This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: U79HVyLvisUf314gfENE06kvFt12fC/+KOhuK4roNUs= Subject key identifier: B0:E4:52:21:73:0E:77:FD:56:23:E0:79:89:D1:69:6F:E4:26:8D:E1 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0C00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0BF9 Signing time: Sat 24 Jan 2026 18:24:37 +0000 Manifest this update: Sat 24 Jan 2026 18:24:37 +0000 Manifest next update: Sat 31 Jan 2026 18:24:37 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: CfIeF3fnmSn9ZS4B69daa7P4ITjsIro14xgvv15NRas=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: NQK2jP5eRyYwsuTuPQtjKV7k3gO8QkcM0nqIbV3IUnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3072 (0xc00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Jan 24 18:24:37 2026 GMT Not After : Jan 31 18:24:37 2026 GMT Subject: CN=69750e65-647b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c7:62:a8:dd:c7:f9:35:a7:64:82:f8:5f:05: b9:0d:3e:be:a3:46:1d:62:76:b9:cf:1c:26:4d:fb: 8d:7c:37:19:7a:29:b3:ce:03:9f:ad:09:3f:fe:cb: 70:11:bb:88:28:90:f0:40:4e:e3:be:3a:04:9f:d0: 43:c5:d8:3a:c5:57:1f:dc:df:a9:fe:23:ac:16:90: dd:9d:54:6b:bf:d2:41:9d:bb:31:6d:e9:ba:23:d2: 9e:c2:a3:4c:8a:b7:94:99:c2:0a:bf:ac:94:e2:d2: 1c:39:d0:07:71:64:85:00:6b:8b:67:aa:5b:c7:8b: 50:e4:79:fb:1f:03:36:79:dd:76:83:68:e0:42:87: 67:c6:c5:88:77:25:9e:7e:33:77:bb:2f:00:b5:8a: d8:7b:b9:90:36:98:40:eb:2c:c1:90:92:7c:c0:c0: 87:62:b8:a6:da:3b:fe:05:48:f4:9d:00:27:f9:c3: c3:43:2f:78:d0:72:c9:e5:1b:12:23:75:7e:1f:24: b4:23:38:8e:97:b4:a3:b2:6b:86:e8:bd:e3:af:4a: b8:c0:4c:78:34:8c:24:e5:41:fa:02:de:aa:da:6a: 44:74:c4:e3:e7:cf:d6:27:06:46:9c:e3:a1:46:01: d8:c5:11:4d:2c:6b:7a:da:e9:ab:16:77:ac:5a:91: 6a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E4:52:21:73:0E:77:FD:56:23:E0:79:89:D1:69:6F:E4:26:8D:E1 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:aa:5b:1b:80:bf:f2:fe:62:8b:b2:a1:8d:3c:df:c5:dc:26: 6e:74:08:15:3a:1e:75:fe:cb:ec:2b:75:a7:9a:1b:5c:7c:4d: d8:16:4b:6f:d4:7b:e3:77:3b:0b:ca:7d:2c:f7:1e:a5:14:ff: a5:5f:ca:35:b6:9b:40:cf:b6:e1:34:3f:f6:43:2c:e9:00:22: 33:91:e1:78:c5:43:54:f5:a1:31:67:ee:fa:39:40:d3:67:49: d1:96:68:8e:22:1f:e1:33:3b:60:20:0d:02:9c:5c:c9:91:12: e2:ba:fc:bc:70:8e:ff:a3:67:5c:8e:21:74:cd:5c:c5:f9:ba: 7c:58:fe:67:98:1b:52:ec:dd:32:ee:09:ff:68:6c:18:c4:4c: 0f:68:6a:05:ff:9f:16:1e:61:a1:b1:c5:0b:88:fe:c5:f1:e2: bf:64:00:24:ed:00:ef:fc:7f:e2:43:1d:ce:6f:52:b8:a9:68: 3d:a6:5f:10:ca:e2:0d:d7:a0:87:70:05:10:49:3e:eb:bf:0b: 44:83:3c:20:fd:b1:a7:11:f8:3b:df:bb:8a:bd:fc:8c:d3:66: 18:f8:c7:f0:7c:be:ad:64:c9:10:a4:e4:87:9b:f4:40:fb:f4: 58:43:b9:b9:e6:da:f6:5a:48:e6:5e:d7:fa:d4:f9:00:76:28: 20:c8:b7:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjYwMTI0MTgyNDM3WhcNMjYwMTMxMTgyNDM3WjAYMRYwFAYD VQQDDA02OTc1MGU2NS02NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38diqN3H+TWnZIL4XwW5DT6+o0YdYna5zxwmTfuNfDcZeimzzgOfrQk//stw EbuIKJDwQE7jvjoEn9BDxdg6xVcf3N+p/iOsFpDdnVRrv9JBnbsxbem6I9KewqNM ireUmcIKv6yU4tIcOdAHcWSFAGuLZ6pbx4tQ5Hn7HwM2ed12g2jgQodnxsWIdyWe fjN3uy8AtYrYe7mQNphA6yzBkJJ8wMCHYrim2jv+BUj0nQAn+cPDQy940HLJ5RsS I3V+HyS0IziOl7SjsmuG6L3jr0q4wEx4NIwk5UH6At6q2mpEdMTj58/WJwZGnOOh RgHYxRFNLGt62umrFnesWpFqwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDkUiFz Dnf9ViPgeYnRaW/kJo3hMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUqlsbgL/y/mKLsqGNPN/F3CZudAgVOh51/svsK3WnmhtcfE3YFktv 1HvjdzsLyn0s9x6lFP+lX8o1tptAz7bhND/2QyzpACIzkeF4xUNU9aExZ+76OUDT Z0nRlmiOIh/hMztgIA0CnFzJkRLiuvy8cI7/o2dcjiF0zVzF+bp8WP5nmBtS7N0y 7gn/aGwYxEwPaGoF/58WHmGhscULiP7F8eK/ZAAk7QDv/H/iQx3Ob1K4qWg9pl8Q yuIN16CHcAUQST7rvwtEgzwg/bGnEfg737uKvfyM02YY+MfwfL6tZMkQpOSHm/RA +/RYQ7m55tr2WkjmXtf61PkAdiggyLet -----END CERTIFICATE-----Generated at Sun Jan 25 09:25:07 2026 by rpki-client