This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: ZkwxfJK26TfvWQ+RDVx8SapikOmMNDkSVyFsnZ8Yb34= Subject key identifier: 34:01:AA:06:71:7D:EA:1B:F5:AB:7D:94:3A:CD:34:10:81:6C:2C:F3 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 0229 Signing time: Tue 27 Jan 2026 01:19:09 +0000 Manifest this update: Tue 27 Jan 2026 01:19:09 +0000 Manifest next update: Tue 03 Feb 2026 01:19:09 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: cC88sM5MOJYuGZQLJccRe9GdJn6KpOLbjgpzo2EFqZ0=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 01:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Jan 27 01:19:09 2026 GMT Not After : Feb 3 01:19:09 2026 GMT Subject: CN=6978128d-bdd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0b:16:f4:02:8f:29:b9:75:d2:6b:0c:37:a1: 40:97:ce:f7:9c:b8:cc:86:c9:36:78:3c:1f:0f:b2: 4c:ee:96:d8:07:02:64:17:88:2a:20:a2:d2:46:0f: 98:d7:32:61:80:ba:e3:64:b9:a5:2e:26:e4:d9:ae: c6:41:62:fe:d5:0e:2a:10:0a:80:31:88:9b:c0:3c: e8:e1:f1:cc:94:02:95:7e:85:7b:ba:ed:20:54:09: 70:61:43:69:ae:89:34:d1:0a:11:2f:99:e0:a7:f0: d6:2c:1b:ee:42:c6:f3:27:df:50:ea:c5:fa:d3:06: d2:9b:18:b7:ca:9e:61:cd:c1:a6:68:69:9e:1a:bd: e3:4e:48:80:cc:8f:42:a0:d0:12:60:fa:a4:3b:13: 9f:11:76:be:74:a7:42:63:29:00:f7:01:16:65:55: ab:b4:41:f3:ca:7d:dd:13:1e:88:1b:da:86:75:fc: 00:b0:45:33:66:b8:c1:d1:40:8f:d7:5c:a4:36:73: f3:5d:29:f8:f7:48:75:87:f6:8e:64:ea:cb:f6:f8: 70:8f:4d:8c:ff:68:d8:28:53:b1:ae:80:65:c8:4b: cf:4c:c1:ae:29:19:9c:d2:47:1d:db:04:39:ec:bf: 0f:80:03:a3:2f:3d:2d:ba:c8:fb:09:5d:2e:3d:b7: d8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:01:AA:06:71:7D:EA:1B:F5:AB:7D:94:3A:CD:34:10:81:6C:2C:F3 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:9b:94:3f:9b:0d:79:6d:55:18:e9:cd:de:b3:16:09:f7:a7: bd:b1:49:ea:20:65:aa:85:ca:10:08:1b:8d:e3:48:f7:3f:b4: a4:28:a9:72:08:c6:db:9d:f0:16:b5:9d:0f:f3:56:25:4c:59: 8e:88:0a:09:63:71:18:59:48:5b:42:01:d7:9c:1d:a2:ad:96: 7f:25:e9:15:73:1c:3c:73:7b:d6:c3:2b:49:e2:60:44:78:99: 87:8b:60:d3:5b:1e:5c:70:88:af:16:73:1d:18:0c:b5:3d:f8: 9f:a2:6d:2c:fc:54:21:fc:c4:5c:45:94:f9:c4:7d:c1:41:9e: 6f:5c:17:59:3b:97:5f:fc:11:38:82:39:82:42:18:e4:a7:05: d6:ba:26:62:53:cc:7e:62:d6:5f:c8:ba:0a:8c:86:47:ec:ec: 15:14:66:fd:05:32:35:45:67:94:29:75:4e:0b:4c:e0:04:ae: 0f:7e:0f:72:33:70:3c:f2:29:32:ad:ea:11:f0:f1:4b:6e:88: e8:40:78:92:50:38:93:88:5b:4b:6d:62:28:24:c8:11:ee:76: 25:a3:82:82:74:6b:7e:ae:50:13:59:11:90:2f:a9:e0:55:65: ef:ab:7c:43:ff:84:48:96:ec:bc:f9:8b:ae:31:99:73:32:33: 00:47:68:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjYwMTI3MDExOTA5WhcNMjYwMjAzMDExOTA5WjAYMRYwFAYD VQQDDA02OTc4MTI4ZC1iZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgsW9AKPKbl10msMN6FAl873nLjMhsk2eDwfD7JM7pbYBwJkF4gqIKLSRg+Y 1zJhgLrjZLmlLibk2a7GQWL+1Q4qEAqAMYibwDzo4fHMlAKVfoV7uu0gVAlwYUNp rok00QoRL5ngp/DWLBvuQsbzJ99Q6sX60wbSmxi3yp5hzcGmaGmeGr3jTkiAzI9C oNASYPqkOxOfEXa+dKdCYykA9wEWZVWrtEHzyn3dEx6IG9qGdfwAsEUzZrjB0UCP 11ykNnPzXSn490h1h/aOZOrL9vhwj02M/2jYKFOxroBlyEvPTMGuKRmc0kcd2wQ5 7L8PgAOjLz0tusj7CV0uPbfYAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQBqgZx feob9at9lDrNNBCBbCzzMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFm5Q/mw15bVUY6c3esxYJ96e9sUnqIGWqhcoQCBuN40j3P7SkKKly CMbbnfAWtZ0P81YlTFmOiAoJY3EYWUhbQgHXnB2irZZ/JekVcxw8c3vWwytJ4mBE eJmHi2DTWx5ccIivFnMdGAy1Pfifom0s/FQh/MRcRZT5xH3BQZ5vXBdZO5df/BE4 gjmCQhjkpwXWuiZiU8x+YtZfyLoKjIZH7OwVFGb9BTI1RWeUKXVOC0zgBK4Pfg9y M3A88ikyreoR8PFLbojoQHiSUDiTiFtLbWIoJMgR7nYlo4KCdGt+rlATWRGQL6ng VWXvq3xD/4RIluy8+YuuMZlzMjMAR2hS -----END CERTIFICATE-----Generated at Tue Jan 27 11:35:33 2026 by rpki-client