This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: lMF1ugSBxR8kjyIJTn3HQP5YpZL07lnfIna5JlYhFvY= Subject key identifier: 24:88:2A:15:A7:80:9A:26:7C:85:81:B5:7B:97:DA:F7:E3:42:97:4E Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 350A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 3506 Signing time: Mon 26 Jan 2026 14:46:31 +0000 Manifest this update: Mon 26 Jan 2026 14:46:31 +0000 Manifest next update: Mon 02 Feb 2026 14:46:31 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: Yp2MLmt3V1ZfpqHizg9fmmP8A4j50+RKXID451JWIjE=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: 0/8Hj8JGllFpFJtLO8M2e+60zSKfijAxsvrqYMK0zA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 14:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13578 (0x350a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6, serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: Jan 26 14:46:31 2026 GMT Not After : Feb 2 14:46:31 2026 GMT Subject: CN=69777e47-2eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:47:fd:ee:19:36:44:f4:7b:18:3d:de:62:01: 48:59:26:89:b4:46:fb:fd:e4:91:65:0c:80:5c:32: 43:7b:0b:c6:3c:af:18:ba:2b:91:0b:84:0e:d7:1e: 88:fa:23:ae:df:5f:f4:cf:57:a7:50:ad:b6:fe:05: eb:c6:69:59:db:d2:96:a3:2d:48:15:c9:c3:4f:39: fb:f8:cc:91:1c:d0:fa:4b:25:d3:7d:8b:f7:31:ef: 29:ee:61:3c:e6:de:3c:77:fc:36:71:4b:41:cf:d0: cf:83:11:35:2d:c5:11:3f:75:d1:ae:33:f4:05:73: 53:5b:da:45:ff:c3:aa:32:21:3b:dc:69:c9:31:5a: 6a:be:73:ee:3e:c8:8b:e5:e0:f4:cc:96:7b:34:8d: ee:d3:b1:a3:20:50:37:1c:c0:20:ea:3a:ec:f2:88: 56:ec:7f:b1:6a:fc:55:d8:e3:d2:58:26:05:5f:2e: 2f:a4:1f:dd:4d:d1:a0:67:c7:8b:f8:60:79:e4:75: df:3f:7d:8c:23:fc:cd:46:c3:3f:35:28:c2:da:b7: 50:07:cc:96:14:ab:ee:4d:e3:e2:5e:70:c7:5f:a4: dc:c5:a7:41:55:25:64:57:45:16:40:96:73:ae:6d: b4:35:75:d0:da:15:23:31:1f:d8:d3:fd:a3:44:b7: db:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:88:2A:15:A7:80:9A:26:7C:85:81:B5:7B:97:DA:F7:E3:42:97:4E X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:22:58:43:53:61:07:60:c2:b1:30:59:f5:2a:df:fd:21:0a: d6:0b:9e:b6:e3:8c:2d:b9:cb:00:ae:b2:82:30:81:68:52:f0: 17:45:20:c5:d2:54:51:cf:3b:cf:de:09:ed:54:8f:07:5d:5a: 9f:7e:e2:88:4a:4e:90:f3:ff:98:44:79:43:6c:2e:d7:ac:96: 68:7d:26:68:76:c5:77:92:76:ab:76:32:46:dc:ec:28:90:43: 4f:76:bc:0c:29:13:ab:8d:76:c3:1a:9e:83:5b:74:6a:17:02: b6:c5:19:cb:54:40:b3:c3:f1:36:8f:4f:06:81:70:1e:a5:21: 82:c5:05:65:4b:7d:e3:97:74:54:54:06:d2:4b:44:13:22:8b: 5a:56:ec:d6:ae:05:8d:c8:ce:ce:5f:83:6e:40:4d:f8:23:08: bb:19:ff:e4:83:39:70:cb:0b:c7:d8:95:3e:1a:e5:89:8c:0b: 88:57:20:bf:8d:08:82:8e:21:bb:99:b4:e6:ba:29:12:09:74: a3:7e:05:42:dc:58:e0:8c:73:35:32:b2:03:88:9a:21:28:4f: b2:4b:93:be:07:15:d7:30:14:7b:98:97:6c:fb:9a:cc:48:f8: 9e:c4:ea:51:ef:e6:80:ba:6e:98:14:73:71:b7:93:3f:aa:eb: 77:03:65:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjYwMTI2MTQ0NjMxWhcNMjYwMjAyMTQ0NjMxWjAYMRYwFAYD VQQDDA02OTc3N2U0Ny0yZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0f97hk2RPR7GD3eYgFIWSaJtEb7/eSRZQyAXDJDewvGPK8YuiuRC4QO1x6I +iOu31/0z1enUK22/gXrxmlZ29KWoy1IFcnDTzn7+MyRHND6SyXTfYv3Me8p7mE8 5t48d/w2cUtBz9DPgxE1LcURP3XRrjP0BXNTW9pF/8OqMiE73GnJMVpqvnPuPsiL 5eD0zJZ7NI3u07GjIFA3HMAg6jrs8ohW7H+xavxV2OPSWCYFXy4vpB/dTdGgZ8eL +GB55HXfP32MI/zNRsM/NSjC2rdQB8yWFKvuTePiXnDHX6TcxadBVSVkV0UWQJZz rm20NXXQ2hUjMR/Y0/2jRLfblwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSIKhWn gJomfIWBtXuX2vfjQpdOMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQIlhDU2EHYMKxMFn1Kt/9IQrWC56244wtucsArrKCMIFoUvAXRSDF 0lRRzzvP3gntVI8HXVqffuKISk6Q8/+YRHlDbC7XrJZofSZodsV3knardjJG3Owo kENPdrwMKROrjXbDGp6DW3RqFwK2xRnLVECzw/E2j08GgXAepSGCxQVlS33jl3RU VAbSS0QTIotaVuzWrgWNyM7OX4NuQE34Iwi7Gf/kgzlwywvH2JU+GuWJjAuIVyC/ jQiCjiG7mbTmuikSCXSjfgVC3FjgjHM1MrIDiJohKE+yS5O+BxXXMBR7mJds+5rM SPiexOpR7+aAum6YFHNxt5M/qut3A2WY -----END CERTIFICATE-----Generated at Tue Jan 27 06:07:58 2026 by rpki-client