This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: O2ZER9WCJM06Goduyfirj4IEQBGAU2bzA84kjzaAgiE= Subject key identifier: B2:5A:78:FF:10:F5:11:F0:25:75:04:CD:5B:04:87:93:FA:48:C6:9E Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01D0 Signing time: Sun 25 Jan 2026 02:10:00 +0000 Manifest this update: Sun 25 Jan 2026 02:10:00 +0000 Manifest next update: Sun 01 Feb 2026 02:10:00 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: tBIPbf2lh0ipIYyB6Xlp9cdunfgTuwbUznUEH26KTco=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Jan 25 02:10:00 2026 GMT Not After : Feb 1 02:10:00 2026 GMT Subject: CN=69757b78-6c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:11:f3:2f:50:8b:a1:cb:85:0b:0b:b8:e2: c8:e5:80:2e:18:f6:28:48:05:65:65:1a:76:ee:24: f7:1a:5c:46:1b:87:0b:35:b4:22:10:cc:02:5c:75: 2b:f0:1b:29:63:0f:eb:77:70:02:0d:5c:65:48:70: 1e:22:26:88:b8:8e:6b:a4:0a:a7:8b:e5:8c:d4:37: 09:3b:92:5d:cc:f7:91:6f:f9:b9:2c:62:9e:86:80: 95:17:c5:43:1f:0e:8c:84:80:8c:89:05:4f:4a:3f: 38:b6:21:14:35:f0:9c:3e:41:fb:66:67:ed:ba:52: 37:01:3c:54:f8:ad:72:62:dc:c7:c3:56:55:23:f8: a3:9f:90:10:7b:bc:95:7f:27:af:f7:80:32:dc:62: e7:e9:48:00:ee:fc:a7:2e:e2:02:68:85:68:a5:f1: 6a:f9:ef:0f:b8:df:f0:c4:d3:06:ce:52:b5:7f:00: b5:73:50:73:9e:10:c3:70:39:ec:b4:04:e5:92:1c: 33:0e:5b:24:a9:a4:3e:0c:25:ea:df:d2:aa:6b:62: 9b:dc:f0:56:fe:bb:41:89:e3:40:1c:35:ca:ee:f8: 9f:87:85:c0:d1:39:23:61:b6:d0:51:9e:e9:b4:1f: 37:52:e8:df:ed:13:8a:14:7b:78:24:64:06:c0:cc: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5A:78:FF:10:F5:11:F0:25:75:04:CD:5B:04:87:93:FA:48:C6:9E X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:15:fb:3a:50:57:04:ca:2e:7e:08:54:d5:32:70:fb:04:a7: ac:2c:43:fa:f7:66:b2:1a:cc:01:f1:54:bd:4d:fe:fa:30:91: e3:b2:52:11:cc:6f:87:3a:c4:ad:15:5b:79:dd:4d:78:e3:4c: 45:51:73:3d:e7:4b:1c:bc:7b:94:f9:e5:ba:bb:c7:7c:33:a2: f2:79:ff:bf:2f:84:ae:ac:15:a0:63:b1:67:4c:8c:fa:2f:c7: 8c:d2:b4:e0:69:9e:e3:db:5a:0d:c7:ba:6a:4f:4f:26:49:ec: 09:5b:ec:5d:71:2c:07:10:f6:17:00:a9:23:a0:1e:9b:af:84: 53:02:76:8d:f2:b5:ff:21:aa:11:a0:d9:2f:28:3d:ed:f2:04: 4c:e2:e5:69:81:43:86:1f:af:32:41:7c:83:88:f6:46:96:ed: ee:62:f1:c3:c0:72:18:e7:22:85:7a:b6:af:ca:f4:df:d1:a9: 72:37:3f:91:7a:da:2a:18:71:25:7f:3e:89:5f:d7:bb:9f:7b: 5f:84:1e:09:0e:b2:ad:8d:28:a0:69:06:80:d9:94:fd:0d:31: 9f:43:4c:49:3d:29:d5:7f:6c:26:cb:15:ba:d5:dd:f3:85:48: ed:67:40:3d:59:7c:f8:05:09:ef:d5:a7:6a:dd:cd:a6:9e:12: 1b:12:ab:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjYwMTI1MDIxMDAwWhcNMjYwMjAxMDIxMDAwWjAYMRYwFAYD VQQDDA02OTc1N2I3OC02YzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PER8y9Qi6HLhQsLuOLI5YAuGPYoSAVlZRp27iT3GlxGG4cLNbQiEMwCXHUr 8BspYw/rd3ACDVxlSHAeIiaIuI5rpAqni+WM1DcJO5JdzPeRb/m5LGKehoCVF8VD Hw6MhICMiQVPSj84tiEUNfCcPkH7ZmftulI3ATxU+K1yYtzHw1ZVI/ijn5AQe7yV fyev94Ay3GLn6UgA7vynLuICaIVopfFq+e8PuN/wxNMGzlK1fwC1c1BznhDDcDns tATlkhwzDlskqaQ+DCXq39Kqa2Kb3PBW/rtBieNAHDXK7vifh4XA0TkjYbbQUZ7p tB83Uujf7ROKFHt4JGQGwMxAZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJaeP8Q 9RHwJXUEzVsEh5P6SMaeMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Ffs6UFcEyi5+CFTVMnD7BKesLEP692ayGswB8VS9Tf76MJHjslIR zG+HOsStFVt53U1440xFUXM950scvHuU+eW6u8d8M6Lyef+/L4SurBWgY7FnTIz6 L8eM0rTgaZ7j21oNx7pqT08mSewJW+xdcSwHEPYXAKkjoB6br4RTAnaN8rX/IaoR oNkvKD3t8gRM4uVpgUOGH68yQXyDiPZGlu3uYvHDwHIY5yKFeravyvTf0alyNz+R etoqGHElfz6JX9e7n3tfhB4JDrKtjSigaQaA2ZT9DTGfQ0xJPSnVf2wmyxW61d3z hUjtZ0A9WXz4BQnv1adq3c2mnhIbEqsb -----END CERTIFICATE-----Generated at Sun Jan 25 12:21:38 2026 by rpki-client