This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft File: Z38M1kpd4sGwKO0APFaHS0j6LiE.mft (raw, json) Hash identifier: ZdWS098gZz92LBgi9ssDrBLYw5cpC5RY2Pd1ukzbzdY= Subject key identifier: BB:69:F8:C7:6A:D5:0A:1A:0B:AF:BF:13:19:58:61:C1:97:55:74:F3 Authority key identifier: 67:7F:0C:D6:4A:5D:E2:C1:B0:28:ED:00:3C:56:87:4B:48:FA:2E:21 Certificate issuer: /CN=A91F17B3/serialNumber=677F0CD64A5DE2C1B028ED003C56874B48FA2E21 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Z38M1kpd4sGwKO0APFaHS0j6LiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft Manifest number: 56 Signing time: Sun 25 Jan 2026 06:17:24 +0000 Manifest this update: Sun 25 Jan 2026 06:17:23 +0000 Manifest next update: Sun 01 Feb 2026 06:17:23 +0000 Files and hashes: 1: Z38M1kpd4sGwKO0APFaHS0j6LiE.crl (hash: IAn2nje3c+ylXWrRy0cLdQNPhUC1UIttNwGn9wPw2Fs=) 2: AD46933EB65011F0B751DB86C4F9AE02.roa (hash: 4nT2yihpsRgIGDl3UtBaxjdfAfsQlqp6s85lRI5En8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.crl rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Z38M1kpd4sGwKO0APFaHS0j6LiE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B3, serialNumber=677F0CD64A5DE2C1B028ED003C56874B48FA2E21 Validity Not Before: Jan 25 06:17:23 2026 GMT Not After : Feb 1 06:17:23 2026 GMT Subject: CN=6975b573-f328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cd:f3:5c:53:d3:eb:af:be:c5:fd:28:45:08: d2:00:df:45:eb:15:db:ce:f5:c3:de:c7:89:d2:4e: 0a:d3:b3:de:b1:0d:a9:8d:66:71:17:31:40:22:fb: 64:31:f4:1d:d3:3c:a2:c8:51:d6:14:f8:ef:6d:10: fc:ea:2e:94:a8:36:3f:65:af:65:f4:9b:17:50:b6: 05:ef:aa:69:b5:88:15:33:62:77:c6:11:4c:39:00: a4:b9:ab:b1:56:ce:d3:ac:31:f7:ff:08:d2:fa:f5: 54:c1:cc:41:96:65:b9:4f:02:e6:d7:ce:fc:d0:23: f9:7d:11:de:ec:bf:a7:9e:27:42:9e:44:5e:5b:a5: de:af:5d:a6:bc:ef:95:2f:cd:9a:77:f7:d6:00:89: 48:ca:52:5d:3f:b2:09:f0:f9:d2:2b:ef:63:9e:a3: 27:49:13:d0:8a:87:52:bf:cc:2d:cf:b0:80:0a:10: 6d:16:4e:68:3d:30:b9:4f:72:77:6b:a3:57:b8:ce: 0c:5c:c7:c7:df:87:8e:c7:81:15:4e:d9:da:1c:34: 33:3b:67:0c:b0:0b:f4:35:f4:e5:e9:ba:73:4e:a2: aa:11:7b:2e:a8:6d:0b:bc:c4:0a:4e:a5:64:ef:4a: 4a:a0:a1:5e:8e:27:d8:30:25:1e:13:70:69:b2:37: db:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:69:F8:C7:6A:D5:0A:1A:0B:AF:BF:13:19:58:61:C1:97:55:74:F3 X509v3 Authority Key Identifier: keyid:67:7F:0C:D6:4A:5D:E2:C1:B0:28:ED:00:3C:56:87:4B:48:FA:2E:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Z38M1kpd4sGwKO0APFaHS0j6LiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B3/558C609879CD11F0A9B90321C4F9AE02/Z38M1kpd4sGwKO0APFaHS0j6LiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4f:ef:2a:dd:d2:25:3b:1c:7e:0e:fb:a6:0b:30:a8:f4:a9: