This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: nkOZOFQwC99FGwh/rrUd0njHAiRiM9o2cT0VT2IIhj0= Subject key identifier: 5C:60:E1:F5:68:CC:A2:AD:63:B6:F3:A6:5C:69:E9:2B:9B:83:1A:46 Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 10D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 10C4 Signing time: Tue 20 Jan 2026 17:02:01 +0000 Manifest this update: Tue 20 Jan 2026 17:02:01 +0000 Manifest next update: Tue 27 Jan 2026 17:02:01 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: SdqNDl5N+8WBW9xnOF0B1n+nHFaFajLXrZjtwWL2ttY=) 2: 691023063A8311E99AF5572DC4F9AE02.roa (hash: Uy8f9hnHu5ZNhfoO9b7+eo6ci2jsbvNnSUlZAZd6nGo=) 3: 797BF786FB2C11EFA405F334C4F9AE02.roa (hash: zI34h0FmFtZZLolHCnykLI2wVD3iOXp1eKhUZqTjA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4304 (0x10d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A, serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: Jan 20 17:02:01 2026 GMT Not After : Jan 27 17:02:01 2026 GMT Subject: CN=696fb509-a4c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:e0:85:00:ea:5c:59:b4:90:73:2c:92:2f:86: b4:b5:bd:c7:f8:b8:7a:a5:38:8a:f5:e7:b3:11:b9: 3e:71:83:e5:53:59:1c:f9:80:be:1a:2a:9f:0e:de: eb:2e:7c:96:19:5f:82:77:98:c6:76:80:6a:38:a7: c5:a7:e2:e4:c7:b2:69:c2:de:54:99:fd:64:b3:5b: 3d:73:a7:64:c3:a0:76:7c:a5:54:ac:50:85:1e:2a: 77:e8:e2:51:10:b3:57:e7:31:b1:ff:2d:2d:cd:46: fc:1f:bf:e8:15:b9:f3:db:0e:38:78:a3:4b:be:24: b0:d2:25:31:6a:5f:cb:d2:42:ff:d3:68:5d:22:cb: 3d:dd:07:1b:8b:b6:63:32:4e:4b:d6:06:40:fa:54: 93:49:67:ea:ab:3e:3a:67:be:e4:2f:96:4a:a1:e8: 7e:1d:9d:08:60:5a:11:e8:92:c8:c3:8e:7b:6c:3a: 3c:81:5e:f9:e7:bb:dd:ff:98:9b:4a:a9:70:a9:c3: b8:08:29:b2:7b:0c:9b:40:d9:c6:22:97:b8:31:19: c0:45:c0:24:30:63:9c:60:8e:e9:bb:5a:58:46:ef: 80:c5:88:6d:02:c5:41:48:c5:0b:69:2c:a4:b2:b8: 48:c2:0b:c7:c0:11:5c:8c:65:f0:ff:31:8c:59:01: dc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:60:E1:F5:68:CC:A2:AD:63:B6:F3:A6:5C:69:E9:2B:9B:83:1A:46 X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:69:65:6d:dd:b3:54:87:cd:74:10:35:08:dc:3f:20:e1:63: 7a:25:ee:34:57:a4:69:6e:ef:8c:5c:3e:3a:c2:66:d9:d9:9a: 48:3a:fa:2d:d2:08:8f:df:73:fa:c1:fc:d8:f5:ff:f0:30:d3: b4:b7:57:0d:58:c3:1f:a9:59:9a:6c:c3:9a:a1:e1:17:aa:fc: 6f:83:7a:b0:e7:44:1b:6f:69:22:ca:e2:e7:32:ae:e8:87:d2: 38:ff:47:01:c5:96:91:95:2f:3b:32:3e:ac:66:8e:8a:ac:9b: 9a:01:ed:f5:6c:32:61:5d:6b:1f:fc:04:69:6a:c9:39:71:8e: 81:ae:84:3f:8d:f1:63:11:d1:dc:7c:c0:a1:50:58:f3:52:6e: b2:1f:e4:72:0b:61:90:d7:19:93:91:30:df:3e:00:75:60:eb: f3:bb:cd:1f:8c:c6:d5:7a:d7:f2:ec:e7:b0:10:a8:b8:f3:f4: 6e:80:b0:2c:15:94:ed:44:48:a2:52:19:24:45:54:8a:6b:2e: 3c:93:82:4d:62:fa:b5:0d:9f:ed:50:4e:77:f3:1b:f5:3b:73: 61:94:07:8d:56:4b:20:af:9e:54:4a:d2:c3:07:33:44:db:70: e2:7b:54:12:01:13:79:a6:f6:0e:32:51:96:4c:41:3d:52:c2: 80:a5:ee:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjYwMTIwMTcwMjAxWhcNMjYwMTI3MTcwMjAxWjAYMRYwFAYD VQQDDA02OTZmYjUwOS1hNGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh+CFAOpcWbSQcyySL4a0tb3H+Lh6pTiK9eezEbk+cYPlU1kc+YC+GiqfDt7r LnyWGV+Cd5jGdoBqOKfFp+Lkx7Jpwt5Umf1ks1s9c6dkw6B2fKVUrFCFHip36OJR ELNX5zGx/y0tzUb8H7/oFbnz2w44eKNLviSw0iUxal/L0kL/02hdIss93Qcbi7Zj Mk5L1gZA+lSTSWfqqz46Z77kL5ZKoeh+HZ0IYFoR6JLIw457bDo8gV7557vd/5ib SqlwqcO4CCmyewybQNnGIpe4MRnARcAkMGOcYI7pu1pYRu+AxYhtAsVBSMULaSyk srhIwgvHwBFcjGXw/zGMWQHcOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxg4fVo zKKtY7bzplxp6SubgxpGMB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCaWVt3bNUh810EDUI3D8g4WN6Je40V6Rpbu+MXD46wmbZ2ZpIOvot 0giP33P6wfzY9f/wMNO0t1cNWMMfqVmabMOaoeEXqvxvg3qw50Qbb2kiyuLnMq7o h9I4/0cBxZaRlS87Mj6sZo6KrJuaAe31bDJhXWsf/ARpask5cY6BroQ/jfFjEdHc fMChUFjzUm6yH+RyC2GQ1xmTkTDfPgB1YOvzu80fjMbVetfy7OewEKi48/RugLAs FZTtREiiUhkkRVSKay48k4JNYvq1DZ/tUE538xv1O3NhlAeNVksgr55UStLDBzNE 23Die1QSARN5pvYOMlGWTEE9UsKApe5+ -----END CERTIFICATE-----Generated at Thu Jan 22 02:05:15 2026 by rpki-client