This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft File: Y35CcZzKBnZlOgprNKBujlSsBe8.mft (raw, json) Hash identifier: EANcBf2QcDLxht3ZHGOvxgutz4br7joBrjuApKxNNzE= Subject key identifier: D5:FF:E9:01:99:BF:33:3F:AA:56:DB:ED:84:71:F6:71:A0:49:11:A7 Authority key identifier: 63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF Certificate issuer: /CN=A91FECFD/serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Certificate serial: 0959 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft Manifest number: 0953 Signing time: Sat 24 Jan 2026 19:34:15 +0000 Manifest this update: Sat 24 Jan 2026 19:34:15 +0000 Manifest next update: Sat 31 Jan 2026 19:34:15 +0000 Files and hashes: 1: Y35CcZzKBnZlOgprNKBujlSsBe8.crl (hash: Hy2h25eiaSEvDnCOLlz3CkbAnCvueC/uxycK/YanCx8=) 2: 995F3DCEAF7811EABCA9AC1DC4F9AE02.roa (hash: ZNkH5Sj7XHBs6ufHKPHidPlMntGP72EIG2BMLfQDnC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2393 (0x959) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECFD, serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Validity Not Before: Jan 24 19:34:15 2026 GMT Not After : Jan 31 19:34:15 2026 GMT Subject: CN=69751eb7-0ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:13:34:18:a2:60:1a:fa:e4:9c:1a:a5:fc:fc: 7e:d0:19:d5:62:9e:a9:23:a4:89:29:2e:39:a1:80: 64:77:3c:83:e3:f3:24:17:91:c0:c6:a8:75:51:13: e0:c3:51:b3:e1:8a:f8:59:f2:29:45:c3:f9:70:96: 15:a7:b1:98:a6:20:cb:d0:eb:f6:7d:fc:c7:fa:c6: 76:ac:7a:dc:5c:f4:35:1f:16:74:3c:9e:d9:11:b6: 66:92:c4:9d:e4:c3:fb:8b:f0:e7:7f:74:d1:d2:07: 5c:61:47:62:35:b2:b6:92:24:97:77:fd:3b:34:70: 3a:11:cf:d4:9e:92:39:01:54:e0:e7:4c:a4:9d:e0: f1:35:80:c6:b9:d0:96:22:8d:d4:9b:92:d3:52:5f: ba:d0:66:25:ee:c5:62:c4:03:24:8c:52:bd:21:e8: 40:a9:ef:31:8d:8f:b7:1f:84:9f:f0:7e:46:c6:c1: cd:62:54:1c:af:83:90:b3:40:96:ca:35:b9:8e:46: d3:86:3b:85:49:3c:3d:ff:4a:9d:0d:04:53:67:47: 17:97:72:c9:8b:04:e0:eb:a9:a1:c0:ff:67:d6:0c: 1c:01:39:14:1a:2c:8c:a1:b4:3c:ca:bb:ed:cc:a0: 4b:98:7d:06:86:9d:da:0c:60:c7:0b:50:f7:07:e5: b5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:FF:E9:01:99:BF:33:3F:AA:56:DB:ED:84:71:F6:71:A0:49:11:A7 X509v3 Authority Key Identifier: keyid:63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:2e:c7:7c:7a:6a:d9:07:1e:2c:85:55:56:40:13:a7:22:93: e1:a1:b5:f0:42:dd:d6:32:42:84:aa:72:25:e9:0e:8a:6b:5b: fc:bd:95:74:fd:e6:d4:bf:6f:79:62:e1:24:8a:de:ab:83:35: f9:8d:5f:b9:f3:c4:b0:9c:6e:e3:c9:ed:eb:b7:4a:0c:f2:3c: a9:b9:db:64:1c:3b:2d:ee:04:c2:95:4e:d3:de:17:51:ca:fb: fa:4d:ee:0d:5f:47:35:4e:b5:12:f1:fe:9d:86:4f:01:0a:e9: 5c:6f:4c:e5:5f:53:6d:18:50:9c:9e:6e:b1:83:23:6a:df:65: 92:d3:96:c1:f4:7c:70:70:ca:6c:04:0c:9e:5f:c5:18:60:3a: 05:af:60:2e:d8:e8:d9:2e:f9:09:38:48:8b:0e:0d:5c:d3:a4: fc:84:08:07:89:5d:c2:0d:c4:48:be:7b:2b:12:03:e5:de:2e: 3c:b7:c5:9c:d3:08:b6:ea:fa:42:e5:fb:62:2a:aa:43:e7:33: 23:f2:5b:f4:9e:b6:69:3c:c8:ef:e0:ed:f0:b5:03:12:e3:92: ba:e5:0b:7e:cc:48:4c:c4:7b:b1:d3:f9:5d:22:72:7b:7c:85: bc:b9:6d:b0:73:a6:d0:59:b4:74:d4:52:9b:37:67:ca:44:38: ff:10:ce:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDRkQxMTAvBgNVBAUTKDYzN0U0MjcxOUNDQTA2NzY2NTNBMEE2QjM0QTA2RThF NTRBQzA1RUYwHhcNMjYwMTI0MTkzNDE1WhcNMjYwMTMxMTkzNDE1WjAYMRYwFAYD VQQDDA02OTc1MWViNy0wZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhM0GKJgGvrknBql/Px+0BnVYp6pI6SJKS45oYBkdzyD4/MkF5HAxqh1URPg w1Gz4Yr4WfIpRcP5cJYVp7GYpiDL0Ov2ffzH+sZ2rHrcXPQ1HxZ0PJ7ZEbZmksSd 5MP7i/Dnf3TR0gdcYUdiNbK2kiSXd/07NHA6Ec/UnpI5AVTg50ykneDxNYDGudCW Io3Um5LTUl+60GYl7sVixAMkjFK9IehAqe8xjY+3H4Sf8H5GxsHNYlQcr4OQs0CW yjW5jkbThjuFSTw9/0qdDQRTZ0cXl3LJiwTg66mhwP9n1gwcATkUGiyMobQ8yrvt zKBLmH0Ghp3aDGDHC1D3B+W1HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNX/6QGZ vzM/qlbb7YRx9nGgSRGnMB8GA1UdIwQYMBaAFGN+QnGcygZ2ZToKazSgbo5UrAXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNGRC8zN0EwNDI2NEFG NzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0JuWmxPZ3ByTktCdWpsU3NC ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kzNUNjWnpLQm5abE9ncHJOS0J1amxTc0JlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUNGRC8zN0EwNDI2NEFGNzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0Ju WmxPZ3ByTktCdWpsU3NCZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiLsd8emrZBx4shVVWQBOnIpPhobXwQt3WMkKEqnIl6Q6Ka1v8vZV0 /ebUv295YuEkit6rgzX5jV+588SwnG7jye3rt0oM8jypudtkHDst7gTClU7T3hdR yvv6Te4NX0c1TrUS8f6dhk8BCulcb0zlX1NtGFCcnm6xgyNq32WS05bB9HxwcMps BAyeX8UYYDoFr2Au2OjZLvkJOEiLDg1c06T8hAgHiV3CDcRIvnsrEgPl3i48t8Wc 0wi26vpC5ftiKqpD5zMj8lv0nrZpPMjv4O3wtQMS45K65Qt+zEhMxHux0/ldInJ7 fIW8uW2wc6bQWbR01FKbN2fKRDj/EM6f -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:01 2026 by rpki-client