This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft File: 1xhrKGW4YA1mKCKv65AVcAbg9BA.mft (raw, json) Hash identifier: ZRJiZO2bXmp4PtNwjzMo3AwfsQjQh5kXax0IGwyPEBc= Subject key identifier: 4B:1C:A0:52:98:54:9D:1E:6B:10:F1:FA:4E:F1:24:A0:F4:19:AD:B1 Authority key identifier: D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 Certificate issuer: /CN=A91F428C/serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Certificate serial: 3509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft Manifest number: 3504 Signing time: Sat 24 Jan 2026 14:57:43 +0000 Manifest this update: Sat 24 Jan 2026 14:57:43 +0000 Manifest next update: Sat 31 Jan 2026 14:57:43 +0000 Files and hashes: 1: 1xhrKGW4YA1mKCKv65AVcAbg9BA.crl (hash: 47TjMcNner469YCahsr4dFdUtkG0KsQ0fbWyc3ytWFQ=) 2: B8201598BED111EC93B74C4FC4F9AE02.roa (hash: JdQUVUw03f+72nj/VMFdFXWPwrE8S++NWd90s/zu6jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13577 (0x3509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Validity Not Before: Jan 24 14:57:43 2026 GMT Not After : Jan 31 14:57:43 2026 GMT Subject: CN=6974dde7-c20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:3c:af:e7:14:c7:55:a6:2b:d4:07:ad:ad: 41:d6:17:10:e7:b5:60:1c:9c:c3:e3:02:45:f1:3e: 61:41:1a:49:96:c7:86:86:ba:60:db:b7:81:cc:ed: 49:a0:1f:45:5d:14:b8:27:16:e7:74:a3:33:49:c1: f5:dd:09:40:7a:ec:51:c7:10:cf:7d:da:d0:8e:ee: b7:31:be:5f:14:db:94:5b:4f:e2:4c:5f:7c:b3:a9: c0:dd:a8:1a:b4:d0:e4:4d:25:b1:26:dc:da:27:12: d7:c1:74:7f:b4:db:69:c3:10:a8:8e:97:90:f0:93: 47:d4:9d:01:01:a9:2c:1f:17:ab:ae:44:f7:70:41: c7:65:fe:1f:3c:5d:2a:10:3f:2a:60:1b:37:a6:70: 15:e4:d8:53:87:64:5e:cd:03:d0:f9:02:0d:02:21: 69:de:43:f8:15:5d:c6:05:60:05:36:8d:4c:d7:f5: 61:b7:52:d0:93:81:34:30:c6:be:0e:01:8b:39:76: 13:71:55:46:09:bd:6b:d2:30:b7:8d:0d:a1:a8:a6: bb:63:5e:2f:66:67:9f:c1:b2:87:1b:9d:0f:fd:df: 5a:46:a8:c4:b3:e0:60:1e:47:85:c3:1a:aa:0d:00: 8a:52:1f:b5:57:24:22:e9:00:59:6c:9b:eb:7b:08: b9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1C:A0:52:98:54:9D:1E:6B:10:F1:FA:4E:F1:24:A0:F4:19:AD:B1 X509v3 Authority Key Identifier: keyid:D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:49:bc:fa:88:f7:6f:6c:24:fd:0d:e9:a0:d1:49:ae:30:a0: 39:9b:e5:7c:77:0c:f6:8f:ac:79:78:4a:04:13:b3:df:32:63: 7a:19:ac:7f:6d:98:a4:21:a3:77:e0:3c:13:39:cb:90:48:23: ea:04:6f:00:61:d5:b1:ef:f6:73:a7:00:3e:4e:50:87:0e:cb: df:17:6b:22:35:7a:38:4a:4d:be:b1:6a:4f:50:01:16:83:f0: 3e:61:9c:f3:1b:0f:e3:9d:66:a3:6f:da:c2:84:49:22:32:6f: c9:b6:d1:7b:f4:37:f9:ff:e4:4b:f7:08:d7:8e:8a:1b:71:58: 82:f6:a8:67:47:d7:f8:77:af:8a:08:2b:48:b9:86:ff:6c:75: b2:1d:d5:35:c6:83:9d:3e:db:73:14:7f:d3:43:9b:04:d9:bf: 58:95:1f:d4:d0:09:b2:7d:80:4f:70:c1:db:5e:d6:a1:f4:3e: e3:d3:80:cf:e6:30:94:74:59:40:68:35:d5:fe:80:a8:37:23: e5:79:79:f7:d8:84:23:d3:4a:c5:b6:7b:85:d7:00:c3:98:be: 40:af:a0:26:f4:90:cf:71:07:49:4d:11:f1:b3:0d:34:18:83: 8c:51:ac:49:3a:23:84:d3:80:82:5a:e5:35:14:6c:0c:3f:5e: 06:99:ad:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKEQ3MTg2QjI4NjVCODYwMEQ2NjI4MjJBRkVCOTAxNTcw MDZFMEY0MTAwHhcNMjYwMTI0MTQ1NzQzWhcNMjYwMTMxMTQ1NzQzWjAYMRYwFAYD VQQDDA02OTc0ZGRlNy1jMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAg8r+cUx1WmK9QHra1B1hcQ57VgHJzD4wJF8T5hQRpJlseGhrpg27eBzO1J oB9FXRS4JxbndKMzScH13QlAeuxRxxDPfdrQju63Mb5fFNuUW0/iTF98s6nA3aga tNDkTSWxJtzaJxLXwXR/tNtpwxCojpeQ8JNH1J0BAaksHxerrkT3cEHHZf4fPF0q ED8qYBs3pnAV5NhTh2RezQPQ+QINAiFp3kP4FV3GBWAFNo1M1/Vht1LQk4E0MMa+ DgGLOXYTcVVGCb1r0jC3jQ2hqKa7Y14vZmefwbKHG50P/d9aRqjEs+BgHkeFwxqq DQCKUh+1VyQi6QBZbJvrewi58QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEscoFKY VJ0eaxDx+k7xJKD0Ga2xMB8GA1UdIwQYMBaAFNcYayhluGANZigir+uQFXAG4PQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy81MkZDQzY0ODFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlBMW1LQ0t2NjVBVmNBYmc5 QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4aHJLR1c0WUExbUtDS3Y2NUFWY0FiZzlCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy81MkZDQzY0ODFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlB MW1LQ0t2NjVBVmNBYmc5QkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZSbz6iPdvbCT9Demg0UmuMKA5m+V8dwz2j6x5eEoEE7PfMmN6Gax/ bZikIaN34DwTOcuQSCPqBG8AYdWx7/ZzpwA+TlCHDsvfF2siNXo4Sk2+sWpPUAEW g/A+YZzzGw/jnWajb9rChEkiMm/JttF79Df5/+RL9wjXjoobcViC9qhnR9f4d6+K CCtIuYb/bHWyHdU1xoOdPttzFH/TQ5sE2b9YlR/U0AmyfYBPcMHbXtah9D7j04DP 5jCUdFlAaDXV/oCoNyPleXn32IQj00rFtnuF1wDDmL5Ar6Am9JDPcQdJTRHxsw00 GIOMUaxJOiOE04CCWuU1FGwMP14Gma39 -----END CERTIFICATE-----Generated at Sun Jan 25 06:04:47 2026 by rpki-client