This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft File: iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft (raw, json) Hash identifier: YWSdCGGUl4KZ+5BDv6taCABnk1x/3zFNuzsZuK4Ly5M= Subject key identifier: 9F:F9:A2:A2:72:81:37:78:43:B1:01:A1:A3:92:F1:C1:7B:7A:B9:4C Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft Manifest number: 5B Signing time: Sun 25 Jan 2026 06:17:42 +0000 Manifest this update: Sun 25 Jan 2026 06:17:41 +0000 Manifest next update: Sun 01 Feb 2026 06:17:41 +0000 Files and hashes: 1: iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl (hash: VBGcdUvjXGoe0qQqyPl4eZldWrE7J9JIx6hShrPjgeo=) 2: 399480C4ACD011F08828DD7BC4F9AE02.roa (hash: Mnd71Ffk/psJgLiSkChk25qvX5F/utFXFDACcylb68Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Jan 25 06:17:41 2026 GMT Not After : Feb 1 06:17:41 2026 GMT Subject: CN=6975b586-659c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e4:cb:0c:2a:78:7b:be:20:ec:ba:d0:c6:7d: 23:b5:79:77:35:f6:2f:8a:3b:24:8a:8b:e8:d5:e0: 93:ee:4d:11:3c:66:49:b8:f8:c6:e0:99:3c:8c:89: a4:c0:89:6b:8e:3d:6a:df:07:81:27:4c:a5:8b:71: 46:4c:63:26:48:df:fa:21:96:71:de:fa:8b:db:da: 13:99:b0:59:ac:6e:62:c5:57:95:77:b4:d5:32:ad: 06:52:83:db:f2:8f:e7:bb:4c:81:26:ff:ea:9e:68: fa:d0:2e:12:4f:6a:93:bf:0a:4f:75:bf:4e:d1:b0: c5:74:d6:d3:9b:ae:8c:63:b6:86:b9:cf:5a:f0:00: 4d:20:f9:f7:4e:fa:05:46:c1:b7:6c:aa:c8:01:dd: 63:7f:fb:7a:41:4b:38:5a:fc:d5:26:d8:ab:fe:8b: a9:54:f2:2d:c8:ff:78:b0:51:01:78:2c:d5:89:c3: a9:e4:6a:9c:5d:30:4c:d0:35:d9:4b:da:17:92:aa: e0:25:4e:b0:a8:0b:ab:d1:cd:cf:41:71:33:18:dc: 8e:8c:91:c2:a7:a3:e0:dd:01:5a:f4:bc:d2:89:ea: 48:ab:3e:8f:60:c9:90:b4:4c:21:d3:69:93:80:38: 06:bd:35:e9:75:36:8f:10:80:12:8b:b5:c1:a0:e6: 89:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F9:A2:A2:72:81:37:78:43:B1:01:A1:A3:92:F1:C1:7B:7A:B9:4C X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f3:63:51:d0:06:fb:5d:42:fd:04:05:7f:c6:e2:07:77:78: 0d:1d:ce:4f:38:21:53:d8:91:c6:a4:54:45:26:c9:96:8f:56: 0f:48:bc:84:1a:6c:e6:da:27:c1:90:43:b7:0d:10:96:c0:a1: 5c:b2:c6:f1:00:1d:18:76:0b:8e:c4:2e:85:a3:b0:84:4d:c5: d6:48:5d:d2:af:6e:37:c8:eb:af:4f:66:7d:2a:89:78:0a:e6: 8b:25:7e:68:a6:6e:12:30:33:ea:dd:fb:d6:eb:f6:3f:85:c7: 91:f1:bf:ab:da:62:d8:a0:0b:87:0c:33:e0:55:5c:4e:5e:3e: 48:6a:32:82:02:cc:e3:c6:a7:a2:77:36:0e:c4:a8:44:60:24: 0f:c1:fa:f0:a4:bf:4d:9c:32:a4:c6:b1:ee:be:af:d9:5b:aa: d8:4d:16:5d:6a:66:13:fc:f0:58:33:72:ef:95:0c:17:8e:18: f2:c6:15:67:ac:79:af:37:c8:41:59:e4:77:3e:de:6b:a8:1b: 42:4b:8a:b0:37:1e:2b:be:f4:1e:7e:07:cc:7a:b1:94:e1:70: 5d:43:1d:3a:ff:10:8b:55:fb:08:1b:c3:df:d1:da:48:7a:e0: 1f:52:ad:df:6d:61:91:c3:52:32:46:b9:42:d3:66:87:dd:15: c6:10:6d:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNjAxMjUwNjE3NDFaFw0yNjAyMDEwNjE3NDFaMBgxFjAUBgNV BAMMDTY5NzViNTg2LTY1OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDj5MsMKnh7viDsutDGfSO1eXc19i+KOySKi+jV4JPuTRE8Zkm4+MbgmTyMiaTA iWuOPWrfB4EnTKWLcUZMYyZI3/ohlnHe+ovb2hOZsFmsbmLFV5V3tNUyrQZSg9vy j+e7TIEm/+qeaPrQLhJPapO/Ck91v07RsMV01tObroxjtoa5z1rwAE0g+fdO+gVG wbdsqsgB3WN/+3pBSzha/NUm2Kv+i6lU8i3I/3iwUQF4LNWJw6nkapxdMEzQNdlL 2heSquAlTrCoC6vRzc9BcTMY3I6MkcKno+DdAVr0vNKJ6kirPo9gyZC0TCHTaZOA OAa9Nel1No8QgBKLtcGg5onfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUn/mionKB N3hDsQGho5LxwXt6uUwwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 MEUwLzNGQkI1RTA0N0I1MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3Uz ZWJCM1VsVWZjeVpVczJyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD7zY1HQBvtdQv0EBX/G4gd3eA0dzk84IVPYkcakVEUmyZaPVg9IvIQa bObaJ8GQQ7cNEJbAoVyyxvEAHRh2C47ELoWjsIRNxdZIXdKvbjfI669PZn0qiXgK 5oslfmimbhIwM+rd+9br9j+Fx5Hxv6vaYtigC4cMM+BVXE5ePkhqMoICzOPGp6J3 Ng7EqERgJA/B+vCkv02cMqTGse6+r9lbqthNFl1qZhP88Fgzcu+VDBeOGPLGFWes ea83yEFZ5Hc+3muoG0JLirA3Hiu+9B5+B8x6sZThcF1DHTr/EItV+wgbw9/R2kh6 4B9Srd9tYZHDUjJGuULTZofdFcYQbdc= -----END CERTIFICATE-----Generated at Sun Jan 25 11:16:54 2026 by rpki-client