This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: EaQE6frb+2xCO8aS1uWS0BZ9Iahxph5thow9nFWyc3I= Subject key identifier: 34:7C:B0:08:48:13:2F:39:36:59:A3:C0:CB:5C:06:44:E0:BD:71:0D Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CFD Signing time: Sat 24 Jan 2026 17:44:58 +0000 Manifest this update: Sat 24 Jan 2026 17:44:57 +0000 Manifest next update: Sat 31 Jan 2026 17:44:57 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: isqCOSYKv194OkBmal8RfFxMkp3it/mZgwJXPH1Mdd0=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3332 (0xd04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Jan 24 17:44:57 2026 GMT Not After : Jan 31 17:44:57 2026 GMT Subject: CN=69750519-5e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:78:8a:34:2d:8b:e2:e9:a7:f0:3b:8e:a2:6e: a7:e6:93:d4:90:6e:ff:74:ba:43:f2:b3:e5:5c:ab: ee:14:7e:ee:16:bd:21:d7:2f:1a:31:0a:e7:53:a0: 49:a4:10:6e:02:1c:3a:0b:fc:9b:c8:ad:e2:32:4c: 68:3b:64:f3:d5:c0:ca:0a:e7:d1:a0:d2:14:65:3c: 0f:63:08:81:fb:cf:0c:d3:8c:6c:ec:ca:da:01:47: b1:4b:25:39:82:c4:e5:6a:81:ac:27:c6:06:7f:f5: 89:67:de:b2:48:86:81:21:31:9b:69:02:dc:4e:95: 0c:e5:5a:9a:b8:8a:06:ec:1c:3a:1d:32:04:fe:53: 36:d3:8b:22:fe:bd:d7:c5:96:8a:64:9f:aa:1b:9c: cf:62:0f:b1:53:eb:c3:39:e0:01:40:99:1e:fd:b7: 47:dd:14:9b:40:d0:b7:7a:fa:d0:a1:75:57:bc:ad: be:da:ee:2a:2a:0c:98:3d:80:9d:fa:82:3b:d4:d0: 96:bf:9c:a4:08:72:2b:02:d9:94:35:dd:86:a7:e2: 72:2d:68:fc:21:ee:13:2a:d5:3d:18:ad:56:01:83: 1d:d1:d5:9c:c8:98:9b:68:d6:91:86:b2:f0:01:22: 00:b3:10:67:3f:d4:c8:65:b9:05:4f:42:ce:7a:aa: 7c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7C:B0:08:48:13:2F:39:36:59:A3:C0:CB:5C:06:44:E0:BD:71:0D X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:cc:40:d0:4d:2c:53:12:bd:dc:1e:e9:29:41:15:59:bf:a4: 90:a8:fc:22:49:73:22:e9:44:16:4d:da:11:72:d8:4a:14:37: ae:ab:e8:09:15:38:9c:c4:fd:d1:cf:55:00:dd:1a:ff:91:32: b9:7d:b1:b0:3c:35:b6:1d:3b:99:ae:70:b3:f9:2c:0a:7a:7a: 28:28:f9:ea:4b:44:ae:24:e8:5e:5a:f8:52:11:a8:2c:da:ef: 7f:ae:81:00:4f:62:bc:cb:9d:8d:7d:ee:e6:4f:bd:09:36:76: 63:eb:de:a7:ce:3f:88:8d:67:64:e7:e1:ee:6f:c9:30:36:18: 8c:82:5a:c4:b5:c6:85:29:11:0c:50:d6:18:49:04:98:20:86: 4a:8a:e2:3b:11:ea:e8:74:64:99:d3:e5:49:f2:37:34:1c:e7: 47:7d:da:13:e9:45:46:9f:10:bc:ff:e0:a8:12:36:89:16:fa: b0:3d:14:75:bd:55:84:7c:00:06:5b:f6:e1:ce:08:dd:96:3f: 7c:3b:91:e7:7e:a1:57:27:cc:18:5a:9c:0c:22:76:2d:d8:88: 84:88:0b:06:be:ab:72:d4:bd:c2:e9:b0:0a:19:bc:1f:b4:16: 9c:1f:e5:35:27:39:01:f8:3a:a2:cf:df:1f:6e:d0:00:b6:dd: 93:88:5f:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjYwMTI0MTc0NDU3WhcNMjYwMTMxMTc0NDU3WjAYMRYwFAYD VQQDDA02OTc1MDUxOS01ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHiKNC2L4umn8DuOom6n5pPUkG7/dLpD8rPlXKvuFH7uFr0h1y8aMQrnU6BJ pBBuAhw6C/ybyK3iMkxoO2Tz1cDKCufRoNIUZTwPYwiB+88M04xs7MraAUexSyU5 gsTlaoGsJ8YGf/WJZ96ySIaBITGbaQLcTpUM5VqauIoG7Bw6HTIE/lM204si/r3X xZaKZJ+qG5zPYg+xU+vDOeABQJke/bdH3RSbQNC3evrQoXVXvK2+2u4qKgyYPYCd +oI71NCWv5ykCHIrAtmUNd2Gp+JyLWj8Ie4TKtU9GK1WAYMd0dWcyJibaNaRhrLw ASIAsxBnP9TIZbkFT0LOeqp8dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDR8sAhI Ey85NlmjwMtcBkTgvXENMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhzEDQTSxTEr3cHukpQRVZv6SQqPwiSXMi6UQWTdoRcthKFDeuq+gJ FTicxP3Rz1UA3Rr/kTK5fbGwPDW2HTuZrnCz+SwKenooKPnqS0SuJOheWvhSEags 2u9/roEAT2K8y52Nfe7mT70JNnZj696nzj+IjWdk5+Hub8kwNhiMglrEtcaFKREM UNYYSQSYIIZKiuI7EerodGSZ0+VJ8jc0HOdHfdoT6UVGnxC8/+CoEjaJFvqwPRR1 vVWEfAAGW/bhzgjdlj98O5HnfqFXJ8wYWpwMInYt2IiEiAsGvqty1L3C6bAKGbwf tBacH+U1JzkB+Dqiz98fbtAAtt2TiF/T -----END CERTIFICATE-----Generated at Sun Jan 25 02:49:01 2026 by rpki-client