This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: 8Ycr5EaDEjQZePG7tbhrmXuz+D/haqBDGYi7iApCRGc= Subject key identifier: D4:CE:C9:F7:3E:90:6A:F8:CD:BD:4E:5B:CA:D1:C1:75:11:56:8D:92 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0218 Signing time: Sat 17 Jan 2026 01:23:30 +0000 Manifest this update: Sat 17 Jan 2026 01:23:30 +0000 Manifest next update: Sat 24 Jan 2026 01:23:30 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: Hqgxihydpuvtgh0ylrYER8v2RQ0b30nYe6Usu3bzj44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 01:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Jan 17 01:23:30 2026 GMT Not After : Jan 24 01:23:30 2026 GMT Subject: CN=696ae492-10e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:72:ae:31:57:42:a2:51:c5:b9:3e:85:5b:f9: 4d:d2:b5:ec:3b:b3:68:b2:d6:8d:bf:f9:2e:52:e9: ae:a9:c8:38:79:a4:31:9e:f9:73:21:37:01:c9:49: c7:9a:7b:ff:61:ca:a0:24:ce:68:d9:b9:03:7b:a6: 15:8a:da:87:e9:3e:d2:be:be:37:38:83:f4:d9:2e: 37:54:80:ee:14:42:65:c4:04:3c:79:af:a2:c8:be: 83:d2:d0:b4:0e:54:5c:a5:c2:82:25:59:b0:27:7a: 32:04:ee:52:53:65:de:62:74:93:0c:81:ee:b7:97: 90:80:36:c1:9b:dc:d7:ff:60:85:5a:bc:1f:ba:6d: 32:75:33:47:95:6d:87:47:c2:c5:a1:87:27:b4:9a: 35:9a:a6:10:22:33:6d:1d:12:f8:50:b9:e9:2c:14: 5e:cf:a8:16:ba:94:bb:44:3f:22:5d:d8:f3:4c:61: cb:d2:a9:55:db:44:fa:8d:ef:c1:44:1f:75:e0:c7: c5:32:58:9b:86:0d:df:25:c3:c4:45:43:e3:f2:9a: a6:54:aa:52:7c:ea:fc:80:5b:21:21:02:46:4c:8c: e7:e2:90:58:7b:dc:02:1b:de:c2:08:d5:5a:68:15: e7:c1:a1:5b:f2:73:63:0a:4a:06:2d:c2:97:90:cd: 11:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CE:C9:F7:3E:90:6A:F8:CD:BD:4E:5B:CA:D1:C1:75:11:56:8D:92 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:6d:c6:5f:f7:7d:07:e5:29:95:2d:c1:61:80:4b:b9:87:83: ad:25:18:8e:e4:fe:d7:dc:b9:52:42:3f:f9:b5:cb:c7:1e:36: 58:9f:ba:9c:7b:08:34:81:b7:3e:38:7d:7c:f2:53:80:a1:b1: 42:16:6b:49:ed:da:3d:f8:12:06:f5:b9:5c:46:0e:e4:df:9f: 71:cd:5e:aa:52:82:a2:b1:28:aa:ac:a3:b5:28:1d:2d:9c:ee: ff:c9:64:38:f5:d9:26:b1:e5:63:40:5a:6b:74:19:7b:52:cd: 03:01:7c:55:2b:f6:77:be:10:59:6d:1c:2e:93:48:9f:f8:6a: f3:84:2e:3a:67:41:45:b3:f8:60:55:9d:cf:95:5a:da:bd:de: 0b:cb:b9:7d:6f:16:85:3d:70:06:6b:23:28:16:96:9d:b1:70: 51:9a:0b:38:f6:33:96:1a:37:cb:8a:2f:67:fa:b8:c7:74:7f: 21:0b:df:26:1e:7c:74:a5:8a:28:59:60:2f:c4:82:74:e6:67: ac:bd:15:2f:85:09:19:06:21:71:c6:77:bd:8c:9b:56:b3:d4: 3c:2e:01:47:d1:70:7f:3c:6e:9e:3b:9a:5c:aa:5b:fd:0d:28: cc:94:e0:22:a3:61:32:ad:05:d4:24:55:12:13:43:69:47:3b: 64:f3:4d:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjYwMTE3MDEyMzMwWhcNMjYwMTI0MDEyMzMwWjAYMRYwFAYD VQQDDA02OTZhZTQ5Mi0xMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHKuMVdColHFuT6FW/lN0rXsO7NostaNv/kuUumuqcg4eaQxnvlzITcByUnH mnv/YcqgJM5o2bkDe6YVitqH6T7Svr43OIP02S43VIDuFEJlxAQ8ea+iyL6D0tC0 DlRcpcKCJVmwJ3oyBO5SU2XeYnSTDIHut5eQgDbBm9zX/2CFWrwfum0ydTNHlW2H R8LFoYcntJo1mqYQIjNtHRL4ULnpLBRez6gWupS7RD8iXdjzTGHL0qlV20T6je/B RB914MfFMlibhg3fJcPERUPj8pqmVKpSfOr8gFshIQJGTIzn4pBYe9wCG97CCNVa aBXnwaFb8nNjCkoGLcKXkM0RbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTOyfc+ kGr4zb1OW8rRwXURVo2SMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCbcZf930H5SmVLcFhgEu5h4OtJRiO5P7X3LlSQj/5tcvHHjZYn7qc ewg0gbc+OH188lOAobFCFmtJ7do9+BIG9blcRg7k359xzV6qUoKisSiqrKO1KB0t nO7/yWQ49dkmseVjQFprdBl7Us0DAXxVK/Z3vhBZbRwuk0if+GrzhC46Z0FFs/hg VZ3PlVravd4Ly7l9bxaFPXAGayMoFpadsXBRmgs49jOWGjfLii9n+rjHdH8hC98m Hnx0pYooWWAvxIJ05mesvRUvhQkZBiFxxne9jJtWs9Q8LgFH0XB/PG6eO5pcqlv9 DSjMlOAio2EyrQXUJFUSE0NpRztk803u -----END CERTIFICATE-----Generated at Sun Jan 18 03:14:34 2026 by rpki-client