This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: ofSJOXdJVi5XYK2eWSDTKvXY8W7j8F6+WO9X0QZBvZo= Subject key identifier: 2C:30:C0:E9:86:2E:45:91:CF:1B:52:1C:B3:58:91:6B:54:54:38:35 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 9B Signing time: Sun 25 Jan 2026 05:35:51 +0000 Manifest this update: Sun 25 Jan 2026 05:35:50 +0000 Manifest next update: Sun 01 Feb 2026 05:35:50 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: kvw0CgFFaO9rWLFaDQ2e4VsRkFgYEmx8MlH6BLMPKXg=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: XP45MNkBJDvMP4szABAjNLFk+96NCHIDa9eitTmeLLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Jan 25 05:35:50 2026 GMT Not After : Feb 1 05:35:50 2026 GMT Subject: CN=6975abb7-7d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:81:46:c8:2d:40:91:c0:c9:f1:63:7f:98: 47:1a:19:0d:12:a5:0b:1b:1a:d0:71:bb:24:e9:c2: ba:1f:bb:7f:f7:01:20:4a:6f:d1:b0:0e:95:f4:90: ba:62:35:75:2f:3c:d5:6b:ee:aa:5f:0e:e8:c8:63: af:4a:07:16:10:57:f2:ae:c5:9c:c5:6e:fa:cd:0f: 15:11:b2:5d:6d:94:9d:d8:cf:a7:e7:95:73:63:89: e6:bd:27:cd:7c:c7:b9:5c:ca:d4:57:de:79:b0:63: 3c:30:79:78:f5:9d:6b:d0:35:f7:f1:38:9b:31:b7: 04:60:e7:8c:7a:e9:4d:5b:d8:35:68:5c:ce:e9:a8: e1:2d:20:53:81:47:a4:83:bc:cc:ba:77:65:90:89: e0:a6:f2:21:e4:c3:29:f8:e5:c4:e8:54:15:bf:b2: ea:0b:28:08:98:ad:58:2b:23:bc:08:32:16:bf:c5: ea:4e:ac:e0:12:4c:95:a7:01:49:ad:97:f2:7c:41: 55:6b:46:ae:9c:15:99:74:92:75:d8:af:65:de:00: ba:f7:26:d2:7e:89:ba:8b:55:ce:d1:85:f5:de:57: 80:6f:de:01:ef:66:36:77:64:12:fe:76:df:d7:b2: 3d:d9:43:ec:01:de:6d:99:cf:3a:3f:a3:4f:36:1d: d5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:30:C0:E9:86:2E:45:91:CF:1B:52:1C:B3:58:91:6B:54:54:38:35 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a2:ec:08:4f:96:b3:b3:66:95:1d:2d:26:b6:e8:58:e3:ee: cb:1a:e2:06:5d:04:3f:34:18:e0:bc:98:aa:46:51:1c:0c:09: fb:97:66:8a:c7:73:55:d5:dd:92:4b:2c:d2:59:4b:e5:f4:8c: 88:95:7d:e1:bf:83:0b:cf:20:fb:86:3a:13:3c:5f:2a:56:6d: b9:03:89:e3:cd:09:02:5d:fd:cb:6c:cf:46:a5:e0:d4:16:41: 22:fa:3f:67:06:8a:78:17:4e:a7:68:61:4b:e4:78:6b:55:ca: a4:e8:0a:97:aa:74:e0:0b:d5:1c:34:16:f2:45:80:4b:e8:f6: 16:53:5e:de:e8:8c:b3:94:2e:4c:40:21:5d:0c:92:86:f6:de: 8d:6a:45:43:3a:90:3e:92:7f:99:f0:b1:1b:45:20:b6:03:7d: 74:08:d0:13:c0:ed:ca:13:0e:26:6f:c8:66:85:a4:0d:d8:d9: 1e:70:f6:e8:4b:bd:2a:98:cb:10:61:51:ac:22:6c:72:56:3e: 47:b6:f9:60:9e:59:88:fc:92:42:6c:cf:55:55:0f:a2:8d:83: 21:72:17:87:09:d2:3e:18:2b:39:a8:60:71:52:77:a2:ac:cd: 10:16:53:18:90:9f:27:fb:e9:47:dd:59:f7:fe:69:06:b6:5f: ff:59:05:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjYwMTI1MDUzNTUwWhcNMjYwMjAxMDUzNTUwWjAYMRYwFAYD VQQDDA02OTc1YWJiNy03ZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDqBRsgtQJHAyfFjf5hHGhkNEqULGxrQcbsk6cK6H7t/9wEgSm/RsA6V9JC6 YjV1LzzVa+6qXw7oyGOvSgcWEFfyrsWcxW76zQ8VEbJdbZSd2M+n55VzY4nmvSfN fMe5XMrUV955sGM8MHl49Z1r0DX38TibMbcEYOeMeulNW9g1aFzO6ajhLSBTgUek g7zMundlkIngpvIh5MMp+OXE6FQVv7LqCygImK1YKyO8CDIWv8XqTqzgEkyVpwFJ rZfyfEFVa0aunBWZdJJ12K9l3gC69ybSfom6i1XO0YX13leAb94B72Y2d2QS/nbf 17I92UPsAd5tmc86P6NPNh3VYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwwwOmG LkWRzxtSHLNYkWtUVDg1MB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCouwIT5azs2aVHS0mtuhY4+7LGuIGXQQ/NBjgvJiqRlEcDAn7l2aK x3NV1d2SSyzSWUvl9IyIlX3hv4MLzyD7hjoTPF8qVm25A4njzQkCXf3LbM9GpeDU FkEi+j9nBop4F06naGFL5HhrVcqk6AqXqnTgC9UcNBbyRYBL6PYWU17e6IyzlC5M QCFdDJKG9t6NakVDOpA+kn+Z8LEbRSC2A310CNATwO3KEw4mb8hmhaQN2NkecPbo S70qmMsQYVGsImxyVj5HtvlgnlmI/JJCbM9VVQ+ijYMhcheHCdI+GCs5qGBxUnei rM0QFlMYkJ8n++lH3Vn3/mkGtl//WQXE -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:10 2026 by rpki-client