This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: VDSo4L3YLCc+7npoRZapHUYvCHwgZKsuxlV0vMLb82o= Subject key identifier: 97:63:90:EA:66:07:A3:88:B2:FF:09:83:0A:8A:D1:7C:ED:87:D1:0E Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: 0128 Signing time: Sun 25 Jan 2026 03:52:12 +0000 Manifest this update: Sun 25 Jan 2026 03:52:11 +0000 Manifest next update: Sun 01 Feb 2026 03:52:11 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: N6+zVXKLL0HbuCZcsDmK4kv/+J3eJbSRhHYTWj/YI+Q=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: EPqvpxlJgwQtY4nw1cFwMuEYfLLzI7V4J9A9JpW8gvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Jan 25 03:52:11 2026 GMT Not After : Feb 1 03:52:11 2026 GMT Subject: CN=6975936c-0d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:37:f5:b1:88:3d:26:11:f9:f3:f6:fc:2a:c0: ee:56:62:f6:35:b1:6e:97:46:12:af:f4:fe:96:69: f4:1d:54:4b:99:77:fe:90:b8:e0:cf:14:d2:27:0d: d4:b5:5e:2d:69:61:61:3d:d8:97:26:02:7b:e8:d0: da:ef:e5:2b:ac:46:e8:47:d9:08:d6:cb:98:1d:46: 0e:63:7e:16:6b:38:9d:20:56:73:14:07:5f:4e:55: d1:01:e8:d4:55:16:ce:34:45:5e:4a:e5:76:45:54: 06:20:f6:3f:1a:7d:68:00:f1:c3:a6:a8:cd:7d:33: 23:63:9d:03:90:74:5d:49:d6:1f:f1:f1:18:18:7f: 61:cd:3b:ee:3f:d8:f5:66:d0:89:de:6e:d7:d9:1b: 50:dd:64:85:a6:b2:2a:5e:bf:e8:9f:d3:89:1b:7e: 10:5e:98:2a:de:d8:f3:5e:2b:21:47:2e:c9:95:37: 95:63:44:22:f9:f5:a0:27:19:1e:3c:a6:10:6a:91: 2e:95:37:23:aa:33:d3:2a:ba:33:14:41:13:89:ff: 0c:d6:27:ed:b6:9f:98:7b:01:b8:f4:d3:a5:65:59: d3:77:8d:3f:43:60:bc:f2:d2:b0:a8:15:1c:af:d6: 2d:5f:90:91:4d:da:c0:17:23:36:d3:db:54:91:c5: b2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:63:90:EA:66:07:A3:88:B2:FF:09:83:0A:8A:D1:7C:ED:87:D1:0E X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:03:47:08:2a:e5:5a:1f:7d:f4:30:a6:32:db:79:9b:f3:4a: 2f:27:8f:91:90:4e:f3:c5:65:1e:14:a0:d9:bc:10:fd:be:44: b2:c5:4a:dd:0a:bb:65:1a:83:7d:b7:fb:07:ec:5d:c3:1e:8c: 7e:aa:aa:3e:f9:c4:2a:68:fc:8b:a1:0a:90:89:72:02:d9:d4: 94:fe:b8:75:be:f8:b1:ed:f2:80:5c:5b:8f:26:ec:f0:b0:8b: 8b:5d:77:e5:3b:93:b3:43:52:bb:17:1c:ab:e6:63:3d:07:5c: b4:fa:37:af:d0:02:90:64:55:39:dc:3b:66:44:d0:98:40:75: bb:9a:7f:88:e1:87:c6:9a:8d:62:19:bc:3d:32:cd:62:cd:42: 8f:4b:8b:4b:44:a3:ad:4a:91:26:57:31:cd:2f:7b:f0:79:2d: bb:9f:ef:da:bb:1b:b0:79:01:bd:4b:1e:84:08:90:c7:5b:dd: 3f:e1:21:30:1e:b3:84:98:d5:41:be:02:bc:8a:d4:24:79:47: 01:77:8e:73:ca:f7:28:47:fc:9c:66:51:01:90:ef:ac:da:91: 42:9c:58:43:16:65:2d:5d:73:72:f9:49:3f:57:4d:4d:1b:74: 07:3e:32:1b:a3:a1:31:d9:82:83:fc:ac:61:1f:24:bd:94:89: 74:0e:39:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjYwMTI1MDM1MjExWhcNMjYwMjAxMDM1MjExWjAYMRYwFAYD VQQDDA02OTc1OTM2Yy0wZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzf1sYg9JhH58/b8KsDuVmL2NbFul0YSr/T+lmn0HVRLmXf+kLjgzxTSJw3U tV4taWFhPdiXJgJ76NDa7+UrrEboR9kI1suYHUYOY34WazidIFZzFAdfTlXRAejU VRbONEVeSuV2RVQGIPY/Gn1oAPHDpqjNfTMjY50DkHRdSdYf8fEYGH9hzTvuP9j1 ZtCJ3m7X2RtQ3WSFprIqXr/on9OJG34QXpgq3tjzXishRy7JlTeVY0Qi+fWgJxke PKYQapEulTcjqjPTKrozFEETif8M1ifttp+YewG49NOlZVnTd40/Q2C88tKwqBUc r9YtX5CRTdrAFyM209tUkcWyNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdjkOpm B6OIsv8JgwqK0Xzth9EOMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCA0cIKuVaH330MKYy23mb80ovJ4+RkE7zxWUeFKDZvBD9vkSyxUrd CrtlGoN9t/sH7F3DHox+qqo++cQqaPyLoQqQiXIC2dSU/rh1vvix7fKAXFuPJuzw sIuLXXflO5OzQ1K7Fxyr5mM9B1y0+jev0AKQZFU53DtmRNCYQHW7mn+I4YfGmo1i Gbw9Ms1izUKPS4tLRKOtSpEmVzHNL3vweS27n+/auxuweQG9Sx6ECJDHW90/4SEw HrOEmNVBvgK8itQkeUcBd45zyvcoR/ycZlEBkO+s2pFCnFhDFmUtXXNy+Uk/V01N G3QHPjIbo6Ex2YKD/KxhHyS9lIl0DjlR -----END CERTIFICATE-----Generated at Sun Jan 25 09:01:16 2026 by rpki-client