This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft File: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft (raw, json) Hash identifier: jMVqNOYeYR2B1vxgP96LfinScRxomL7LDII+9YhZdI4= Subject key identifier: 07:8E:87:60:10:52:36:DF:E4:79:E1:1E:50:76:4E:51:8D:50:CE:68 Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 3544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft Manifest number: 351B Signing time: Sat 24 Jan 2026 14:59:11 +0000 Manifest this update: Sat 24 Jan 2026 14:59:10 +0000 Manifest next update: Sat 31 Jan 2026 14:59:10 +0000 Files and hashes: 1: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl (hash: 63RbEq6dp6KWB5hjy2btmiKdehlq3oVqa1SmnI+MZok=) 2: 32DFCCDCEB8011EAAB806163C4F9AE02.roa (hash: Vy0S41quK2iU71kwrTbOz/KoqscmH6wvDknm9n/QiBc=) 3: 60DA0694D9E111EA82120960C4F9AE02.roa (hash: SQf0F6/ovS4nuhxwCqP0bzz663+tFfshESdr8FqByA0=) 4: 9A4EE834EB8111EA87E2C165C4F9AE02.roa (hash: On/rjCt9+U6JtyKYuk47jkAjsn+YkzbVWBGb7O5oGfQ=) 5: FC75A532DBAC11EA9FF2FA1FC4F9AE02.roa (hash: Krev2+NvsTp5k57xzDaCtVpjuL2qov8uoa3n5krWGr0=) 6: 70B22B22950D11F0ACB76B28C4F9AE02.roa (hash: rEXx1IeVQBnFO7DidP5CAzoHoXBLOcJ2lUWGfIOm15E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13636 (0x3544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8, serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Validity Not Before: Jan 24 14:59:10 2026 GMT Not After : Jan 31 14:59:10 2026 GMT Subject: CN=6974de3f-42ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:00:89:6e:6d:9e:8d:d5:bb:56:17:4a:84:f3: 01:a9:17:ba:da:c3:7d:e5:56:ec:75:d8:ba:cf:a8: ac:d0:39:9e:0e:d8:26:57:73:95:93:e6:8d:b2:e1: 67:de:41:69:05:b2:20:0d:ed:81:ec:a8:bd:c4:1b: 33:5d:77:77:cb:33:b0:0c:41:be:78:33:7c:22:17: e4:e7:8e:ca:25:54:bc:89:7e:21:ba:76:a0:83:c8: 14:12:65:1c:14:3e:b5:88:28:fb:c4:67:9a:d9:96: ba:a5:fc:5c:6a:a6:9e:53:93:13:42:07:89:6f:a1: 41:0e:81:b8:8a:20:71:42:6c:9d:84:09:8e:e9:74: 25:30:ed:4f:88:b2:a5:ba:88:00:13:35:63:52:0c: 47:9d:fb:8b:db:4b:09:05:dd:ae:8d:ab:06:70:ad: 12:35:79:5f:67:89:77:19:1b:4f:4f:f5:b7:7c:00: e8:82:96:4e:e0:00:d7:af:36:d0:68:26:e7:a4:69: b0:a5:11:a1:72:0f:4a:44:6f:34:5f:74:06:9b:39: fe:8d:3d:06:45:c0:96:63:cb:2e:96:3c:f3:0c:e0: 4f:c8:a9:93:b2:c9:ad:cf:dc:4d:ba:04:08:13:fa: 84:11:8f:b9:d4:f3:a5:6c:16:5e:d6:96:94:3e:7a: e7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8E:87:60:10:52:36:DF:E4:79:E1:1E:50:76:4E:51:8D:50:CE:68 X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a5:3a:a2:49:5a:62:39:21:c1:99:ec:ac:92:e6:a4:a5:cc: 6b:c2:9b:4a:e3:58:35:f0:17:26:6a:7e:ea:af:b2:29:6d:16: d6:20:aa:14:99:4e:ff:6f:dd:e1:c2:a3:3c:4f:15:5e:87:f3: af:e2:a7:18:81:bd:d5:f9:d4:3d:1f:a3:ce:01:28:50:da:98: a8:99:46:f7:a8:25:e8:e9:04:04:14:93:5a:0c:0f:a0:97:5e: 5a:01:99:c5:b4:1a:b3:5c:d2:c2:52:93:dd:14:90:63:b0:bb: 39:3c:56:2f:0f:c6:15:1f:28:ea:95:8b:22:92:3f:30:4f:88: ba:c8:66:55:e2:50:9f:e5:6a:08:d4:4b:31:d2:18:13:f5:55: bd:d7:b1:87:a8:99:86:28:1f:e9:1c:37:e0:86:c4:ec:2f:d7: 13:d0:45:93:37:f3:b9:38:09:ca:8d:5f:9d:51:59:fa:14:d5: 42:e1:2c:f3:e3:d0:0c:65:49:fe:dc:56:19:be:d0:90:61:30: 94:99:64:c3:d1:22:1d:fe:33:db:f2:47:2e:e5:d2:a7:dd:6d: 89:66:34:7c:e9:77:f0:c0:b3:fb:70:67:e3:6b:e9:ff:fc:31: ee:f6:42:ab:be:b0:24:3a:96:4f:4e:79:ba:f5:fd:09:20:dc: d8:2e:cd:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjYwMTI0MTQ1OTEwWhcNMjYwMTMxMTQ1OTEwWjAYMRYwFAYD VQQDDA02OTc0ZGUzZi00MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wCJbm2ejdW7VhdKhPMBqRe62sN95Vbsddi6z6is0DmeDtgmV3OVk+aNsuFn 3kFpBbIgDe2B7Ki9xBszXXd3yzOwDEG+eDN8Ihfk547KJVS8iX4hunagg8gUEmUc FD61iCj7xGea2Za6pfxcaqaeU5MTQgeJb6FBDoG4iiBxQmydhAmO6XQlMO1PiLKl uogAEzVjUgxHnfuL20sJBd2ujasGcK0SNXlfZ4l3GRtPT/W3fADogpZO4ADXrzbQ aCbnpGmwpRGhcg9KRG80X3QGmzn+jT0GRcCWY8suljzzDOBPyKmTssmtz9xNugQI E/qEEY+51POlbBZe1paUPnrnawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeOh2AQ Ujbf5HnhHlB2TlGNUM5oMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUVCOC84RTBGMkNCNjFEQTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pL cHFnSHlCUWVPV1MxVWJ1VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlpTqiSVpiOSHBmeyskuakpcxrwptK41g18Bcman7qr7IpbRbWIKoU mU7/b93hwqM8TxVeh/Ov4qcYgb3V+dQ9H6POAShQ2piomUb3qCXo6QQEFJNaDA+g l15aAZnFtBqzXNLCUpPdFJBjsLs5PFYvD8YVHyjqlYsikj8wT4i6yGZV4lCf5WoI 1Esx0hgT9VW917GHqJmGKB/pHDfghsTsL9cT0EWTN/O5OAnKjV+dUVn6FNVC4Szz 49AMZUn+3FYZvtCQYTCUmWTD0SId/jPb8kcu5dKn3W2JZjR86XfwwLP7cGfja+n/ /DHu9kKrvrAkOpZPTnm69f0JINzYLs2h -----END CERTIFICATE-----Generated at Sun Jan 25 10:41:23 2026 by rpki-client