This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: iaAlR8ra+3eyOUvXJkRSgVOVAS+NN7Ltnq4o01fhoh4= Subject key identifier: F2:B0:8B:D4:8A:D2:08:F5:96:EC:DB:5C:10:23:28:F9:67:21:AA:E9 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0345 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 033F Signing time: Sun 25 Jan 2026 00:11:54 +0000 Manifest this update: Sun 25 Jan 2026 00:11:54 +0000 Manifest next update: Sun 01 Feb 2026 00:11:54 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: eUo+bBk71lE8CWaMQi1VydeR66HK4tgblsD2zT59TwM=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: nZ6WbCIcnJ/FBBpCbBgjvy3HpKuHRhBq1WSGZ+ZBH8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 837 (0x345) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Jan 25 00:11:54 2026 GMT Not After : Feb 1 00:11:54 2026 GMT Subject: CN=69755fca-e534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2a:d5:05:26:ba:9b:6b:88:28:7d:60:5d:7f: 20:c2:18:97:17:d0:7d:9b:c5:26:ee:37:ff:61:cb: 01:6a:61:17:34:73:2c:84:ff:12:26:67:c5:d3:2a: e6:12:20:b0:b4:2a:96:89:a7:02:70:92:21:a1:30: fe:18:c0:9e:01:63:ea:de:f9:19:74:95:3b:52:55: da:01:af:a3:a3:8f:26:e3:27:ab:4d:90:59:ce:10: 5f:15:ce:28:1f:3a:6c:7f:b4:a5:be:dd:bc:56:32: 24:98:a6:3a:c5:0a:8b:b4:db:e5:53:24:fb:2e:fd: 12:41:98:2a:7f:a1:13:0a:b7:72:f8:66:28:71:f9: 71:30:8b:1e:cf:f6:38:8f:56:5f:f9:e1:45:09:f4: 64:04:31:98:75:b6:13:79:19:5d:95:0f:ee:b0:c2: 84:33:8d:3d:e9:4c:3a:b8:20:70:87:b6:1f:ce:ca: d1:86:48:bd:a2:8a:55:1c:65:71:72:8a:85:78:6b: 09:a7:15:5d:ff:fa:24:2a:65:82:84:6f:d6:50:2b: 5f:eb:e7:ba:b5:e4:59:60:b2:1b:81:05:3b:b5:34: 0e:28:53:d6:7b:7b:27:1e:e7:73:49:09:37:fd:d1: 8c:74:7e:cb:6f:d0:52:b1:8f:67:18:a9:8a:87:af: 71:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B0:8B:D4:8A:D2:08:F5:96:EC:DB:5C:10:23:28:F9:67:21:AA:E9 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:bc:5f:60:49:bd:fd:1b:49:55:73:52:5e:93:5e:a5:85:76: b4:cb:2a:29:b0:d1:ea:2e:33:65:44:43:f4:b2:89:d4:82:99: 13:d3:a6:1c:ec:24:48:fe:c3:3e:c0:04:67:26:2f:ef:a0:58: 9c:c6:d9:34:ce:a1:f9:22:64:2e:d3:f5:f9:d9:ad:97:12:4a: 7e:e9:04:8b:c6:76:8c:56:17:7e:95:e9:bd:7f:a0:51:cc:20: 39:62:67:21:26:1d:d6:78:47:df:1b:c8:ad:97:97:b6:fb:6b: ad:70:a8:bf:78:ec:ae:7b:44:e7:0a:3d:ac:cd:dd:d6:10:2f: 7f:7d:be:85:2d:b6:9b:39:51:20:69:fc:84:79:1c:f6:d3:7d: 03:bb:7b:a6:99:a7:1c:21:01:80:17:63:5d:1d:51:bf:8c:b2: 73:98:3b:a2:8f:7f:c3:bb:44:20:3e:29:97:28:7f:d1:b2:70: 45:65:a6:ea:41:7b:09:6f:d9:ca:89:31:74:30:83:6f:f8:d7: e8:78:5d:2b:62:ec:d9:6e:d2:2e:15:04:b5:bb:bc:6e:ec:0e: 33:7e:c4:cb:84:fc:1a:ae:c2:e6:b8:cf:51:13:b8:60:23:cd: 88:35:b3:03:a3:b3:9d:55:da:96:f1:c0:74:0f:7d:19:7c:18: 89:e8:44:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjYwMTI1MDAxMTU0WhcNMjYwMjAxMDAxMTU0WjAYMRYwFAYD VQQDDA02OTc1NWZjYS1lNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyrVBSa6m2uIKH1gXX8gwhiXF9B9m8Um7jf/YcsBamEXNHMshP8SJmfF0yrm EiCwtCqWiacCcJIhoTD+GMCeAWPq3vkZdJU7UlXaAa+jo48m4yerTZBZzhBfFc4o Hzpsf7Slvt28VjIkmKY6xQqLtNvlUyT7Lv0SQZgqf6ETCrdy+GYocflxMIsez/Y4 j1Zf+eFFCfRkBDGYdbYTeRldlQ/usMKEM4096Uw6uCBwh7YfzsrRhki9oopVHGVx coqFeGsJpxVd//okKmWChG/WUCtf6+e6teRZYLIbgQU7tTQOKFPWe3snHudzSQk3 /dGMdH7Lb9BSsY9nGKmKh69xtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKwi9SK 0gj1luzbXBAjKPlnIarpMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFvF9gSb39G0lVc1Jek16lhXa0yyopsNHqLjNlREP0sonUgpkT06Yc 7CRI/sM+wARnJi/voFicxtk0zqH5ImQu0/X52a2XEkp+6QSLxnaMVhd+lem9f6BR zCA5YmchJh3WeEffG8itl5e2+2utcKi/eOyue0TnCj2szd3WEC9/fb6FLbabOVEg afyEeRz2030Du3ummaccIQGAF2NdHVG/jLJzmDuij3/Du0QgPimXKH/RsnBFZabq QXsJb9nKiTF0MINv+NfoeF0rYuzZbtIuFQS1u7xu7A4zfsTLhPwarsLmuM9RE7hg I82INbMDo7OdVdqW8cB0D30ZfBiJ6ETl -----END CERTIFICATE-----Generated at Sun Jan 25 12:21:09 2026 by rpki-client