This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: bSN84rn60evbcO8la8n65XZvZnZXFh5pUlheYRmYc+8= Subject key identifier: F4:BB:6D:8A:27:67:EF:66:48:A6:84:BE:90:32:11:E1:B4:04:0B:B3 Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 1D Signing time: Sat 17 Jan 2026 06:50:16 +0000 Manifest this update: Sat 17 Jan 2026 06:50:16 +0000 Manifest next update: Sat 24 Jan 2026 06:50:16 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: FwRzTEksQZDyeBpN5jkCK/vLSZB8d10+yd09tbNmFo4=) 2: 8D7D3942C9AE11F0A867D348C4F9AE02.roa (hash: f6LJ1o+/HlkVTaZ1lRAj/+eYOJXKRmJ8r7oZSOqaeL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Jan 17 06:50:16 2026 GMT Not After : Jan 24 06:50:16 2026 GMT Subject: CN=696b3128-1b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:ea:cc:7e:50:8a:1d:d1:fa:40:a2:36:11:82: 3d:47:ba:01:75:d2:18:d8:4d:4c:9d:ff:87:ae:f5: 16:cf:10:92:89:c8:83:5c:fa:f9:c3:ce:09:b7:f8: 47:30:d0:20:fc:8f:7d:02:34:e1:71:be:51:e8:3e: 0a:29:a3:e9:c7:33:94:bc:e4:20:06:2d:72:64:59: c9:ae:ff:ab:78:5c:fe:7f:2d:1a:ac:ee:d6:5d:75: d0:38:3e:93:ed:4a:cb:43:ff:ab:e9:b7:ac:22:27: be:f8:d6:d8:ed:17:c2:54:94:b4:d6:ad:8b:b8:52: 41:52:37:e5:fc:04:af:bd:45:0e:52:5c:1c:75:9d: 21:39:e6:3a:77:12:b9:11:38:08:d0:af:a1:e2:e1: 5b:bb:f6:a5:e1:ff:29:bb:7a:8f:a0:b5:2e:c2:10: 4d:ba:74:95:18:97:fd:44:18:bb:3c:c2:8c:c4:b6: ba:71:a4:15:c9:c5:0b:fd:26:b6:80:0a:fb:5e:64: 5c:e0:67:cd:e5:5b:db:29:3e:cb:28:fe:13:e0:c4: 77:ba:05:38:aa:75:33:29:04:3a:fd:ca:74:10:a3: c8:5d:4b:ed:9b:68:15:3e:e3:e1:c8:2a:d7:fb:02: c7:ca:11:9c:95:dd:84:8e:ff:61:18:40:d3:78:69: 10:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BB:6D:8A:27:67:EF:66:48:A6:84:BE:90:32:11:E1:B4:04:0B:B3 X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b7:5a:c4:c4:78:89:25:b4:60:c3:67:03:b9:67:1b:43:c7: dc:85:47:0d:98:69:d1:25:1b:e8:6a:36:7d:40:66:ba:84:9e: f5:79:ca:f9:be:70:ee:de:8b:ba:91:13:dd:2f:89:27:eb:9c: 23:74:1a:58:f5:44:0c:2c:5d:a9:47:ce:b4:4b:ad:d4:76:f6: a5:31:2d:a8:58:8b:f3:33:13:9e:c8:cc:f1:87:f0:ee:ac:fb: 30:a3:47:1c:39:70:d5:0c:06:d4:40:c6:f6:e9:05:00:ab:56: 30:39:ff:28:c7:6b:75:ae:aa:1f:fa:f3:67:e5:94:f5:17:72: f8:45:4f:e9:db:6d:8c:e2:28:aa:64:b8:10:f6:6c:7a:fa:01: 70:f2:74:3e:23:d8:00:c3:50:d5:af:38:66:25:12:a6:40:94: 2e:ce:a0:d6:71:ab:1f:df:0f:12:a3:ee:02:15:2f:2c:03:ec: 8b:f2:00:db:91:84:11:99:84:dc:9e:a5:53:ef:c2:c3:95:47: 86:ca:fc:63:46:06:4e:7d:64:18:03:52:2f:56:d4:25:ac:8f: 8e:6c:90:76:c2:a5:14:c2:af:d5:bc:49:0e:7b:40:e5:a1:80: da:3a:c8:97:5c:f7:0c:d1:94:9d:85:eb:f2:2d:b5:66:5d:b7: 39:96:06:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNjAxMTcwNjUwMTZaFw0yNjAxMjQwNjUwMTZaMBgxFjAUBgNV BAMMDTY5NmIzMTI4LTFiMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCF6sx+UIod0fpAojYRgj1HugF10hjYTUyd/4eu9RbPEJKJyINc+vnDzgm3+Ecw 0CD8j30CNOFxvlHoPgopo+nHM5S85CAGLXJkWcmu/6t4XP5/LRqs7tZdddA4PpPt SstD/6vpt6wiJ7741tjtF8JUlLTWrYu4UkFSN+X8BK+9RQ5SXBx1nSE55jp3ErkR OAjQr6Hi4Vu79qXh/ym7eo+gtS7CEE26dJUYl/1EGLs8wozEtrpxpBXJxQv9JraA CvteZFzgZ83lW9spPsso/hPgxHe6BTiqdTMpBDr9ynQQo8hdS+2baBU+4+HIKtf7 AsfKEZyV3YSO/2EYQNN4aRAbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9Lttiidn 72ZIpoS+kDIR4bQEC7MwHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEq3WsTEeIkltGDDZwO5ZxtDx9yFRw2YadElG+hqNn1AZrqEnvV5yvm+ cO7ei7qRE90viSfrnCN0Glj1RAwsXalHzrRLrdR29qUxLahYi/MzE57IzPGH8O6s +zCjRxw5cNUMBtRAxvbpBQCrVjA5/yjHa3Wuqh/682fllPUXcvhFT+nbbYziKKpk uBD2bHr6AXDydD4j2ADDUNWvOGYlEqZAlC7OoNZxqx/fDxKj7gIVLywD7IvyANuR hBGZhNyepVPvwsOVR4bK/GNGBk59ZBgDUi9W1CWsj45skHbCpRTCr9W8SQ57QOWh gNo6yJdc9wzRlJ2F6/IttWZdtzmWBsM= -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:34 2026 by rpki-client