c4:11:c8:81:95:ed:da:bd:4d:7d:b5:3b:57:c5:64:6b:29:d0: 6d:08:c6:bb:7d:57:87:e1:a7:3d:f9:df:45:73:2b:42:c3:a2: 82:8f:00:b3:ef:c9:35:18:28:45:01:19:59:19:41:64:19:e1: 8f:0a:79:22:b9:32:36:04:83:c7:47:d9:88:db:77:47:d2:1b: dd:0a:55:16:40:00:32:18:52:57:0c:8e:22:9e:28:3e:3b:de: ae:31:65:5a:0f:9e:17:5e:f5:27:bc:7a:df:a5:06:93:16:85: aa:70:2c:b3:b5:86:d9:e9:ab:ae:57:c4:73:f9:3d:c3:62:23: 33:33:0f:7c:4d:fb:28:a4:00:01:12:a7:06:13:f6:ae:5f:25: fb:43:a7:fc:9d:63:c3:ea:39:b8:e9:37:21:b1:4a:ac:cf:34: 2e:67:b5:b5:cd:73:01:7b:b0:a5:07:93:09:e5:d9:a1:60:b1: 80:35:1a:b0:25:ea:b9:a8:bf:71:c5:99:b0:41:10:b2:b5:02: 0b:79:cd:74:48:ab:81:9f:13:cb:c1:51:80:f3:20:16:1a:41: b0:31:e1:9d:a3:7b:1b:39:7f:cc:0d:67:65:87:bc:29:c7:cd: ee:ae:fe:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTdCMzExMC8GA1UEBRMoNjc3RjBDRDY0QTVERTJDMUIwMjhFRDAwM0M1Njg3NEI0 OEZBMkUyMTAeFw0yNjAxMjUwNjE3MjNaFw0yNjAyMDEwNjE3MjNaMBgxFjAUBgNV BAMMDTY5NzViNTczLWYzMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDozfNcU9Prr77F/ShFCNIA30XrFdvO9cPex4nSTgrTs96xDamNZnEXMUAi+2Qx 9B3TPKLIUdYU+O9tEPzqLpSoNj9lr2X0mxdQtgXvqmm1iBUzYnfGEUw5AKS5q7FW ztOsMff/CNL69VTBzEGWZblPAubXzvzQI/l9Ed7sv6eeJ0KeRF5bpd6vXaa875Uv zZp399YAiUjKUl0/sgnw+dIr72OeoydJE9CKh1K/zC3PsIAKEG0WTmg9MLlPcndr o1e4zgxcx8ffh47HgRVO2docNDM7ZwywC/Q19OXpunNOoqoRey6obQu8xApOpWTv SkqgoV6OJ9gwJR4TcGmyN9vTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu2n4x2rV ChoLr78TGVhhwZdVdPMwHwYDVR0jBBgwFoAUZ38M1kpd4sGwKO0APFaHS0j6LiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxN0IzLzU1OEM2MDk4NzlD RDExRjBBOUI5MDMyMUM0RjlBRTAyL1ozOE0xa3BkNHNHd0tPMEFQRmFIUzBqNkxp RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWjM4TTFrcGQ0c0d3S08wQVBGYUhTMGo2TGlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYx N0IzLzU1OEM2MDk4NzlDRDExRjBBOUI5MDMyMUM0RjlBRTAyL1ozOE0xa3BkNHNH d0tPMEFQRmFIUzBqNkxpRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFtP7yrd0iU7HH4O+6YLMKj0qcQRyIGV7dq9TX21O1fFZGsp0G0Ixrt9 V4fhpz3530VzK0LDooKPALPvyTUYKEUBGVkZQWQZ4Y8KeSK5MjYEg8dH2Yjbd0fS G90KVRZAADIYUlcMjiKeKD473q4xZVoPnhde9Se8et+lBpMWhapwLLO1htnpq65X xHP5PcNiIzMzD3xN+yikAAESpwYT9q5fJftDp/ydY8PqObjpNyGxSqzPNC5ntbXN cwF7sKUHkwnl2aFgsYA1GrAl6rmov3HFmbBBELK1Agt5zXRIq4GfE8vBUYDzIBYa QbAx4Z2jexs5f8wNZ2WHvCnHze6u/ko= -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:57 2026 by rpki-client