This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: DTnaP4sGQFXsW5kc9n1J0LxQGNdzQSsF5vTlW+LvFE0= Subject key identifier: DB:55:8F:43:0A:83:60:BC:85:9A:BA:FF:D1:56:DE:C8:FC:1F:65:1E Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0F17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0F0D Signing time: Sat 24 Jan 2026 17:17:12 +0000 Manifest this update: Sat 24 Jan 2026 17:17:11 +0000 Manifest next update: Sat 31 Jan 2026 17:17:11 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: f/5ji+3gy+SUkUtCTd1OERAIoYFoPAnPrM+Q8v7octw=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: T3+CRirqLtz1Ta4crR0HI+okuEb0BcJI1bh/9/iVPTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3863 (0xf17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Jan 24 17:17:11 2026 GMT Not After : Jan 31 17:17:11 2026 GMT Subject: CN=6974fe98-762d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b5:0d:c0:9d:50:63:63:b7:2a:ad:30:a2:bf: 73:d3:e9:6f:40:0f:e0:c5:25:c7:47:cf:65:f1:4c: a9:6f:6d:43:c7:8a:53:f4:15:20:46:fa:7c:3b:87: 76:e5:bb:d8:fe:f9:ef:d5:7f:b6:33:ec:e8:b5:a5: 64:39:5b:9e:08:dd:7e:92:73:c8:17:8d:e5:3b:93: 78:0d:06:c7:21:98:b9:64:bb:39:aa:19:1e:af:1b: 1c:9e:bc:c6:2c:a9:f7:3e:36:7e:e0:5a:d6:ad:2f: 44:b9:de:22:6e:28:2d:2b:ad:66:07:e8:25:78:f2: 8d:71:66:f6:63:8d:9d:af:db:e2:5a:8f:a6:91:de: 7b:45:14:5c:39:a7:51:59:82:3f:5d:f3:ac:2b:76: 7b:f6:1f:1f:87:15:46:0e:1c:97:eb:d3:81:cb:d9: ab:58:69:97:fe:de:df:6a:5f:9c:4e:bd:86:e8:9d: f1:b6:a2:1c:f4:08:87:5a:10:a5:ad:51:87:40:61: 76:59:f1:1e:1b:db:4c:37:65:33:da:b1:e6:34:41: 84:58:9a:37:82:2b:9a:67:33:69:e7:a9:52:b7:41: a1:fd:30:b0:2a:5a:ea:11:c1:32:24:9f:ce:00:88: 04:25:ea:ee:38:c2:54:23:30:55:8e:b0:06:2b:ba: 75:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:55:8F:43:0A:83:60:BC:85:9A:BA:FF:D1:56:DE:C8:FC:1F:65:1E X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:85:b5:4f:aa:70:37:28:c8:ef:dd:c5:1f:58:3a:7d:58:a5: 31:1c:76:e4:b0:32:e3:63:22:0e:d2:d4:57:89:32:26:aa:a5: da:3a:96:42:39:d5:0d:b6:fa:4f:b8:63:e1:07:97:07:9e:10: df:5b:41:59:44:8d:84:ba:1e:f9:ab:5e:f9:10:a2:53:59:61: 4f:c6:8d:b4:2d:6e:89:7c:1c:e4:8e:92:73:8f:67:d3:3e:e7: 31:28:df:9b:b7:44:70:e5:4f:06:8c:be:1d:c0:4f:ed:74:1c: 9a:f0:03:15:3d:0c:94:2a:d1:89:c5:ac:48:4e:47:27:15:34: b3:2d:c5:35:df:86:b9:6f:0a:0d:4b:13:18:ca:64:cf:75:0d: 23:89:79:12:d9:d7:20:c3:aa:9c:36:75:f2:dc:e8:b6:e5:e8: 29:74:3f:30:6c:44:cc:9f:45:0e:98:97:aa:59:7c:20:ac:91: b6:2d:b8:6a:bd:19:7c:1d:cf:83:05:94:5e:4d:47:12:14:77: 9b:a7:f1:a2:ee:55:1c:8b:fa:9f:e9:d5:9a:78:7c:19:8c:71: f6:20:75:85:61:b1:4c:55:57:d7:ee:8f:86:43:5a:69:ab:78: 24:fc:18:3d:0a:42:43:17:0b:06:d7:e9:a1:ac:70:57:f5:bb: 68:92:89:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjYwMTI0MTcxNzExWhcNMjYwMTMxMTcxNzExWjAYMRYwFAYD VQQDDA02OTc0ZmU5OC03NjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07UNwJ1QY2O3Kq0wor9z0+lvQA/gxSXHR89l8Uypb21Dx4pT9BUgRvp8O4d2 5bvY/vnv1X+2M+zotaVkOVueCN1+knPIF43lO5N4DQbHIZi5ZLs5qhkerxscnrzG LKn3PjZ+4FrWrS9Eud4ibigtK61mB+glePKNcWb2Y42dr9viWo+mkd57RRRcOadR WYI/XfOsK3Z79h8fhxVGDhyX69OBy9mrWGmX/t7fal+cTr2G6J3xtqIc9AiHWhCl rVGHQGF2WfEeG9tMN2Uz2rHmNEGEWJo3giuaZzNp56lSt0Gh/TCwKlrqEcEyJJ/O AIgEJeruOMJUIzBVjrAGK7p14QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtVj0MK g2C8hZq6/9FW3sj8H2UeMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAhbVPqnA3KMjv3cUfWDp9WKUxHHbksDLjYyIO0tRXiTImqqXaOpZC OdUNtvpPuGPhB5cHnhDfW0FZRI2Euh75q175EKJTWWFPxo20LW6JfBzkjpJzj2fT PucxKN+bt0Rw5U8GjL4dwE/tdBya8AMVPQyUKtGJxaxITkcnFTSzLcU134a5bwoN SxMYymTPdQ0jiXkS2dcgw6qcNnXy3Oi25egpdD8wbETMn0UOmJeqWXwgrJG2Lbhq vRl8Hc+DBZReTUcSFHebp/Gi7lUci/qf6dWaeHwZjHH2IHWFYbFMVVfX7o+GQ1pp q3gk/Bg9CkJDFwsG1+mhrHBX9btokokn -----END CERTIFICATE-----Generated at Sun Jan 25 15:23:53 2026 by rpki-client