This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: u98faXnNANj4RvukK+Xrm3V8y2VDsyaTblcCUHs2I/8= Subject key identifier: 9F:A7:AF:C0:CA:AF:C2:E9:6C:0F:9E:56:2D:1A:34:9C:47:3A:97:35 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 102B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 1006 Signing time: Sun 18 Jan 2026 17:09:31 +0000 Manifest this update: Sun 18 Jan 2026 17:09:31 +0000 Manifest next update: Sun 25 Jan 2026 17:09:31 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: vpiFveTMxS7hh9K1zu+B3NLS+Luvzi0dBSK54m6r47Y=) 2: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: ms+qR7zeYqI6JEXHK3rNQAxzRQXIEiuzImbKZbjKLOE=) 3: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: eOv7pTte1ye/67eHb4Pi9oh8uZ/8IpesFY1S9J5aGIE=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: p1wuomi4ih0De5e/76yoAEIXaN4ZewrXgvfIRvH8XLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 17:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Jan 18 17:09:31 2026 GMT Not After : Jan 25 17:09:31 2026 GMT Subject: CN=696d13cb-6494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:76:86:a5:f7:f3:ae:63:7b:e0:6d:a1:af: a7:b1:e8:bf:b1:22:4b:5d:95:91:61:7c:9e:70:52: 9c:64:af:43:27:9f:ff:ba:3d:f0:d2:58:0f:22:53: 0a:b9:12:8b:d2:ca:07:73:73:a9:1e:df:18:14:b0: 17:4f:c1:b4:53:4b:53:47:d8:fa:51:30:c5:4e:7b: bf:c5:74:2e:cb:f0:8a:5c:52:d6:a7:f3:a3:26:b4: aa:d1:68:44:9e:4d:5a:80:ac:0f:2e:37:74:a7:b2: 75:9f:87:7f:d8:4f:6c:c9:c9:82:4c:e0:bb:ab:50: d1:47:71:ae:8e:dc:d6:a1:de:be:4e:4e:51:1a:03: e4:45:3e:3c:62:01:12:78:11:f8:a7:ae:c7:2f:bd: 1d:7f:fa:50:38:28:c3:2c:9b:5d:2c:53:90:bd:49: 09:f1:05:54:95:5d:39:96:c3:b0:2a:a2:b4:87:8f: c0:3d:83:f1:cd:1b:fe:db:47:0f:db:eb:6d:f3:b3: f4:6f:b6:e1:95:58:0b:7d:88:53:c3:68:2e:2d:6c: ff:01:76:99:dc:b8:03:cc:e8:97:90:9d:38:1c:15: f6:a4:db:ec:dc:44:3a:7c:88:92:a4:fd:9c:03:51: 76:e3:d0:53:ab:7a:db:ce:33:0a:6c:59:b6:46:8c: 7e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A7:AF:C0:CA:AF:C2:E9:6C:0F:9E:56:2D:1A:34:9C:47:3A:97:35 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:5f:11:d3:48:c0:71:3e:9d:99:9d:9c:17:73:01:56:27:46: c7:8f:65:59:5b:73:36:56:5f:ae:c7:22:93:31:28:22:08:e9: 92:93:af:8e:40:6e:c2:bf:cc:4f:19:0b:44:e8:cb:06:d0:e8: 69:55:4b:36:b5:13:8d:7e:ec:26:37:d9:3b:ed:73:df:de:a6: 4c:d4:45:c1:3a:0c:a8:c4:d2:fd:f2:ce:78:cc:63:f8:24:6a: 25:08:25:75:24:9e:13:91:79:5b:e6:2a:da:91:e5:27:ae:40: 0d:4c:fe:d2:ad:3f:4f:35:6f:46:e6:ea:7f:b3:99:d4:d6:a1: 66:84:67:fa:a8:93:dd:69:d9:af:51:6b:c3:ae:9c:c8:88:a6: c1:a5:9f:81:f7:05:02:6e:e2:d8:e1:14:03:bc:7a:a6:69:41: 38:b0:f2:c4:7a:78:c2:19:06:7d:98:e9:44:e4:4a:10:75:34: 7b:8c:73:9c:d8:4c:a0:78:5d:f9:67:15:17:e3:6b:19:5a:be: 50:96:d0:82:98:28:fd:3f:54:e3:05:d8:61:02:89:a0:f7:dd: a7:cc:69:a7:80:e5:73:a0:12:0d:54:84:ac:38:a9:2a:81:41: dd:cb:03:d9:96:61:51:46:5a:8e:fd:fa:59:c9:87:9e:15:19: e9:29:38:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjYwMTE4MTcwOTMxWhcNMjYwMTI1MTcwOTMxWjAYMRYwFAYD VQQDDA02OTZkMTNjYi02NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruF2hqX3865je+Btoa+nsei/sSJLXZWRYXyecFKcZK9DJ5//uj3w0lgPIlMK uRKL0soHc3OpHt8YFLAXT8G0U0tTR9j6UTDFTnu/xXQuy/CKXFLWp/OjJrSq0WhE nk1agKwPLjd0p7J1n4d/2E9sycmCTOC7q1DRR3GujtzWod6+Tk5RGgPkRT48YgES eBH4p67HL70df/pQOCjDLJtdLFOQvUkJ8QVUlV05lsOwKqK0h4/APYPxzRv+20cP 2+tt87P0b7bhlVgLfYhTw2guLWz/AXaZ3LgDzOiXkJ04HBX2pNvs3EQ6fIiSpP2c A1F249BTq3rbzjMKbFm2Rox+ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+nr8DK r8LpbA+eVi0aNJxHOpc1MB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPXxHTSMBxPp2ZnZwXcwFWJ0bHj2VZW3M2Vl+uxyKTMSgiCOmSk6+O QG7Cv8xPGQtE6MsG0OhpVUs2tRONfuwmN9k77XPf3qZM1EXBOgyoxNL98s54zGP4 JGolCCV1JJ4TkXlb5irakeUnrkANTP7SrT9PNW9G5up/s5nU1qFmhGf6qJPdadmv UWvDrpzIiKbBpZ+B9wUCbuLY4RQDvHqmaUE4sPLEenjCGQZ9mOlE5EoQdTR7jHOc 2EygeF35ZxUX42sZWr5QltCCmCj9P1TjBdhhAomg992nzGmngOVzoBINVISsOKkq gUHdywPZlmFRRlqO/fpZyYeeFRnpKTiE -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:59 2026 by rpki-client