This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: nd3Bv1RDqM6VKPEZ3nVakI+UX+IT1opufBWOYVO1fZA= Subject key identifier: 42:EC:2B:C5:CD:9E:1D:81:2A:C1:9E:49:51:8B:DD:B3:8A:F7:4B:89 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 050E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 04EF Signing time: Fri 16 Jan 2026 22:55:09 +0000 Manifest this update: Fri 16 Jan 2026 22:55:09 +0000 Manifest next update: Fri 23 Jan 2026 22:55:09 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: yk+ZoAvpUN3hcd7bE6vMODaWYOXYm5o92WcPxnfrWyA=) 2: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: PZ8hGfo35k+2uwUr51dLJv7koK6JGtYIILiy6ys4KXU=) 3: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: qBcZRGomI65XMXG658jBmR+nbM6U8JoK99ZN8SiSngA=) 4: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU=) 5: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: A3EDkKvu0aa33VcpNX3QbNZPup+JOPeqQSqq5IEiwAE=) 6: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: Ar0eIfX5VeHGn66RhXZc/W9m9hkUWFRl4nMMo5nWhrg=) 7: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: 2y3PU7S4Av5FbaJ/h4zQJFDM0QlsuJevpUkwFDDgj1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 22:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Jan 16 22:55:09 2026 GMT Not After : Jan 23 22:55:09 2026 GMT Subject: CN=696ac1cd-f5ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a1:41:75:2a:70:13:17:dc:df:28:b4:eb:bf: c3:2f:80:42:9c:ce:3c:21:35:fb:73:de:42:af:34: 69:9f:bd:1f:a8:b0:e8:c8:d4:23:5d:44:bd:1b:04: d7:34:b0:eb:7a:06:52:5e:52:9b:76:8f:a9:28:e9: 12:8c:1d:70:00:1b:de:cb:4e:86:dc:49:3c:26:09: 54:c9:6e:bb:47:75:f6:2d:3c:59:9e:73:86:14:19: c5:b5:63:00:ca:77:b0:82:b3:e8:14:95:36:40:e4: db:4c:e2:02:86:bc:aa:bd:7c:07:04:1d:ca:ca:84: f3:e6:d8:c2:57:3a:30:c5:54:08:9a:06:17:3b:ce: 4f:45:6f:7d:eb:25:2b:20:a1:58:9b:f3:d2:c2:74: 5f:db:74:90:41:85:ed:24:72:ae:70:9e:01:99:d0: f4:33:4d:c2:67:c1:a7:e0:1d:92:14:2e:f7:72:6f: c0:8d:c4:2e:0f:65:aa:79:31:70:e2:f8:56:88:e0: 77:a2:db:63:a1:c3:05:fa:cd:c8:f0:01:87:81:4d: 25:f3:65:3b:6c:6e:89:d2:3d:ce:69:88:b3:23:77: f7:86:a4:8d:b5:99:f9:c9:52:b5:c2:5f:92:6e:eb: d9:3f:20:df:07:cc:b8:8d:20:f5:a7:ec:75:78:c0: 4d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EC:2B:C5:CD:9E:1D:81:2A:C1:9E:49:51:8B:DD:B3:8A:F7:4B:89 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:28:50:48:51:9a:9d:3d:d2:68:45:84:6e:6c:94:d3:7e:96: aa:db:19:b2:9c:e0:89:34:20:9c:f4:a9:f2:54:70:12:dd:41: 45:6a:82:48:7f:93:2c:d0:1d:5a:61:01:42:49:76:41:17:51: ed:93:b9:73:cf:55:c6:a9:b6:60:12:22:ab:9f:52:a6:16:6a: 98:50:6b:0f:a5:1e:cf:86:ed:86:d5:25:c6:5c:4c:f1:5c:b0: 0c:6c:4a:12:25:2e:29:94:85:ff:3c:5c:43:bd:dd:24:d8:ca: 91:42:ef:c1:d4:b0:dd:29:08:28:c9:ff:90:30:26:65:4c:0f: 98:2f:09:99:2d:59:50:a9:2b:9f:86:8e:7a:45:b7:f3:9c:12: a6:9e:a4:e4:e9:f4:0a:b3:a9:00:6f:2e:e1:a4:13:af:2b:14: 1f:ce:e8:7a:4e:40:57:9f:ca:03:e3:19:4a:fd:ff:b3:d3:1b: e1:72:0b:cc:ff:3d:ea:b8:e6:5f:05:d3:9a:61:76:3e:cb:8e: 36:b2:b0:3e:f4:4d:06:72:fa:a5:e7:1a:3b:99:a2:58:02:e2: 3f:2d:87:f9:f1:f0:d5:1e:b0:03:fd:74:e3:64:b8:be:cb:a6: 5d:29:f5:f5:c9:40:27:f6:72:53:2b:7b:c7:11:b8:31:1b:0a: ba:cb:e2:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjYwMTE2MjI1NTA5WhcNMjYwMTIzMjI1NTA5WjAYMRYwFAYD VQQDDA02OTZhYzFjZC1mNWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraFBdSpwExfc3yi067/DL4BCnM48ITX7c95CrzRpn70fqLDoyNQjXUS9GwTX NLDregZSXlKbdo+pKOkSjB1wABvey06G3Ek8JglUyW67R3X2LTxZnnOGFBnFtWMA ynewgrPoFJU2QOTbTOIChryqvXwHBB3KyoTz5tjCVzowxVQImgYXO85PRW996yUr IKFYm/PSwnRf23SQQYXtJHKucJ4BmdD0M03CZ8Gn4B2SFC73cm/AjcQuD2WqeTFw 4vhWiOB3ottjocMF+s3I8AGHgU0l82U7bG6J0j3OaYizI3f3hqSNtZn5yVK1wl+S buvZPyDfB8y4jSD1p+x1eMBNhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELsK8XN nh2BKsGeSVGL3bOK90uJMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8KFBIUZqdPdJoRYRubJTTfpaq2xmynOCJNCCc9KnyVHAS3UFFaoJI f5Ms0B1aYQFCSXZBF1Htk7lzz1XGqbZgEiKrn1KmFmqYUGsPpR7Phu2G1SXGXEzx XLAMbEoSJS4plIX/PFxDvd0k2MqRQu/B1LDdKQgoyf+QMCZlTA+YLwmZLVlQqSuf ho56RbfznBKmnqTk6fQKs6kAby7hpBOvKxQfzuh6TkBXn8oD4xlK/f+z0xvhcgvM /z3quOZfBdOaYXY+y442srA+9E0Gcvql5xo7maJYAuI/LYf58fDVHrAD/XTjZLi+ y6ZdKfX1yUAn9nJTK3vHEbgxGwq6y+L3 -----END CERTIFICATE-----Generated at Sun Jan 18 12:11:28 2026 by rpki-client