This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: 1szJB7hqxmTSYFJu6nrUcuamUn+XNTUn7y0v/pEIFwg= Subject key identifier: CB:0E:2A:4C:63:61:2A:34:31:26:5D:EB:BB:79:3C:14:BA:6B:B6:37 Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 3265 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 3265 Signing time: Sat 24 Jan 2026 15:17:47 +0000 Manifest this update: Sat 24 Jan 2026 15:17:46 +0000 Manifest next update: Sat 31 Jan 2026 15:17:46 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: xOYq18yzkTcn5/uU30atSRif1fVRidK2mzZX8z27tQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12901 (0x3265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Jan 24 15:17:46 2026 GMT Not After : Jan 31 15:17:46 2026 GMT Subject: CN=6974e29a-9de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:77:d9:30:ec:02:61:8c:4c:2f:e0:a9:0d:c5: 4f:3c:85:88:8d:40:2b:2b:f4:3b:09:dc:f2:5e:78: c7:c1:cd:a8:88:da:18:c4:d0:a4:4a:12:44:2b:8a: 2c:58:63:cc:e4:8b:3e:fc:67:67:82:d4:38:ba:8e: 9d:7f:ac:75:16:38:41:db:69:f2:13:34:29:eb:26: 8a:85:77:e1:b6:44:22:0a:9e:48:50:5a:2f:be:a3: 02:e7:f0:db:77:df:8c:75:3e:fd:4f:aa:ae:db:31: 21:2f:12:05:c6:e5:73:c8:51:fc:3b:6b:7d:81:28: df:b8:0d:0c:3b:4c:0c:31:4a:cd:e0:be:9a:2c:25: a6:79:cf:3b:e3:ad:90:38:d9:90:f5:2d:1b:88:d9: be:fc:01:f1:d7:81:d6:46:4a:cb:19:42:8d:70:12: 8c:be:7f:65:cb:04:53:1b:be:28:07:a0:f6:b1:dc: 99:a9:2a:fe:30:e4:f7:3e:91:fa:3e:6e:4a:a2:24: 2a:d0:b9:6c:60:88:33:5d:6e:07:32:1a:8c:8c:85: e8:4c:34:4f:e0:7b:a8:cb:db:8c:51:68:b1:6a:3d: 4a:b0:79:cf:5f:50:88:69:55:a4:97:ca:bf:fb:54: 36:49:2c:e7:dd:2b:a4:0a:5b:4e:36:a5:95:58:5b: a2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:0E:2A:4C:63:61:2A:34:31:26:5D:EB:BB:79:3C:14:BA:6B:B6:37 X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:e0:13:50:0f:c3:eb:3c:27:1e:f2:52:c2:a9:13:8d:e9:63: b0:5f:aa:42:3b:97:fc:0b:c9:19:48:b2:35:9b:5c:16:2d:52: 1b:ed:25:a6:37:6c:6d:48:90:e3:3a:c3:b9:41:34:56:42:32: 40:47:65:ad:26:24:d3:bf:36:13:96:8d:65:e4:00:40:94:1e: 6d:86:72:33:58:28:43:45:5f:c5:8c:2b:5e:75:bd:7d:cf:d0: cf:c9:56:e0:ac:2a:13:c1:b3:15:06:ad:48:b4:ef:f7:ed:ca: f7:63:2e:28:6a:46:13:dc:6e:7e:13:97:f6:bc:bb:47:23:c9: f3:1d:f4:65:d8:20:6e:57:72:92:ec:c1:02:65:e5:39:46:28: 39:30:73:83:ec:76:8b:72:fd:45:03:f1:c5:af:56:2e:4c:93: 97:14:12:c5:58:a0:c4:cf:bb:1a:c0:cc:a7:28:aa:0e:f6:3e: 24:42:eb:25:28:50:b2:2b:09:e3:d7:df:43:f6:ab:10:7e:bd: e9:60:80:8d:67:45:5e:62:53:f1:7b:ba:f9:cd:da:b4:e0:d7: ef:96:8e:12:fb:87:24:df:e9:e2:2c:ef:7a:35:da:0f:03:64: 8b:11:4f:11:d9:77:de:03:7f:7a:2a:ab:21:0f:23:cb:04:cf: 61:c2:ed:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjYwMTI0MTUxNzQ2WhcNMjYwMTMxMTUxNzQ2WjAYMRYwFAYD VQQDDA02OTc0ZTI5YS05ZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3fZMOwCYYxML+CpDcVPPIWIjUArK/Q7CdzyXnjHwc2oiNoYxNCkShJEK4os WGPM5Is+/GdngtQ4uo6df6x1FjhB22nyEzQp6yaKhXfhtkQiCp5IUFovvqMC5/Db d9+MdT79T6qu2zEhLxIFxuVzyFH8O2t9gSjfuA0MO0wMMUrN4L6aLCWmec87462Q ONmQ9S0biNm+/AHx14HWRkrLGUKNcBKMvn9lywRTG74oB6D2sdyZqSr+MOT3PpH6 Pm5KoiQq0LlsYIgzXW4HMhqMjIXoTDRP4Huoy9uMUWixaj1KsHnPX1CIaVWkl8q/ +1Q2SSzn3SukCltONqWVWFuiQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsOKkxj YSo0MSZd67t5PBS6a7Y3MB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA4BNQD8PrPCce8lLCqRON6WOwX6pCO5f8C8kZSLI1m1wWLVIb7SWm N2xtSJDjOsO5QTRWQjJAR2WtJiTTvzYTlo1l5ABAlB5thnIzWChDRV/FjCtedb19 z9DPyVbgrCoTwbMVBq1ItO/37cr3Yy4oakYT3G5+E5f2vLtHI8nzHfRl2CBuV3KS 7MECZeU5Rig5MHOD7HaLcv1FA/HFr1YuTJOXFBLFWKDEz7sawMynKKoO9j4kQusl KFCyKwnj199D9qsQfr3pYICNZ0VeYlPxe7r5zdq04Nfvlo4S+4ck3+niLO96NdoP A2SLEU8R2XfeA396KqshDyPLBM9hwu2p -----END CERTIFICATE-----Generated at Sun Jan 25 18:54:30 2026 by rpki-client