This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: b5sN2oOliK7Z48TLNbFq9unNe7zlJmHM+NTmWBpdShk= Subject key identifier: DF:BA:F5:06:4D:37:39:2B:56:3B:63:DD:12:7B:C4:A6:B3:A7:5F:E3 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 01EB Signing time: Fri 16 Jan 2026 15:09:59 +0000 Manifest this update: Fri 16 Jan 2026 15:09:58 +0000 Manifest next update: Fri 23 Jan 2026 15:09:58 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: 0ZpHe3tzFe1GWB6DT2VHbzEXOR4duc0Wz9cSWRDqUW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 15:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Jan 16 15:09:58 2026 GMT Not After : Jan 23 15:09:58 2026 GMT Subject: CN=696a54c7-ba68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cd:fb:63:15:03:c6:31:c1:63:5e:8b:a7:23: d7:09:fb:6f:94:2c:fc:6e:9c:0b:a3:72:1e:6b:39: 91:f0:1e:4d:3c:46:08:17:e8:c7:64:ec:ad:0d:d7: da:77:2e:89:a6:d5:5c:5f:c3:f8:f3:43:45:59:1a: 0b:6f:38:b9:d9:33:34:e7:3f:90:a1:de:c1:51:53: 9b:21:41:9d:06:10:6f:3d:04:64:a3:8d:93:2e:9f: 55:7b:72:a9:4e:4d:3f:4e:23:85:56:5c:8b:e0:41: 9a:b5:04:e2:d1:a3:20:f4:a4:f1:50:7b:88:0f:d4: 6b:d0:6c:c7:15:a7:38:a8:8e:5d:52:3f:62:75:17: 2a:59:52:bf:54:c4:0a:6b:6e:77:40:6f:16:cd:c4: d8:28:df:f5:1b:90:c2:f8:19:65:6a:7f:8d:69:1a: cb:48:e0:d9:c7:7c:1a:a2:8c:d0:5d:55:45:c8:40: d0:ff:10:fa:89:03:f8:41:e7:e7:75:c0:af:38:76: de:fa:72:ec:f4:6e:91:66:f5:80:bd:74:9b:8c:27: a9:c8:d3:51:d5:5b:38:d5:ba:23:6d:d0:82:37:b6: 51:48:58:19:f2:a1:fe:49:dc:58:d6:07:0e:5f:c4: a6:32:07:0b:34:34:45:ca:27:0e:8d:5b:bd:5f:85: ad:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BA:F5:06:4D:37:39:2B:56:3B:63:DD:12:7B:C4:A6:B3:A7:5F:E3 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:b4:58:17:88:bd:3b:29:28:08:2c:18:01:57:f0:de:3d:44: 39:f8:32:36:3e:2a:99:89:45:c8:6b:f5:52:4f:fd:13:4b:75: 9e:37:63:cf:d7:43:0e:83:94:5e:7e:d0:a9:88:4e:0d:42:57: 93:24:d5:c1:88:c3:91:dd:da:1d:9c:cc:67:17:2d:a5:8f:65: b2:46:20:89:8b:62:90:19:77:c9:cc:1c:24:fe:54:eb:48:f9: ce:91:b9:52:e6:e2:69:53:e4:f5:51:65:e7:1e:bc:e8:40:fc: f4:37:4f:69:7e:00:fc:b4:16:53:90:07:d5:b6:d6:c0:8d:33: 56:a0:19:c3:e8:2b:17:2c:35:f1:f2:a4:90:2f:65:8b:d8:49: e0:16:6b:d3:62:ee:6a:1f:b3:2f:31:cf:74:b7:5b:1a:a9:f8: 61:a1:91:d8:49:ac:12:70:0f:74:aa:7b:5f:a3:3a:38:8c:c6: ef:32:af:ee:68:3b:8e:68:8c:ee:55:e1:7d:7c:70:1b:50:02: b2:f8:5b:3a:cb:b7:9e:f2:77:f9:9d:a4:4e:cb:67:fd:0d:2a: 7b:92:d8:74:6a:ce:3b:e7:b2:c0:64:34:41:17:f0:72:b7:4d: ec:7f:b1:63:ef:d6:ac:d8:7b:99:20:b0:3a:17:2e:c7:e3:31: c9:c1:9f:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjYwMTE2MTUwOTU4WhcNMjYwMTIzMTUwOTU4WjAYMRYwFAYD VQQDDA02OTZhNTRjNy1iYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnM37YxUDxjHBY16LpyPXCftvlCz8bpwLo3IeazmR8B5NPEYIF+jHZOytDdfa dy6JptVcX8P480NFWRoLbzi52TM05z+Qod7BUVObIUGdBhBvPQRko42TLp9Ve3Kp Tk0/TiOFVlyL4EGatQTi0aMg9KTxUHuID9Rr0GzHFac4qI5dUj9idRcqWVK/VMQK a253QG8WzcTYKN/1G5DC+Bllan+NaRrLSODZx3waoozQXVVFyEDQ/xD6iQP4Qefn dcCvOHbe+nLs9G6RZvWAvXSbjCepyNNR1Vs41bojbdCCN7ZRSFgZ8qH+SdxY1gcO X8SmMgcLNDRFyicOjVu9X4WtAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+69QZN NzkrVjtj3RJ7xKazp1/jMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2tFgXiL07KSgILBgBV/DePUQ5+DI2PiqZiUXIa/VST/0TS3WeN2PP 10MOg5ReftCpiE4NQleTJNXBiMOR3dodnMxnFy2lj2WyRiCJi2KQGXfJzBwk/lTr SPnOkblS5uJpU+T1UWXnHrzoQPz0N09pfgD8tBZTkAfVttbAjTNWoBnD6CsXLDXx 8qSQL2WL2EngFmvTYu5qH7MvMc90t1saqfhhoZHYSawScA90qntfozo4jMbvMq/u aDuOaIzuVeF9fHAbUAKy+Fs6y7ee8nf5naROy2f9DSp7kth0as4757LAZDRBF/By t03sf7Fj79as2HuZILA6Fy7H4zHJwZ8T -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:20 2026 by rpki-client