This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: KxAtkkPQwNL/gsYaUJKJAvMCykgUNvnc85spm0cV7bQ= Subject key identifier: C2:9E:D7:E0:1D:AC:CA:72:42:20:61:D9:DB:2F:8E:AE:67:37:8E:E3 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0CD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0CC7 Signing time: Sat 24 Jan 2026 17:57:49 +0000 Manifest this update: Sat 24 Jan 2026 17:57:49 +0000 Manifest next update: Sat 31 Jan 2026 17:57:49 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: 8B+o/Wj1nzrGoVcG9wjM9j6ofz2Dp8iSWD1qcc5BG8c=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: gDTlO8JdKBOhrYpdJ9YbTAbJbDClxcUd9QV6sNxI620=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Jan 24 17:57:49 2026 GMT Not After : Jan 31 17:57:49 2026 GMT Subject: CN=6975081d-0cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3e:e9:95:c4:12:61:6e:25:61:3c:8f:66:3f: a2:66:13:b0:d0:e9:2b:fc:d4:5e:06:54:bb:a1:74: 53:e6:25:a0:16:52:11:59:66:43:bb:df:9f:28:14: 63:f1:d5:3e:56:df:58:f1:dc:b4:20:80:96:81:5e: f4:c0:18:fe:de:10:f9:cc:57:40:75:89:6e:0b:d2: dd:31:f5:32:5e:c7:3c:72:a0:5a:77:4a:85:9d:0e: 25:0f:fa:10:7a:ee:95:c3:b2:25:9d:fa:a4:ed:80: dd:3a:4c:0a:26:a2:39:bc:12:e3:36:ee:44:39:12: 59:8d:2f:27:1e:ba:8f:86:e4:a2:26:a7:8f:74:aa: 8b:7a:c3:04:b3:76:cd:e0:0e:77:01:46:c7:4e:b5: 14:f8:f6:55:10:d2:d4:b5:0e:c1:a2:56:c2:24:1f: 5f:33:53:bc:1f:a0:48:45:88:cb:e4:59:18:77:ff: 8d:9f:69:6a:86:ed:ae:c6:76:4f:89:bc:12:2a:48: c9:2e:05:68:0f:b0:f4:47:07:da:42:80:bb:b1:ba: c6:06:e4:07:dd:ff:21:4c:a0:15:dd:2c:54:2d:a5: 41:8f:25:e1:d3:ae:2a:3d:0a:0d:6e:e4:2c:8e:1d: 90:b7:d6:32:c6:af:52:9c:be:4a:41:a6:11:e8:c7: 30:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:9E:D7:E0:1D:AC:CA:72:42:20:61:D9:DB:2F:8E:AE:67:37:8E:E3 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:34:f2:93:17:e5:f3:43:01:f2:c4:d9:c0:06:b4:13:7a:2c: 21:c0:0e:3a:ab:4f:60:39:10:5c:d1:b5:91:2c:92:94:48:9f: bb:df:26:e8:ae:44:69:96:6d:57:f0:d9:12:ff:f5:87:30:69: cf:2e:e1:1e:ff:90:61:9e:f8:3a:4d:bb:54:05:8a:f6:69:16: 72:ec:2b:30:cc:03:bd:1d:33:b2:ba:65:1b:04:2c:e0:59:70: 2e:7d:67:32:12:ac:e0:73:a4:cc:a2:3c:ca:8c:77:ff:2a:3c: 48:81:00:2d:aa:d3:f3:4e:55:a6:ce:3f:f9:d3:ac:69:ff:ea: 5b:f8:05:6a:92:96:ac:00:ba:2b:6f:87:9d:cf:ef:4a:1e:6b: 01:de:db:75:ea:0a:f4:30:23:34:34:1e:a1:52:0d:78:5e:a8: fe:4a:45:ea:12:4b:6d:7d:9a:59:d0:52:b6:a6:a6:5e:40:17: e5:92:d0:d1:3a:b7:f6:a2:1b:f2:83:67:39:4b:b7:23:8b:d6: be:0e:be:9e:af:73:18:36:1e:01:ae:58:1f:87:0f:cf:46:d8: 99:91:bc:13:b3:d3:06:c9:21:c4:69:0b:19:fa:56:36:ee:dc: 43:30:f5:38:84:a9:8e:2e:fb:58:1e:19:1f:2e:78:8f:cf:18: fa:5f:5d:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjYwMTI0MTc1NzQ5WhcNMjYwMTMxMTc1NzQ5WjAYMRYwFAYD VQQDDA02OTc1MDgxZC0wY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvj7plcQSYW4lYTyPZj+iZhOw0Okr/NReBlS7oXRT5iWgFlIRWWZDu9+fKBRj 8dU+Vt9Y8dy0IICWgV70wBj+3hD5zFdAdYluC9LdMfUyXsc8cqBad0qFnQ4lD/oQ eu6Vw7Ilnfqk7YDdOkwKJqI5vBLjNu5EORJZjS8nHrqPhuSiJqePdKqLesMEs3bN 4A53AUbHTrUU+PZVENLUtQ7BolbCJB9fM1O8H6BIRYjL5FkYd/+Nn2lqhu2uxnZP ibwSKkjJLgVoD7D0RwfaQoC7sbrGBuQH3f8hTKAV3SxULaVBjyXh064qPQoNbuQs jh2Qt9Yyxq9SnL5KQaYR6McwFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKe1+Ad rMpyQiBh2dsvjq5nN47jMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiNPKTF+XzQwHyxNnABrQTeiwhwA46q09gORBc0bWRLJKUSJ+73ybo rkRplm1X8NkS//WHMGnPLuEe/5Bhnvg6TbtUBYr2aRZy7CswzAO9HTOyumUbBCzg WXAufWcyEqzgc6TMojzKjHf/KjxIgQAtqtPzTlWmzj/506xp/+pb+AVqkpasALor b4edz+9KHmsB3tt16gr0MCM0NB6hUg14Xqj+SkXqEkttfZpZ0FK2pqZeQBflktDR Orf2ohvyg2c5S7cji9a+Dr6er3MYNh4Brlgfhw/PRtiZkbwTs9MGySHEaQsZ+lY2 7txDMPU4hKmOLvtYHhkfLniPzxj6X119 -----END CERTIFICATE-----Generated at Sun Jan 25 04:26:45 2026 by rpki-client