e:94:06:11:cb:20:d0:11:f1:22:cb:74:43:7e:67:e6:a5:71: 34:e0:ab:b4:3e:d8:82:89:f0:a8:33:28:90:fa:f3:6e:89:3e: 41:07:33:3e:9a:b0:a2:f9:2c:96:50:c2:7c:d4:9b:2a:d0:fa: 6c:fb:43:74:a6:e3:19:f7:1e:59:73:99:10:1a:b6:07:7f:2a: 66:b0:b7:a0:bf:a5:b4:40:1f:e2:0e:b8:4e:d0:1d:7a:a3:c2: 4a:36:88:be:52:57:f0:9b:de:0b:dd:a2:30:97:37:66:80:e9: 74:95:f5:ce:22:42:50:2a:4f:c9:20:ef:b5:26:97:27:53:a1: d0:af:86:62:2d:c8:08:98:d7:9e:b1:c2:56:f4:60:8c:72:30: f3:37:46:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNjExMTAvBgNVBAUTKDY0RDJCM0Q2NUE1QzZDQ0U0RDA4RDc4RkZFREIyODU2 QjY0MUQ2QTMwHhcNMjYwMTI1MDQ1NTEwWhcNMjYwMjAxMDQ1NTEwWjAYMRYwFAYD VQQDDA02OTc1YTIyZi1iNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8UqmBieLcEMisZrlnOlCoE442OKNKWPDV3q4RFUq26TupUdFZnTM+4ekiK/ iF0uJkBuESc1fmoH64LQxcNVyq80ncGmAI/U+AInZOtvDRIFX542pkHHWFp6yMol 4fUaFt4kFA5h9wuoX+MVjV0FA7lZVB39N27FtQUL712JzZWmFRP4A2CTPa6Mv3cd +q2UDE0CllQhognrlws+KBc2SzPZctHR7SmLNc723WIrD8MMkYlBGH8JmXWOMuH6 8uaoGxbnNR7gFD/QQ6aoN01Ae8Y8QyPka/qD2ERsIXG7eBuQBXGwdG8Bt8SPgjgt 5idoQkBpEcgxULjKwQbnSabaAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBi5kC4s qUrhq1i54V2GCV5sr+vMMB8GA1UdIwQYMBaAFGTSs9ZaXGzOTQjXj/7bKFa2Qdaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM2MS80NDZCRDdBMkI2 QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JNNU5DTmVQX3Rzb1ZyWkIx cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkM2MS80NDZCRDdBMkI2QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JN NU5DTmVQX3Rzb1ZyWkIxcU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBtGJhO0l23mNXdXWbugAleBUo7MEO2ELZwSzbSqL6lx877PF9CAC1 5QYEnGO8uSCoXIxvT4K374sU4HZZOtZZuAUtOka262ppZ6Cwg3PsZTFiY16RRZcp 57O1h1X/USc8I+aPUOxfryLUiVY+lAYRyyDQEfEiy3RDfmfmpXE04Ku0PtiCifCo MyiQ+vNuiT5BBzM+mrCi+SyWUMJ81Jsq0Pps+0N0puMZ9x5Zc5kQGrYHfypmsLeg v6W0QB/iDrhO0B16o8JKNoi+Ulfwm94L3aIwlzdmgOl0lfXOIkJQKk/JIO+1Jpcn U6HQr4ZiLcgImNeescJW9GCMcjDzN0ZC -----END CERTIFICATE-----Generated at Sun Jan 25 23:40:10 2026 by rpki-client