This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: itHGWhXyYFMLsRYkSrUTYA0PbVnBPQgpH1EQ4Bq5d3M= Subject key identifier: 8B:78:51:31:85:A8:AE:CB:1E:46:36:6E:2D:F0:33:73:00:27:E0:81 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2582 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2582 Signing time: Sat 24 Jan 2026 14:30:44 +0000 Manifest this update: Sat 24 Jan 2026 14:30:43 +0000 Manifest next update: Sat 31 Jan 2026 14:30:43 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: UUw3CjgHXlD9lMd0eBv0NAhYzS9iM0jngE5wcOGe1aM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9602 (0x2582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jan 24 14:30:43 2026 GMT Not After : Jan 31 14:30:43 2026 GMT Subject: CN=6974d794-00e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:ea:95:2a:f6:8b:6f:aa:20:78:6f:47:0a: aa:68:3f:f1:4e:c8:2c:36:23:04:f5:78:bd:c5:8e: b6:e4:2e:c8:fa:28:70:ae:07:77:80:13:bc:65:4c: 14:c5:0f:c9:cc:f1:b6:15:75:74:1d:2c:a1:83:5d: 72:a5:85:e2:3c:b6:73:b2:31:d3:0e:8f:aa:3b:8e: a3:6f:d2:2a:23:2e:50:fc:45:e1:14:1b:46:44:eb: d5:db:db:1d:57:20:ad:a7:8d:f1:28:10:37:38:98: e9:35:bb:07:83:8c:39:43:8b:7f:23:82:03:22:1f: e8:4d:1f:0a:c1:e5:7f:67:55:ef:4e:67:fd:d1:25: 13:45:9e:ad:c9:33:95:48:44:72:4b:88:2a:6c:ca: e7:6f:ae:0c:63:c0:ec:26:04:4d:39:ca:66:89:65: 05:9a:73:e5:e5:3b:1f:37:ec:0b:ce:73:9f:8c:b0: f5:68:9a:e3:48:d1:c3:3e:0c:5c:53:e2:80:85:75: cb:19:63:27:12:5f:77:c8:f8:48:43:72:35:1d:a6: d5:a9:93:cb:07:8b:87:00:f0:87:87:3f:f8:64:1c: f1:65:0d:aa:cf:c4:f0:9e:da:ed:64:cd:b4:35:19: 73:08:8d:7d:eb:92:e3:67:d3:67:e2:f5:e7:89:48: 2b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:78:51:31:85:A8:AE:CB:1E:46:36:6E:2D:F0:33:73:00:27:E0:81 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:95:0b:a3:fe:0c:d3:51:0c:8f:5e:dc:e3:0d:d0:9b:f5:d8: 5a:61:48:fc:af:c3:ba:30:6b:71:44:18:cf:e6:4b:98:0f:8f: 26:5f:0a:de:d0:e4:c7:58:4b:63:45:41:d5:42:28:20:fd:92: a6:68:ff:2b:46:4c:ba:a2:4f:af:10:6b:1d:c9:31:85:37:41: df:c2:fb:5a:82:7e:58:9c:8c:24:fb:09:96:4d:e5:be:03:c5: 25:3d:d8:36:94:f5:be:4f:71:9b:95:28:1d:ac:f7:74:17:55: 44:3d:3a:df:0c:33:e2:5b:79:ca:45:13:7a:20:f9:89:d5:c3: 5b:74:77:27:e2:9b:42:7c:e0:a9:fd:e3:a0:3b:14:f1:da:6f: 9d:d3:0d:d9:eb:8a:c3:62:93:5f:b6:54:9b:d8:f9:13:b8:ef: af:40:ee:da:32:a1:92:4c:20:2a:6b:e7:f2:33:04:fd:c6:b8: 9b:a1:57:29:75:af:51:ad:61:5a:76:d3:95:75:8b:52:eb:c2: 8c:8c:85:89:87:03:b3:56:9c:24:ca:f6:95:c6:d4:b7:5c:7e: f8:ea:06:e9:1e:38:98:eb:9c:94:82:92:6d:10:46:94:2a:26: 85:c5:4c:f0:a8:66:73:40:2f:61:23:57:5a:bd:70:3f:d1:23: 7f:c5:c4:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwMTI0MTQzMDQzWhcNMjYwMTMxMTQzMDQzWjAYMRYwFAYD VQQDDA02OTc0ZDc5NC0wMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkzqlSr2i2+qIHhvRwqqaD/xTsgsNiME9Xi9xY625C7I+ihwrgd3gBO8ZUwU xQ/JzPG2FXV0HSyhg11ypYXiPLZzsjHTDo+qO46jb9IqIy5Q/EXhFBtGROvV29sd VyCtp43xKBA3OJjpNbsHg4w5Q4t/I4IDIh/oTR8KweV/Z1XvTmf90SUTRZ6tyTOV SERyS4gqbMrnb64MY8DsJgRNOcpmiWUFmnPl5TsfN+wLznOfjLD1aJrjSNHDPgxc U+KAhXXLGWMnEl93yPhIQ3I1HabVqZPLB4uHAPCHhz/4ZBzxZQ2qz8TwntrtZM20 NRlzCI1965LjZ9Nn4vXniUgrHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIt4UTGF qK7LHkY2bi3wM3MAJ+CBMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAplQuj/gzTUQyPXtzjDdCb9dhaYUj8r8O6MGtxRBjP5kuYD48mXwre 0OTHWEtjRUHVQigg/ZKmaP8rRky6ok+vEGsdyTGFN0Hfwvtagn5YnIwk+wmWTeW+ A8UlPdg2lPW+T3GblSgdrPd0F1VEPTrfDDPiW3nKRRN6IPmJ1cNbdHcn4ptCfOCp /eOgOxTx2m+d0w3Z64rDYpNftlSb2PkTuO+vQO7aMqGSTCAqa+fyMwT9xriboVcp da9RrWFadtOVdYtS68KMjIWJhwOzVpwkyvaVxtS3XH746gbpHjiY65yUgpJtEEaU KiaFxUzwqGZzQC9hI1davXA/0SN/xcSh -----END CERTIFICATE-----Generated at Sun Jan 25 19:04:04 2026 by rpki-client