This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: L0Qjl7w1JzGLBV4OmpW0BLTNeFQY30AArk3ymbYbHLY= Subject key identifier: 7F:45:33:ED:B9:12:4D:36:4F:94:F6:17:9C:D2:3F:AF:F0:D4:9C:55 Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 7051595DC59312ADAC0D6DE6F75F393E146805C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 0225 Signing time: Sat 24 Jan 2026 19:51:59 +0000 Manifest this update: Sat 24 Jan 2026 19:46:59 +0000 Manifest next update: Sun 25 Jan 2026 21:54:59 +0000 Files and hashes: 1: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: kaULZDC6XCfi7x2p6IJ/ygWV6uSlBhFSJ4hHgh1euqM=) 2: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) 3: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) 4: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: n5JUDGRi9ZJFKDV/dpwe2T6FvwWkoJNRG6bp6Uyf7sg=) 5: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 6: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: ookmbsWFbg+9xHZ1MlZYR8C8SeTg9Fi1QoqMLsxk6Xs=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 21:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:51:59:5d:c5:93:12:ad:ac:0d:6d:e6:f7:5f:39:3e:14:68:05:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Jan 24 19:46:59 2026 GMT Not After : Jan 25 21:54:59 2026 GMT Subject: CN=7F4533EDB9124D364F94F6179CD23FAFF0D49C55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:bc:5d:f8:39:aa:b6:d1:2b:9a:15:8b:a1:4f: 39:2f:ba:10:3a:80:2c:d4:79:eb:4c:98:be:3f:1c: c6:1d:5a:49:3a:e1:0e:b3:3c:59:fc:ad:ab:6d:4b: cc:e5:77:3f:a1:01:14:bd:3c:48:29:22:91:70:d3: fd:c9:b9:06:09:fb:3b:a5:19:8c:90:ff:fb:bb:32: 48:7f:02:85:c2:1f:44:94:4a:91:e4:b7:b3:4e:29: d5:d4:3a:2e:19:e3:09:ad:a7:15:dc:3e:d5:c3:80: 9e:b4:c4:62:72:f2:da:c2:70:1b:fa:70:86:3c:a3: f2:bc:1a:9e:18:0e:95:f4:92:9b:4f:a6:ee:2f:22: d0:0c:d1:03:e8:78:6a:1a:5d:84:26:aa:43:28:69: ee:37:38:c1:03:de:d6:c9:1b:e0:da:55:81:01:bf: b5:01:68:50:ec:f9:4b:e5:02:3a:ea:fa:b6:4e:ea: 22:d5:d2:a0:06:91:a2:d4:19:cc:10:ee:6c:81:6a: 17:59:ff:61:88:04:fc:8a:d9:aa:f2:9c:d2:6d:e0: 5d:d3:50:58:ad:cf:18:28:b3:79:b1:ca:36:ae:05: 09:1d:1f:71:87:17:21:5d:b7:7c:a9:5f:c7:67:58: 9a:5e:1f:42:05:81:22:90:28:e9:43:d6:ad:c3:94: d4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:45:33:ED:B9:12:4D:36:4F:94:F6:17:9C:D2:3F:AF:F0:D4:9C:55 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:59:44:d9:a4:c0:4f:00:6f:52:03:b8:3f:fa:91:cd:96:a7: b6:4a:73:6a:9d:02:b3:08:c1:af:16:e6:d9:46:7b:9b:d6:44: 62:01:76:a1:18:f3:59:ba:9d:b1:6a:0d:84:ad:79:6d:67:46: ea:37:7f:7b:5f:4b:dd:55:41:92:42:36:32:0d:14:12:ca:7c: 4e:ee:47:ca:dc:cd:72:31:4a:a4:7c:36:d5:df:e5:b8:3c:0b: 04:5b:65:c3:71:e8:23:35:88:90:99:fc:d0:c1:76:ea:32:1e: da:0e:c0:9e:fb:ea:15:b1:c4:06:d8:4f:89:b0:6a:f8:64:6c: 8b:0f:21:6e:9d:ee:c2:ea:db:4d:6d:d1:14:fa:e9:75:f9:02: 18:3f:41:c2:31:d9:15:d2:cf:89:80:ea:74:06:d0:b9:c8:e5: ff:27:31:cf:08:85:9c:f2:a6:01:4e:98:8d:2b:cc:c8:e0:47: a5:52:43:01:f8:eb:8f:3c:c6:c3:e4:8e:ad:3c:52:89:9e:c3: 06:f2:fd:5e:07:6d:40:8b:12:e8:ec:60:13:15:55:3f:d0:7e: ec:5d:b5:2b:02:31:90:1a:bd:64:95:68:3a:d9:d1:f1:06:42: 3c:de:44:d0:82:15:4e:7a:b5:c4:20:d5:61:60:30:97:4e:59: 85:68:4c:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcFFZXcWTEq2sDW3m9185PhRoBcYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI2MDEyNDE5NDY1OVoX DTI2MDEyNTIxNTQ1OVowMzExMC8GA1UEAxMoN0Y0NTMzRURCOTEyNEQzNjRGOTRG NjE3OUNEMjNGQUZGMEQ0OUM1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI+8Xfg5qrbRK5oVi6FPOS+6EDqALNR560yYvj8cxh1aSTrhDrM8Wfytq21L zOV3P6EBFL08SCkikXDT/cm5Bgn7O6UZjJD/+7sySH8ChcIfRJRKkeS3s04p1dQ6 LhnjCa2nFdw+1cOAnrTEYnLy2sJwG/pwhjyj8rwanhgOlfSSm0+m7i8i0AzRA+h4 ahpdhCaqQyhp7jc4wQPe1skb4NpVgQG/tQFoUOz5S+UCOur6tk7qItXSoAaRotQZ zBDubIFqF1n/YYgE/IrZqvKc0m3gXdNQWK3PGCizebHKNq4FCR0fcYcXIV23fKlf x2dYml4fQgWBIpAo6UPWrcOU1HMCAwEAAaOCAhswggIXMB0GA1UdDgQWBBR/RTPt uRJNNk+U9hec0j+v8NScVTAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAsllE2aTATwBvUgO4P/qRzZantkpzap0CswjBrxbm2UZ7m9ZE YgF2oRjzWbqdsWoNhK15bWdG6jd/e19L3VVBkkI2Mg0UEsp8Tu5HytzNcjFKpHw2 1d/luDwLBFtlw3HoIzWIkJn80MF26jIe2g7AnvvqFbHEBthPibBq+GRsiw8hbp3u wurbTW3RFPrpdfkCGD9BwjHZFdLPiYDqdAbQucjl/ycxzwiFnPKmAU6YjSvMyOBH pVJDAfjrjzzGw+SOrTxSiZ7DBvL9XgdtQIsS6OxgExVVP9B+7F21KwIxkBq9ZJVo OtnR8QZCPN5E0IIVTnq1xCDVYWAwl05ZhWhMMg== -----END CERTIFICATE-----Generated at Sun Jan 25 08:02:12 2026 by rpki-client