This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: el6TgVsPkVgqC1HagUySMSh6qaRqYNNoB9r7iq6DZxk= Subject key identifier: DA:F4:25:F7:1B:94:E6:73:3D:7F:FF:2C:D8:34:F1:64:D3:39:FC:1A Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 0225 Signing time: Fri 23 Jan 2026 01:16:27 +0000 Manifest this update: Fri 23 Jan 2026 01:16:27 +0000 Manifest next update: Fri 30 Jan 2026 01:16:27 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: NxfKBn0IMS1iCMFFqdcfkEGK09aguIKwYGbMi0ozwkg=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: 4xZDEw3FRBWFRylijPU5JOuTB9KaN3fmrPD43soo8sQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 01:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Jan 23 01:16:27 2026 GMT Not After : Jan 30 01:16:27 2026 GMT Subject: CN=6972cbeb-707e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:5d:fc:33:8f:74:e3:33:ea:7d:c4:6b:a7: 08:17:0b:97:78:2f:30:56:d4:ed:07:bc:d2:d8:09: e1:df:16:2c:db:6b:5e:2b:a1:bc:20:01:49:e7:36: 24:b5:9a:92:f1:3a:58:32:b8:2e:a1:fe:fc:56:0f: 82:4e:e7:bc:aa:38:c0:de:ce:dd:d8:b6:27:ec:9b: 41:50:4b:38:5a:9b:f7:75:2e:cc:ca:75:1d:15:d1: a0:56:e5:b8:0d:4a:c1:4f:4e:5d:c6:54:1a:61:6d: 44:4d:34:82:84:72:4a:92:a0:2e:83:63:4a:08:48: 2b:45:50:d7:50:dd:c4:51:ab:53:68:f9:34:18:d4: e2:8b:9b:35:3d:b9:fc:45:b4:f8:58:fd:0c:24:82: bd:6e:9e:0f:c3:a8:c8:7d:d4:09:70:1b:51:0f:f6: 29:81:1b:5e:60:58:54:06:e0:d1:47:31:d1:8b:7c: 58:53:32:2d:f3:9c:2b:71:0e:01:df:a1:0c:03:5e: ac:d2:63:bf:1f:5e:8a:92:9b:8f:43:2d:e2:61:dc: 1d:74:0a:25:df:49:4a:f6:8f:8e:d7:dc:10:4c:2b: 71:c5:c3:f8:51:af:8e:03:50:1a:79:2e:41:f3:c2: af:80:59:f7:37:31:d3:aa:00:1c:d7:73:97:74:5d: d5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F4:25:F7:1B:94:E6:73:3D:7F:FF:2C:D8:34:F1:64:D3:39:FC:1A X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:7a:96:f3:94:72:1c:66:58:d7:4d:c7:11:86:34:95:2d:ec: 18:d7:7e:28:97:df:cc:87:ea:7d:e1:00:5e:14:98:bf:0b:f0: e0:ec:da:80:a6:b5:f2:34:6e:b6:92:39:88:5f:d1:0c:79:9d: 9a:e4:7a:b6:ed:bf:f7:c2:e1:5b:79:50:53:27:1b:5a:18:54: d7:12:ac:13:54:a0:a7:84:10:09:37:c9:7c:5e:ee:91:a2:ab: 13:09:6a:3c:83:51:ba:45:e4:01:e5:ad:44:7f:5c:79:0a:79: ae:32:75:aa:3f:80:75:27:0b:55:c9:33:7f:df:ba:24:14:12: e3:c4:40:7e:fb:c6:f0:d7:64:ae:f4:a3:e6:4f:9f:bb:5b:b5: 77:79:d8:9f:56:10:6a:85:22:cf:fd:bf:a1:2d:ee:d3:9a:19: 74:81:d0:5e:ab:71:15:02:64:9d:e6:e3:e0:f7:7c:d3:7c:fc: 3d:7a:c2:67:9a:9e:33:1d:21:ed:86:a0:2e:5d:34:99:35:e7: 3d:16:66:ca:8b:97:9d:0f:2c:f1:74:91:51:0d:de:3f:b1:6b: d1:7e:2a:14:3f:8a:d0:18:3d:43:c4:97:91:7d:a6:32:6f:5a: e2:c2:1a:7f:a3:14:5c:18:d0:68:39:43:81:d5:e2:87:c0:80: 1e:e9:f8:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjYwMTIzMDExNjI3WhcNMjYwMTMwMDExNjI3WjAYMRYwFAYD VQQDDA02OTcyY2JlYi03MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRNd/DOPdOMz6n3Ea6cIFwuXeC8wVtTtB7zS2Anh3xYs22teK6G8IAFJ5zYk tZqS8TpYMrguof78Vg+CTue8qjjA3s7d2LYn7JtBUEs4Wpv3dS7MynUdFdGgVuW4 DUrBT05dxlQaYW1ETTSChHJKkqAug2NKCEgrRVDXUN3EUatTaPk0GNTii5s1Pbn8 RbT4WP0MJIK9bp4Pw6jIfdQJcBtRD/YpgRteYFhUBuDRRzHRi3xYUzIt85wrcQ4B 36EMA16s0mO/H16KkpuPQy3iYdwddAol30lK9o+O19wQTCtxxcP4Ua+OA1AaeS5B 88KvgFn3NzHTqgAc13OXdF3VMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNr0Jfcb lOZzPX//LNg08WTTOfwaMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClepbzlHIcZljXTccRhjSVLewY134ol9/Mh+p94QBeFJi/C/Dg7NqA prXyNG62kjmIX9EMeZ2a5Hq27b/3wuFbeVBTJxtaGFTXEqwTVKCnhBAJN8l8Xu6R oqsTCWo8g1G6ReQB5a1Ef1x5CnmuMnWqP4B1JwtVyTN/37okFBLjxEB++8bw12Su 9KPmT5+7W7V3edifVhBqhSLP/b+hLe7Tmhl0gdBeq3EVAmSd5uPg93zTfPw9esJn mp4zHSHthqAuXTSZNec9FmbKi5edDyzxdJFRDd4/sWvRfioUP4rQGD1DxJeRfaYy b1riwhp/oxRcGNBoOUOB1eKHwIAe6fgj -----END CERTIFICATE-----Generated at Sun Jan 25 02:49:55 2026 by rpki-client