This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: oY3t2kIhHN6oc/p+9aKI+NKBRPVqep+KOcNO0xLPzHo= Subject key identifier: 6C:A3:1C:11:44:D6:51:E0:D7:60:23:08:F7:C7:F8:97:C6:33:5F:5B Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 01AE Signing time: Sun 25 Jan 2026 02:29:27 +0000 Manifest this update: Sun 25 Jan 2026 02:29:26 +0000 Manifest next update: Sun 01 Feb 2026 02:29:26 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: xwEYvoPlrWG0fEm242RriTUWGmAH+ePcLiAmly4w0rs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Jan 25 02:29:26 2026 GMT Not After : Feb 1 02:29:26 2026 GMT Subject: CN=69758007-898f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:2f:c1:5d:ee:22:51:07:44:11:47:fb:3e:66: c6:2e:6d:e2:40:eb:09:08:f4:8a:86:40:08:b8:c2: 10:a1:2d:3d:e4:54:c4:e7:1d:1b:52:7d:79:11:ae: a6:ab:46:b8:9e:77:38:21:e8:6f:7f:63:d9:09:91: 85:82:f5:1e:ac:c9:15:ca:4f:5e:dd:95:37:5c:80: 76:72:92:91:24:8d:20:b8:8c:16:52:82:4a:c5:91: 5d:e2:94:53:df:5d:7d:5e:26:87:fc:91:0a:4f:d0: 32:0a:5e:9d:6f:48:84:82:77:19:5b:59:8c:94:8c: cb:a3:2a:27:39:a2:ee:44:34:51:46:8c:34:eb:cb: 74:78:6c:43:80:4a:8c:df:67:3d:4a:cb:c3:dd:1e: e5:15:ff:8e:20:d5:f6:9a:18:df:c4:40:89:86:e2: 7c:3f:fb:65:a6:b6:26:01:b2:ee:0b:7d:0a:59:9f: 71:c0:ca:29:a4:e9:7d:74:8c:7c:27:a7:b2:43:f2: bc:48:85:9b:aa:1e:35:e4:75:98:7d:1f:23:ef:7a: 4d:32:2d:a9:e5:d7:8f:93:c5:2e:a3:c2:42:c4:f2: 33:d9:f6:14:6d:64:82:55:65:9d:08:f6:36:40:a8: f1:ba:d7:5a:2c:e1:3e:01:82:49:00:7f:88:50:a8: 86:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A3:1C:11:44:D6:51:E0:D7:60:23:08:F7:C7:F8:97:C6:33:5F:5B X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c5:4d:a4:66:d0:dc:57:f4:5f:dd:93:25:d7:aa:3b:af:65: da:b3:1f:b9:77:d2:0e:70:cf:28:20:01:e8:c5:fb:09:63:f3: 17:20:47:2f:d6:d2:4f:4d:d8:b9:ad:6d:1f:26:76:15:0d:01: ca:ee:b3:ba:c1:95:f3:40:e1:51:3c:d3:63:52:5f:03:40:5d: 7b:c6:15:27:f1:79:1f:f3:52:f5:b4:3b:68:e9:8d:26:64:1f: 92:04:d6:10:df:fd:ec:c1:b2:8c:f1:d7:d0:08:89:c3:5e:09: 85:8b:aa:04:e5:03:d1:7f:41:73:11:51:c9:13:84:7c:8a:0a: 31:b0:77:74:1d:c7:19:cc:73:6e:af:46:45:ef:31:df:98:50: 77:dc:45:9f:48:bd:dd:f1:da:72:21:a3:89:01:80:31:f1:78: 32:31:7f:5b:a8:a9:56:6d:58:ea:45:37:1c:53:fb:95:fb:7e: 2d:ea:9c:55:88:f9:16:4b:73:2f:a9:fc:56:91:c4:8c:41:cf: 24:08:cb:47:04:6f:84:21:af:46:04:c8:53:9e:30:8e:18:12: e7:1c:a9:1c:2a:25:da:cb:3b:3e:82:ab:0c:78:16:a2:ae:5a: 55:8b:f6:1f:95:09:28:26:b8:92:0e:b2:1e:8b:02:af:0f:0f: 88:c5:8e:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjYwMTI1MDIyOTI2WhcNMjYwMjAxMDIyOTI2WjAYMRYwFAYD VQQDDA02OTc1ODAwNy04OThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiS/BXe4iUQdEEUf7PmbGLm3iQOsJCPSKhkAIuMIQoS095FTE5x0bUn15Ea6m q0a4nnc4Iehvf2PZCZGFgvUerMkVyk9e3ZU3XIB2cpKRJI0guIwWUoJKxZFd4pRT 3119XiaH/JEKT9AyCl6db0iEgncZW1mMlIzLoyonOaLuRDRRRow068t0eGxDgEqM 32c9SsvD3R7lFf+OINX2mhjfxECJhuJ8P/tlprYmAbLuC30KWZ9xwMoppOl9dIx8 J6eyQ/K8SIWbqh415HWYfR8j73pNMi2p5dePk8Uuo8JCxPIz2fYUbWSCVWWdCPY2 QKjxutdaLOE+AYJJAH+IUKiGrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyjHBFE 1lHg12AjCPfH+JfGM19bMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwxU2kZtDcV/Rf3ZMl16o7r2Xasx+5d9IOcM8oIAHoxfsJY/MXIEcv 1tJPTdi5rW0fJnYVDQHK7rO6wZXzQOFRPNNjUl8DQF17xhUn8Xkf81L1tDto6Y0m ZB+SBNYQ3/3swbKM8dfQCInDXgmFi6oE5QPRf0FzEVHJE4R8igoxsHd0HccZzHNu r0ZF7zHfmFB33EWfSL3d8dpyIaOJAYAx8XgyMX9bqKlWbVjqRTccU/uV+34t6pxV iPkWS3MvqfxWkcSMQc8kCMtHBG+EIa9GBMhTnjCOGBLnHKkcKiXayzs+gqsMeBai rlpVi/YflQkoJriSDrIeiwKvDw+IxY6S -----END CERTIFICATE-----Generated at Sun Jan 25 07:48:05 2026 by rpki-client