This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: lIg7n1Y7rdq3yL4C4ySgSqkIiBBz6BnbmugM7UuOEBY= Subject key identifier: 29:69:49:E4:AC:AD:41:E8:20:E5:CB:DD:AF:10:9C:1F:46:41:33:4B Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 07A0 Signing time: Mon 26 Jan 2026 20:54:13 +0000 Manifest this update: Mon 26 Jan 2026 20:54:13 +0000 Manifest next update: Mon 02 Feb 2026 20:54:13 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: tisR42rTNQss9KHyJ6KskgNfuzRaKD8CuwXAf6hzBX4=) 2: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 3: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) 5: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 6: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 7: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 20:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Jan 26 20:54:13 2026 GMT Not After : Feb 2 20:54:13 2026 GMT Subject: CN=6977d475-52ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:fa:d9:a5:77:22:91:67:eb:e1:4a:18:ab: 4c:fa:08:65:94:0c:48:b9:97:bc:42:65:13:24:d0: b7:38:be:fa:8c:c7:96:95:68:40:71:c6:d0:ca:f5: 82:40:b8:3f:9d:4d:77:80:c3:a7:5a:a5:06:dc:e8: bc:1d:f9:46:23:28:22:47:11:68:38:29:dd:0d:53: 97:ad:5d:c0:8b:d3:dd:1b:8e:4c:81:a1:89:0a:2b: 35:91:6c:bf:71:24:62:7b:49:22:06:94:ac:17:19: 38:dd:de:e4:59:1c:bb:6a:10:8f:82:c9:dc:f0:46: 46:1d:ee:70:d3:80:09:19:0f:8c:97:61:7d:42:2d: 82:81:52:59:c6:29:5b:28:74:9a:a3:cc:da:2c:58: 65:69:d8:9e:3f:2f:d1:a5:aa:0c:09:2f:f4:f3:a4: cc:62:1d:9b:b3:e8:59:55:b1:eb:24:2e:ed:e9:a9: 79:dc:9f:7f:be:2b:62:65:25:95:d3:42:8f:8b:a8: 57:de:c2:89:38:0e:60:44:dc:5f:af:46:ae:52:0f: 88:22:64:d3:69:cf:7b:1c:2d:49:2b:81:92:f9:52: b3:c1:eb:34:be:f1:bb:37:aa:1d:1a:ec:e2:69:c1: 8b:75:e1:b8:f2:e2:e8:9b:19:2b:9d:d3:51:47:a2: 2c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:69:49:E4:AC:AD:41:E8:20:E5:CB:DD:AF:10:9C:1F:46:41:33:4B X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ef:b9:cf:6d:01:cc:a5:83:5e:b3:8f:e2:9e:73:1c:97:f5: a0:69:19:96:da:73:2d:01:34:f5:d6:16:9d:92:13:00:ae:8b: fa:ba:0e:9f:cc:85:46:39:fc:e4:29:8e:8f:a8:fb:60:4f:ca: 49:a4:93:38:8b:87:eb:05:e6:eb:cb:e0:81:fc:2d:88:b3:4d: c3:0d:68:99:88:0c:cd:ad:cb:6c:64:23:63:38:b2:c5:79:69: fd:2b:d9:b6:ef:20:d2:f1:f7:bb:25:ac:87:55:2c:be:bd:d0: a3:48:ac:db:2a:0d:b5:92:76:dc:d2:fa:df:74:dd:f5:2b:ba: 86:03:2c:b4:5b:a3:2e:7e:df:98:a1:94:10:94:0b:0d:da:ed: 71:d8:3c:e4:41:95:5c:1c:4b:0a:a3:b2:44:f3:12:8d:d9:85: 7e:84:a8:f6:2d:42:cd:9c:ac:52:b0:a8:6d:d4:b6:f3:6a:79: eb:95:75:04:8b:52:d2:71:0d:d6:9d:95:f5:a9:4c:86:a2:61: 29:a0:fa:79:60:4b:2b:ef:29:8d:f8:1d:e3:64:4b:69:ef:2e: b1:bc:38:24:6c:5e:fc:23:44:90:60:e8:62:72:51:7e:59:6a: 66:45:84:4b:2b:2c:e0:90:45:13:b2:b6:b4:cf:2b:ac:1b:c8: e6:bb:bc:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjYwMTI2MjA1NDEzWhcNMjYwMjAyMjA1NDEzWjAYMRYwFAYD VQQDDA02OTc3ZDQ3NS01MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuD62aV3IpFn6+FKGKtM+ghllAxIuZe8QmUTJNC3OL76jMeWlWhAccbQyvWC QLg/nU13gMOnWqUG3Oi8HflGIygiRxFoOCndDVOXrV3Ai9PdG45MgaGJCis1kWy/ cSRie0kiBpSsFxk43d7kWRy7ahCPgsnc8EZGHe5w04AJGQ+Ml2F9Qi2CgVJZxilb KHSao8zaLFhladiePy/RpaoMCS/086TMYh2bs+hZVbHrJC7t6al53J9/vitiZSWV 00KPi6hX3sKJOA5gRNxfr0auUg+IImTTac97HC1JK4GS+VKzwes0vvG7N6odGuzi acGLdeG48uLomxkrndNRR6IshwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClpSeSs rUHoIOXL3a8QnB9GQTNLMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc77nPbQHMpYNes4/innMcl/WgaRmW2nMtATT11hadkhMArov6ug6f zIVGOfzkKY6PqPtgT8pJpJM4i4frBebry+CB/C2Is03DDWiZiAzNrctsZCNjOLLF eWn9K9m27yDS8fe7JayHVSy+vdCjSKzbKg21knbc0vrfdN31K7qGAyy0W6Muft+Y oZQQlAsN2u1x2DzkQZVcHEsKo7JE8xKN2YV+hKj2LULNnKxSsKht1LbzannrlXUE i1LScQ3WnZX1qUyGomEpoPp5YEsr7ymN+B3jZEtp7y6xvDgkbF78I0SQYOhiclF+ WWpmRYRLKyzgkEUTsra0zyusG8jmu7x5 -----END CERTIFICATE-----Generated at Tue Jan 27 13:24:30 2026 by rpki-client