This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: 5KpcRgaBFxDprv7KxzSPj7X8AkQRPS+zy00S3meKC28= Subject key identifier: 5F:0B:0E:8C:52:8E:F2:1C:8D:43:48:71:70:25:78:58:91:C1:01:2C Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 016E Signing time: Sun 25 Jan 2026 03:11:57 +0000 Manifest this update: Sun 25 Jan 2026 03:11:57 +0000 Manifest next update: Sun 01 Feb 2026 03:11:57 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: j3FK9nhLeksN30mKl4x15HKjmNvH5lwMRuqf05rK1Y8=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Jan 25 03:11:57 2026 GMT Not After : Feb 1 03:11:57 2026 GMT Subject: CN=697589fd-084f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:25:1a:74:67:9b:14:a1:52:18:0b:76:44: 45:0f:ce:ba:62:ad:b5:50:45:5f:94:69:22:2d:06: e2:f8:1c:00:09:cc:cf:f8:8b:d7:3c:66:c9:e6:17: 3a:0c:90:b1:71:46:60:32:17:87:bf:d1:b4:a8:4a: 7f:2f:de:f1:4c:b4:71:57:ee:ae:03:f9:5b:29:7e: 64:29:7d:01:be:ff:83:f9:78:bb:48:ca:ab:7e:05: 30:ce:ef:c0:a1:e4:0d:6a:b6:40:2c:3c:be:22:ec: e2:f6:35:2e:28:b2:67:1f:29:b0:38:ab:73:d3:ce: 88:4f:cc:64:c8:7f:d4:9d:ac:be:5b:15:0d:61:b4: 18:4b:c3:ce:c7:47:a0:dd:d3:4a:08:a4:79:6d:2a: 4b:74:4e:62:8e:cd:fc:99:8a:46:d9:e5:59:c6:90: d6:82:e9:7b:e5:0c:18:1f:e2:27:da:bd:81:33:aa: 13:9d:50:52:51:5f:e5:74:ab:e2:a1:11:f2:8d:db: 4e:98:fe:ca:29:0b:8b:64:46:56:ac:ee:ad:f4:d0: 47:3f:b6:7f:b2:13:bd:72:a9:c2:e9:eb:e2:9f:0d: 71:9b:40:25:86:36:aa:11:62:32:a2:0e:f4:bd:45: 10:e5:55:d8:65:bd:31:1a:46:17:bd:cc:44:a0:da: 84:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0B:0E:8C:52:8E:F2:1C:8D:43:48:71:70:25:78:58:91:C1:01:2C X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:4f:3c:07:b6:fe:39:43:9a:cd:09:d2:9e:84:b6:b2:64:7c: 02:17:15:82:4f:98:97:7a:22:70:a5:96:81:f9:02:51:c4:0e: cc:8c:66:cc:9c:fc:7e:bc:bc:e4:bf:f6:a6:6f:39:44:a7:4c: c7:75:c3:cc:4d:cc:dc:4a:44:5f:f8:49:7f:78:78:1a:96:bd: 0e:0a:a4:04:05:f1:c8:12:f7:ce:50:65:ec:54:a2:9d:0c:ac: 22:b9:e1:0e:1d:59:b5:2d:2f:70:5e:7a:d6:88:f5:74:33:19: d7:1a:cc:6f:e8:57:e8:28:7b:70:39:b4:4d:dd:a2:b9:b3:74: 0e:64:be:09:48:18:da:df:33:8c:a6:a8:79:2c:a7:b5:05:aa: f4:75:1c:59:5f:e5:7f:99:63:46:98:e4:b9:6a:04:2f:e8:21: d3:d3:01:d5:6d:d4:b9:0a:3e:18:a3:09:52:08:6a:0e:26:97: 04:4b:7d:4d:70:92:b0:4f:1c:97:7b:61:46:96:73:55:0d:78: a8:5d:96:96:bd:fe:68:e9:5d:8e:99:40:f7:7e:7a:03:e9:36: ec:fb:78:7f:62:7c:75:6a:f1:87:0c:c3:97:2e:07:51:16:e5: d2:e9:ee:a5:21:48:ae:75:e2:ea:b7:66:b7:cf:29:f0:ee:8c: 5a:bb:0d:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjYwMTI1MDMxMTU3WhcNMjYwMjAxMDMxMTU3WjAYMRYwFAYD VQQDDA02OTc1ODlmZC0wODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5wlGnRnmxShUhgLdkRFD866Yq21UEVflGkiLQbi+BwACczP+IvXPGbJ5hc6 DJCxcUZgMheHv9G0qEp/L97xTLRxV+6uA/lbKX5kKX0Bvv+D+Xi7SMqrfgUwzu/A oeQNarZALDy+Iuzi9jUuKLJnHymwOKtz086IT8xkyH/Unay+WxUNYbQYS8POx0eg 3dNKCKR5bSpLdE5ijs38mYpG2eVZxpDWgul75QwYH+In2r2BM6oTnVBSUV/ldKvi oRHyjdtOmP7KKQuLZEZWrO6t9NBHP7Z/shO9cqnC6evinw1xm0AlhjaqEWIyog70 vUUQ5VXYZb0xGkYXvcxEoNqEewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8LDoxS jvIcjUNIcXAleFiRwQEsMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVTzwHtv45Q5rNCdKehLayZHwCFxWCT5iXeiJwpZaB+QJRxA7MjGbM nPx+vLzkv/ambzlEp0zHdcPMTczcSkRf+El/eHgalr0OCqQEBfHIEvfOUGXsVKKd DKwiueEOHVm1LS9wXnrWiPV0MxnXGsxv6FfoKHtwObRN3aK5s3QOZL4JSBja3zOM pqh5LKe1Bar0dRxZX+V/mWNGmOS5agQv6CHT0wHVbdS5Cj4YowlSCGoOJpcES31N cJKwTxyXe2FGlnNVDXioXZaWvf5o6V2OmUD3fnoD6Tbs+3h/Ynx1avGHDMOXLgdR FuXS6e6lIUiudeLqt2a3zynw7oxauw32 -----END CERTIFICATE-----Generated at Sun Jan 25 10:39:12 2026 by rpki-client