This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: GXDyMTqGJMKaXZbk2pY09zwS6LlmOpuYWLSldwNHApk= Subject key identifier: 98:6A:30:EA:87:79:D7:FA:A3:01:37:79:3D:BF:44:23:FF:FA:37:2A Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2DB9 Signing time: Sat 24 Jan 2026 16:11:12 +0000 Manifest this update: Sat 24 Jan 2026 16:11:12 +0000 Manifest next update: Sat 31 Jan 2026 16:11:12 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: i2q0OCMQ7bPRyJ2O7+8HBn15L2ZF48EtnxJoA4QGWBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Jan 24 16:11:12 2026 GMT Not After : Jan 31 16:11:12 2026 GMT Subject: CN=6974ef20-e936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:84:c4:87:1b:a9:71:19:8d:bc:c1:c8:e8: 69:a3:dc:aa:26:af:6a:4a:94:4c:9f:aa:6f:f1:d7: fa:fb:39:ed:51:61:88:77:60:49:e5:c0:07:53:93: 6c:f4:7d:14:db:a0:c4:53:5d:62:08:e5:de:60:02: d8:b3:b5:a4:c9:99:4b:b9:1c:ea:23:ee:9b:71:af: 85:e6:ec:53:6c:ac:e2:c6:f1:63:a5:f2:bd:a6:dd: f1:f2:45:11:cf:ff:c3:9f:cd:c3:4b:5e:f2:1b:8f: e5:1f:8a:61:f6:be:f5:b2:3c:60:6f:e2:ef:96:3c: fa:e3:36:6b:9a:24:87:ec:ce:99:20:2b:23:6a:73: da:2e:2a:31:0e:a6:57:71:fb:13:a0:d4:23:13:12: 40:ff:7f:19:98:23:0f:bf:f2:d6:d1:7a:2b:b3:a6: a0:4b:0a:04:ac:b0:66:a0:72:7a:f7:ed:5f:6e:39: 5e:68:ff:44:07:e6:dd:5b:1d:8d:7a:ca:dc:ef:3f: 09:ff:e1:4d:bf:45:f4:83:c1:50:6e:69:3b:b8:99: 32:63:4f:c5:0f:fd:64:c1:fa:f6:23:d7:7d:c8:fc: f4:04:38:0f:58:c6:3f:0f:42:b2:f8:16:d9:06:76: 1b:f4:e3:a8:b6:d8:34:0b:39:20:43:19:b9:0e:d6: 7b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6A:30:EA:87:79:D7:FA:A3:01:37:79:3D:BF:44:23:FF:FA:37:2A X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:53:3d:d8:d5:d7:24:61:48:4d:c9:a9:2f:d3:2d:be:93:ce: 83:ff:86:ba:58:90:ae:36:dd:62:80:aa:35:27:0d:36:1d:06: ae:31:5b:2f:1d:27:6f:c3:35:6f:91:ee:62:75:57:de:78:1e: e3:f7:89:c2:34:6d:7e:11:00:8a:e3:01:ff:f2:01:08:ba:f9: d3:e3:9c:1c:8f:a6:c7:fd:95:bd:01:9e:d3:02:41:3b:06:fe: af:26:40:81:79:55:29:73:43:e7:6b:fb:40:a8:50:c1:1e:34: 82:63:3d:01:3d:42:28:25:20:01:a4:d9:11:7b:20:e7:55:df: 23:65:f3:10:16:c0:40:15:ca:cd:54:ba:b9:c6:cf:cd:cd:0a: ef:17:15:30:e4:c5:dd:01:8d:a0:1f:40:34:54:4f:6e:8e:b1: f8:9d:6e:db:95:e3:72:0d:ce:88:88:41:9f:16:41:87:54:f7: 24:a7:84:49:85:bb:5e:3f:db:bf:0e:73:3f:ed:17:05:e4:d3: 5d:a7:27:34:09:6b:91:4b:45:36:0f:aa:9d:36:f9:17:68:33: ea:a1:de:09:9b:ad:3e:fa:eb:41:da:0e:6b:93:86:8e:c3:a7: 94:a6:40:ef:81:89:64:07:1d:10:36:b5:db:2b:6d:e2:3b:2a: be:a6:3d:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjYwMTI0MTYxMTEyWhcNMjYwMTMxMTYxMTEyWjAYMRYwFAYD VQQDDA02OTc0ZWYyMC1lOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcuExIcbqXEZjbzByOhpo9yqJq9qSpRMn6pv8df6+zntUWGId2BJ5cAHU5Ns 9H0U26DEU11iCOXeYALYs7WkyZlLuRzqI+6bca+F5uxTbKzixvFjpfK9pt3x8kUR z//Dn83DS17yG4/lH4ph9r71sjxgb+Lvljz64zZrmiSH7M6ZICsjanPaLioxDqZX cfsToNQjExJA/38ZmCMPv/LW0Xors6agSwoErLBmoHJ69+1fbjleaP9EB+bdWx2N esrc7z8J/+FNv0X0g8FQbmk7uJkyY0/FD/1kwfr2I9d9yPz0BDgPWMY/D0Ky+BbZ BnYb9OOottg0CzkgQxm5DtZ7pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhqMOqH edf6owE3eT2/RCP/+jcqMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgUz3Y1dckYUhNyakv0y2+k86D/4a6WJCuNt1igKo1Jw02HQauMVsv HSdvwzVvke5idVfeeB7j94nCNG1+EQCK4wH/8gEIuvnT45wcj6bH/ZW9AZ7TAkE7 Bv6vJkCBeVUpc0Pna/tAqFDBHjSCYz0BPUIoJSABpNkReyDnVd8jZfMQFsBAFcrN VLq5xs/NzQrvFxUw5MXdAY2gH0A0VE9ujrH4nW7bleNyDc6IiEGfFkGHVPckp4RJ hbteP9u/DnM/7RcF5NNdpyc0CWuRS0U2D6qdNvkXaDPqod4Jm60++utB2g5rk4aO w6eUpkDvgYlkBx0QNrXbK23iOyq+pj2m -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:39 2026 by rpki-client