This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 7oT5J+49eyfHxHx/SLg+PTFPJ5htbDymMX7Q140rcTk= Subject key identifier: 22:16:EC:60:6E:91:4F:17:FA:E1:6B:69:D8:5D:C7:F8:50:FF:98:36 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36F8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 36F5 Signing time: Tue 20 Jan 2026 14:31:46 +0000 Manifest this update: Tue 20 Jan 2026 14:31:45 +0000 Manifest next update: Tue 27 Jan 2026 14:31:45 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: CelTlnXhTnZ22C7udVOKmRQapr2CcGFnmN7p+ttrL7Q=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: 2WcUpVfHTb1NauNbZRhqL6uiQF0uai697c32ozKwX5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 14:31:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14072 (0x36f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jan 20 14:31:45 2026 GMT Not After : Jan 27 14:31:45 2026 GMT Subject: CN=696f91d1-ca46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0e:6f:d7:3f:5b:39:d1:71:42:dd:da:c3:10: 24:9c:f4:67:db:6f:87:4f:6a:49:c0:88:92:13:6e: 76:ba:a4:4a:76:20:29:b9:15:76:f7:fd:28:e2:55: ef:9d:ba:e3:7f:03:f7:09:38:15:d0:83:87:2f:82: 9a:21:da:38:15:03:40:ad:75:69:41:b0:00:03:0e: b1:d4:5b:70:a5:01:24:f4:c7:7e:28:5e:ba:70:57: ee:39:a0:52:d3:a3:6f:16:4f:4b:d8:97:1b:ea:d0: 71:08:b1:af:b6:23:96:1e:f6:c0:e0:e3:86:47:78: a5:de:3f:09:e7:82:fe:b3:58:f1:e6:10:81:c9:d5: 06:dd:0d:37:85:b6:c0:bc:c5:fc:35:a1:4b:70:a5: dd:25:b2:53:e5:66:84:2c:d7:72:93:a8:8f:94:a4: 99:aa:18:62:68:83:1b:54:b7:06:78:74:76:f2:99: 0e:f2:33:7e:98:03:17:e0:9c:38:85:0c:c7:33:3c: bd:41:2d:26:42:54:b6:15:d5:64:d4:c6:96:e0:8c: cd:37:73:e8:bb:16:50:aa:8f:e9:42:2b:f9:ef:4a: af:29:de:d0:b2:66:d8:93:30:67:e7:18:93:22:1d: d4:24:7f:7a:98:a3:56:ef:37:6f:ba:1e:1d:ad:ff: 39:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:16:EC:60:6E:91:4F:17:FA:E1:6B:69:D8:5D:C7:F8:50:FF:98:36 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9b:e0:f8:4b:7c:10:e3:4c:21:62:24:23:67:81:8b:09:bf: 3e:30:60:0b:dd:c8:d5:49:6b:44:92:15:34:66:b4:45:4d:87: 53:74:19:ad:97:e8:39:eb:c7:13:df:08:ca:d5:b1:f7:ca:61: 65:e1:e2:c0:ff:cb:7e:29:ee:48:35:13:8f:fb:48:f8:e4:70: 68:91:5c:01:0d:b3:90:82:fd:3e:dd:88:85:09:3f:ef:ee:d8: 8f:b4:73:00:a6:95:2e:8c:3f:00:f2:7f:44:be:70:3e:a2:4c: e2:10:4b:47:5f:65:3b:53:03:10:e8:60:e3:25:49:a8:9e:7f: 0d:9d:91:90:d0:a7:5d:9f:2c:f6:be:3e:39:fd:3d:92:c7:35: c4:d8:07:b1:32:2b:f3:96:fe:c4:09:db:15:9c:86:ae:a0:ca: 5d:aa:43:0d:a7:83:23:41:85:36:43:2e:4e:78:29:83:e1:b7: a0:31:26:40:bb:34:ae:bb:40:f6:f2:2d:f9:26:2a:64:18:f2: a5:2b:1f:5d:52:f2:9e:2f:f0:05:d2:c6:a0:c2:df:0e:b5:f2: 1e:64:5f:12:2f:29:ed:ab:e2:1a:ce:87:98:ba:66:09:12:bd: e7:6c:67:27:a6:f9:89:dd:57:0b:a6:78:1b:2b:4f:cb:56:b1: f9:7d:18:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMTIwMTQzMTQ1WhcNMjYwMTI3MTQzMTQ1WjAYMRYwFAYD VQQDDA02OTZmOTFkMS1jYTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQ5v1z9bOdFxQt3awxAknPRn22+HT2pJwIiSE252uqRKdiApuRV29/0o4lXv nbrjfwP3CTgV0IOHL4KaIdo4FQNArXVpQbAAAw6x1FtwpQEk9Md+KF66cFfuOaBS 06NvFk9L2Jcb6tBxCLGvtiOWHvbA4OOGR3il3j8J54L+s1jx5hCBydUG3Q03hbbA vMX8NaFLcKXdJbJT5WaELNdyk6iPlKSZqhhiaIMbVLcGeHR28pkO8jN+mAMX4Jw4 hQzHMzy9QS0mQlS2FdVk1MaW4IzNN3PouxZQqo/pQiv570qvKd7QsmbYkzBn5xiT Ih3UJH96mKNW7zdvuh4drf856QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIW7GBu kU8X+uFradhdx/hQ/5g2MB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADm+D4S3wQ40whYiQjZ4GLCb8+MGAL3cjVSWtEkhU0ZrRFTYdTdBmt l+g568cT3wjK1bH3ymFl4eLA/8t+Ke5INROP+0j45HBokVwBDbOQgv0+3YiFCT/v 7tiPtHMAppUujD8A8n9EvnA+okziEEtHX2U7UwMQ6GDjJUmonn8NnZGQ0Kddnyz2 vj45/T2SxzXE2AexMivzlv7ECdsVnIauoMpdqkMNp4MjQYU2Qy5OeCmD4begMSZA uzSuu0D28i35JipkGPKlKx9dUvKeL/AF0sagwt8OtfIeZF8SLyntq+IazoeYumYJ Er3nbGcnpvmJ3VcLpngbK0/LVrH5fRi+ -----END CERTIFICATE-----Generated at Wed Jan 21 07:51:34 2026 by rpki-client