This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: BiUZa4ytwdpU6qPSoKkS/KVdO7SC+mwPI+lguew6m0c= Subject key identifier: 3A:A9:23:5B:D1:83:42:9C:BA:52:0D:3C:32:E3:7D:93:CC:FB:8B:75 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 0235 Signing time: Fri 23 Jan 2026 01:11:28 +0000 Manifest this update: Fri 23 Jan 2026 01:11:27 +0000 Manifest next update: Fri 30 Jan 2026 01:11:27 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: MKNrUuOACMApU1a23AjHlnie7CGg9sEp9FuLjAEH0+s=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 01:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Jan 23 01:11:27 2026 GMT Not After : Jan 30 01:11:27 2026 GMT Subject: CN=6972cac0-3289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e9:16:18:d9:1d:36:91:7f:5d:f4:26:c3:fb: 80:a5:c3:47:e7:d8:1b:5b:96:84:9a:f2:9e:6a:fd: d4:1e:59:d2:6b:7a:c3:ae:cc:df:d3:09:37:77:3f: 48:1f:71:85:ee:36:cd:ed:12:55:c5:e5:83:72:d3: 1b:fd:bc:e4:34:70:16:9b:88:66:10:7f:33:a7:b3: ff:d0:b4:ca:f2:ab:a5:06:4a:40:72:2e:cf:c9:68: 78:6a:24:cf:01:a8:73:ec:95:70:b5:e1:3a:bf:42: b0:fc:86:b2:5d:c3:fe:4f:7c:10:78:36:12:06:84: ff:d7:e6:63:b4:54:8b:10:8a:4a:79:cb:87:cb:5d: f6:b8:70:6c:38:dd:10:ba:5e:3d:5d:c6:03:70:f7: 71:29:b5:d1:af:de:ed:16:1c:e6:05:d2:b9:e3:bf: 01:55:31:89:76:60:98:fa:3f:ab:86:5f:5e:be:13: a0:14:84:c9:df:d4:18:bc:91:64:40:fd:57:71:3a: bd:87:04:f2:c8:51:7a:ec:f0:a2:29:b6:57:1c:3c: 27:3c:27:3b:8e:5a:d3:2e:23:1f:f7:77:82:3d:1c: 91:30:08:f1:3b:2b:d4:5f:65:7c:9c:92:07:5e:39: c9:15:a9:97:c3:12:3c:36:26:d5:dd:1e:fc:fa:29: 47:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A9:23:5B:D1:83:42:9C:BA:52:0D:3C:32:E3:7D:93:CC:FB:8B:75 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:8b:2c:44:bf:17:8e:e9:47:cd:2e:90:01:f0:b7:ae:56:38: 36:f9:4f:6f:dc:a7:4d:fc:cf:e6:75:13:07:c6:54:e9:68:b9: 82:0a:c3:9a:e5:88:13:89:29:47:d9:fa:48:1c:fd:94:7e:6f: 4b:53:c9:96:18:5a:42:eb:d8:7f:33:b2:73:ff:36:bb:ea:28: 84:12:10:e3:47:01:14:b2:55:38:8f:ec:b1:6e:3d:19:e6:5e: ba:e0:aa:2a:ec:e6:1a:c1:5f:9b:e0:df:2b:7c:62:61:4b:ef: 94:99:67:42:3a:dc:1d:7d:44:ff:c9:83:59:25:0c:08:3c:4b: 51:5c:0b:53:dd:e0:d2:64:17:b6:8b:9d:8d:1f:2a:08:b5:4d: 00:de:ff:63:c7:15:fc:60:ee:b6:65:af:06:a9:0f:0c:17:d1: d7:62:7a:ff:93:d8:b7:cd:28:d1:86:a6:93:53:d3:b2:57:aa: 03:b7:23:ef:51:d9:63:82:c9:33:1e:b9:9f:d9:df:5a:37:b5: 33:70:46:33:ea:c3:3e:f5:18:50:68:39:98:18:78:39:c1:2a: 80:fb:b3:4a:52:81:04:9a:77:d0:22:b3:13:06:5d:57:fc:08: b0:08:6b:b0:c9:4c:63:18:fd:31:36:3a:d7:83:d5:40:94:4a: 6f:25:d2:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjYwMTIzMDExMTI3WhcNMjYwMTMwMDExMTI3WjAYMRYwFAYD VQQDDA02OTcyY2FjMC0zMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoukWGNkdNpF/XfQmw/uApcNH59gbW5aEmvKeav3UHlnSa3rDrszf0wk3dz9I H3GF7jbN7RJVxeWDctMb/bzkNHAWm4hmEH8zp7P/0LTK8qulBkpAci7PyWh4aiTP Aahz7JVwteE6v0Kw/IayXcP+T3wQeDYSBoT/1+ZjtFSLEIpKecuHy132uHBsON0Q ul49XcYDcPdxKbXRr97tFhzmBdK5478BVTGJdmCY+j+rhl9evhOgFITJ39QYvJFk QP1XcTq9hwTyyFF67PCiKbZXHDwnPCc7jlrTLiMf93eCPRyRMAjxOyvUX2V8nJIH XjnJFamXwxI8NibV3R78+ilH4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqpI1vR g0KculINPDLjfZPM+4t1MB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOiyxEvxeO6UfNLpAB8LeuVjg2+U9v3KdN/M/mdRMHxlTpaLmCCsOa 5YgTiSlH2fpIHP2Ufm9LU8mWGFpC69h/M7Jz/za76iiEEhDjRwEUslU4j+yxbj0Z 5l664Koq7OYawV+b4N8rfGJhS++UmWdCOtwdfUT/yYNZJQwIPEtRXAtT3eDSZBe2 i52NHyoItU0A3v9jxxX8YO62Za8GqQ8MF9HXYnr/k9i3zSjRhqaTU9OyV6oDtyPv UdljgskzHrmf2d9aN7UzcEYz6sM+9RhQaDmYGHg5wSqA+7NKUoEEmnfQIrMTBl1X /AiwCGuwyUxjGP0xNjrXg9VAlEpvJdJl -----END CERTIFICATE-----Generated at Sun Jan 25 02:50:32 2026 by rpki-client