This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: Jckhvw514KUGe7ZXLpGzyq267+L0/Gs+6/xv3sSJ8n8= Subject key identifier: DD:7C:24:50:D2:60:FF:BA:B7:BF:08:7F:55:3C:B0:E6:5E:10:12:D1 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 01D1 Signing time: Sun 25 Jan 2026 02:12:38 +0000 Manifest this update: Sun 25 Jan 2026 02:12:37 +0000 Manifest next update: Sun 01 Feb 2026 02:12:37 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: p8q0piMsh51Q8KI4sEdXFrKoaWaV7nflLPbcuW+ROm8=) 2: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: QBXnAMzlDGSKoRSO4pH4e+ph6DI/p8Rnis/UQXiltLI=) 3: 838096CA3BD311EE84056461C4F9AE02.roa (hash: qPm/ufkdsJxNsrbbunXVlojDF60zf8kn3PrHeAe5mEc=) 4: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: YzDFDZ54fUqzOihykhyRhXUfQqVEw3BeHxpAnhoKUlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Jan 25 02:12:37 2026 GMT Not After : Feb 1 02:12:37 2026 GMT Subject: CN=69757c16-05c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b9:ba:a9:8a:33:18:30:74:4b:83:35:90:61: f7:48:05:66:02:8d:9c:9f:2d:a9:99:b4:9a:3f:d0: b1:a5:c7:cd:7d:77:1f:a3:d5:60:bb:5a:eb:b9:ec: 07:49:dc:ef:4d:33:8b:ac:de:b4:36:b8:64:90:c8: 23:80:5e:f2:49:73:55:0f:d1:bc:17:f0:fd:df:50: 1e:c7:ad:7f:21:77:78:fd:07:2b:14:1b:39:a1:01: 71:ad:d6:87:f2:48:08:be:a8:a5:40:66:64:96:e3: c3:2f:0b:b0:d9:20:99:21:e6:75:6b:e1:91:61:45: b2:15:7e:3c:7e:24:a9:e0:9f:7b:be:5b:ab:20:03: ff:dd:d1:92:d4:bc:04:ab:3f:78:18:5c:ef:6d:85: 1a:a7:9b:42:52:5d:4d:18:e4:f3:92:4a:8c:8e:a0: cd:49:7a:d5:57:7e:fe:7f:2e:a2:23:9f:c3:e9:11: da:67:85:87:1c:c7:6c:31:ee:c0:77:42:0d:13:40: 03:96:76:0c:08:e4:88:5a:bd:0e:9b:26:bb:2d:6a: 37:cc:cc:f0:32:6c:d4:6b:13:8d:68:c3:5d:08:44: 66:b6:72:7d:e4:78:ef:36:7b:0f:95:a1:07:8e:66: 7f:10:1b:8a:9c:d1:27:e8:25:04:be:09:57:72:68: 02:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7C:24:50:D2:60:FF:BA:B7:BF:08:7F:55:3C:B0:E6:5E:10:12:D1 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:2f:b4:ab:7a:dd:69:52:81:18:f1:d1:48:fe:32:06:de:af: b5:63:74:3f:87:46:9b:fa:d9:6b:39:e0:f2:54:e9:a1:19:28: b7:3f:ad:f8:3b:3f:0a:19:1d:02:ff:ae:b4:7e:08:a7:d8:d1: 82:a8:91:ee:bf:50:0d:45:3b:13:f7:af:4e:4f:df:bc:03:39: 2a:6b:fe:8e:54:f7:73:b4:3b:b7:6a:57:83:3d:7a:d9:dd:cf: 35:47:a9:45:bf:4b:01:ca:67:63:5b:5f:09:34:42:35:b2:78: 3b:18:25:f1:51:0d:a3:5e:1a:5e:83:35:06:0b:e8:77:ac:45: 00:c8:63:32:11:fc:b9:cc:3a:e0:b2:5f:1f:df:76:6d:ea:9f: af:ad:3a:47:53:f8:1d:5e:95:89:b4:c8:77:d8:72:df:e3:1f: 7f:ec:5c:3b:5d:a9:d9:fd:a5:ad:97:22:bf:1f:82:84:37:23: 1e:7e:98:c9:76:78:8c:48:17:4b:d6:a6:47:21:63:23:0a:54: ef:d5:20:b2:49:8d:60:5c:f7:bb:f5:5a:03:6b:35:5d:74:5d: bc:c5:04:75:0d:ca:25:43:97:4d:94:84:57:60:fc:9b:da:fc: ed:86:a1:83:bf:a3:5c:92:8d:16:e5:9b:68:2c:1d:7e:af:a0: 48:d6:8a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjYwMTI1MDIxMjM3WhcNMjYwMjAxMDIxMjM3WjAYMRYwFAYD VQQDDA02OTc1N2MxNi0wNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7m6qYozGDB0S4M1kGH3SAVmAo2cny2pmbSaP9CxpcfNfXcfo9Vgu1rruewH SdzvTTOLrN60NrhkkMgjgF7ySXNVD9G8F/D931Aex61/IXd4/QcrFBs5oQFxrdaH 8kgIvqilQGZkluPDLwuw2SCZIeZ1a+GRYUWyFX48fiSp4J97vlurIAP/3dGS1LwE qz94GFzvbYUap5tCUl1NGOTzkkqMjqDNSXrVV37+fy6iI5/D6RHaZ4WHHMdsMe7A d0INE0ADlnYMCOSIWr0Omya7LWo3zMzwMmzUaxONaMNdCERmtnJ95HjvNnsPlaEH jmZ/EBuKnNEn6CUEvglXcmgC2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN18JFDS YP+6t78If1U8sOZeEBLRMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABL7Sret1pUoEY8dFI/jIG3q+1Y3Q/h0ab+tlrOeDyVOmhGSi3P634 Oz8KGR0C/660fgin2NGCqJHuv1ANRTsT969OT9+8Azkqa/6OVPdztDu3aleDPXrZ 3c81R6lFv0sBymdjW18JNEI1sng7GCXxUQ2jXhpegzUGC+h3rEUAyGMyEfy5zDrg sl8f33Zt6p+vrTpHU/gdXpWJtMh32HLf4x9/7Fw7XanZ/aWtlyK/H4KENyMefpjJ dniMSBdL1qZHIWMjClTv1SCySY1gXPe79VoDazVddF28xQR1DcolQ5dNlIRXYPyb 2vzthqGDv6Ncko0W5ZtoLB1+r6BI1ood -----END CERTIFICATE-----Generated at Sun Jan 25 15:45:41 2026 by rpki-client