This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: fKL0LqFWsmPfIpxr22ztlk9ltz0pb6fjrJ8kZ0Owiks= Subject key identifier: E8:2E:15:FB:09:BA:18:ED:C0:7F:AF:42:73:85:BC:A3:CB:C6:BC:34 Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 3C Signing time: Sat 17 Jan 2026 06:28:33 +0000 Manifest this update: Sat 17 Jan 2026 06:28:32 +0000 Manifest next update: Sat 24 Jan 2026 06:28:32 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: o9jEYNBcg46HkCby2LYR+eZUcryJ5/3C6pd5FkptKuc=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lVwKB14i6OpwyRz8FsA7PbQdrXdHjD1P3S/SDqyzydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Jan 17 06:28:32 2026 GMT Not After : Jan 24 06:28:32 2026 GMT Subject: CN=696b2c11-45d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:45:1d:da:89:d2:d4:0c:90:c6:93:f6:af: 74:17:d5:11:e0:b0:a9:dd:68:dd:d8:7c:38:b7:33: e9:73:91:65:48:22:d1:4a:f3:e9:8d:99:44:61:dd: 44:f3:6c:e2:22:3b:bd:8b:be:c2:a4:47:57:5d:bb: ce:5d:3a:d8:03:34:3b:22:ba:e1:0b:2e:ca:8b:be: f9:a7:79:7c:3f:b2:88:b1:e9:f3:4f:93:f9:ab:a5: 8a:7d:02:f1:95:d5:9f:d9:a1:ea:b1:cf:eb:3c:42: c7:c0:46:1c:df:4c:90:6f:60:b0:d5:df:7a:68:03: 50:27:83:22:04:1d:6a:cf:6d:8a:72:c6:4c:d8:83: 8d:3d:5d:6f:66:ec:7e:c0:bb:e8:c0:6e:e8:a2:4b: e3:0b:41:31:96:c4:62:5f:11:4d:b1:bc:0d:c2:e9: 8b:9c:db:b9:21:90:39:5f:96:aa:f9:ff:60:8a:1b: dc:fb:a2:0f:30:21:3e:6e:40:b6:da:20:b2:de:dd: 99:04:7a:bf:4e:b1:fd:df:99:be:ff:f5:24:9d:4e: 06:f6:8c:ff:9d:42:95:9a:a9:7b:f4:cd:0e:40:6b: e5:c7:3e:71:2e:a5:9f:f6:e6:fd:2e:ec:6a:c7:ee: a7:27:48:7e:ff:83:12:64:95:97:9c:61:c7:6e:d4: a9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2E:15:FB:09:BA:18:ED:C0:7F:AF:42:73:85:BC:A3:CB:C6:BC:34 X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:7d:94:ed:1f:28:c7:45:88:54:7b:36:fc:77:6b:88:24:10: cc:59:c2:ef:66:3a:28:36:04:26:c7:54:2f:2e:ba:7e:99:3c: a6:0b:b1:45:e6:61:d8:03:6e:0d:b7:34:fd:ed:c5:2c:fe:da: 32:e6:f0:32:1c:db:11:e0:89:19:5e:55:32:fd:48:3c:98:e1: ac:c2:8d:16:80:8d:3c:4a:80:12:30:cd:f7:63:76:76:a9:aa: b3:bd:e4:fc:eb:2f:a9:01:5a:61:42:8f:65:24:63:3e:ce:46: dc:b8:3c:51:52:31:9a:35:2b:1c:63:68:46:ad:c7:85:67:66: 8d:2c:d7:9f:9b:a6:e6:a0:67:86:95:7b:fb:fd:54:32:4d:96: 00:f2:25:5c:ee:6b:3e:ed:e6:fc:80:60:44:fb:6f:aa:4f:38: 5d:e7:8f:fc:5a:84:d1:45:f3:d8:cd:71:da:cc:21:09:c9:cc: a8:7d:47:27:c3:29:11:18:c9:0d:55:ed:1e:62:46:9f:cf:94: 0f:1d:cd:6b:2e:c3:ac:99:c0:c2:5a:64:3e:34:58:88:78:fb: 42:50:ec:00:4b:0e:17:33:a6:6a:2c:c4:a5:0e:a2:be:29:82: 8c:e4:6e:d3:e4:8e:47:e1:c1:1a:07:44:46:cf:09:5f:2c:db: 8a:b3:5b:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNjAxMTcwNjI4MzJaFw0yNjAxMjQwNjI4MzJaMBgxFjAUBgNV BAMMDTY5NmIyYzExLTQ1ZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzCkUd2onS1AyQxpP2r3QX1RHgsKndaN3YfDi3M+lzkWVIItFK8+mNmURh3UTz bOIiO72LvsKkR1ddu85dOtgDNDsiuuELLsqLvvmneXw/soix6fNPk/mrpYp9AvGV 1Z/Zoeqxz+s8QsfARhzfTJBvYLDV33poA1AngyIEHWrPbYpyxkzYg409XW9m7H7A u+jAbuiiS+MLQTGWxGJfEU2xvA3C6Yuc27khkDlflqr5/2CKG9z7og8wIT5uQLba ILLe3ZkEer9Osf3fmb7/9SSdTgb2jP+dQpWaqXv0zQ5Aa+XHPnEupZ/25v0u7GrH 7qcnSH7/gxJklZecYcdu1KkFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6C4V+wm6 GO3Af69Cc4W8o8vGvDQwHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALh9lO0fKMdFiFR7Nvx3a4gkEMxZwu9mOig2BCbHVC8uun6ZPKYLsUXm YdgDbg23NP3txSz+2jLm8DIc2xHgiRleVTL9SDyY4azCjRaAjTxKgBIwzfdjdnap qrO95PzrL6kBWmFCj2UkYz7ORty4PFFSMZo1KxxjaEatx4VnZo0s15+bpuagZ4aV e/v9VDJNlgDyJVzuaz7t5vyAYET7b6pPOF3nj/xahNFF89jNcdrMIQnJzKh9RyfD KREYyQ1V7R5iRp/PlA8dzWsuw6yZwMJaZD40WIh4+0JQ7ABLDhczpmosxKUOor4p gozkbtPkjkfhwRoHREbPCV8s24qzW6A= -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:26 2026 by rpki-client