This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: zgDhRRE2B5kpOQOX3sLPq54w2aLRP6MrDL1qFGqOg2A= Subject key identifier: C7:83:00:D2:0D:BC:5A:37:EE:7D:D0:7B:B8:C8:E3:B5:1E:08:98:6E Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: 0136 Signing time: Sat 17 Jan 2026 03:40:19 +0000 Manifest this update: Sat 17 Jan 2026 03:40:19 +0000 Manifest next update: Sat 24 Jan 2026 03:40:19 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: XC4rguymXe38S9RyRZm5ZsTVE8euKRCwppXvxLFwRyg=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: DqAscZot5tvFIRSwhun0FkboyMxWikjQ2XKpTFYg9ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 03:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Jan 17 03:40:19 2026 GMT Not After : Jan 24 03:40:19 2026 GMT Subject: CN=696b04a3-dbd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2a:67:9b:e4:29:28:51:52:2c:e4:82:eb:44: a8:43:92:b3:3f:73:20:b4:31:fa:9f:b2:f8:01:77: 38:79:26:12:63:a2:3d:c6:86:56:e0:e2:0d:cd:9d: 67:f1:03:a1:9d:95:36:e8:00:44:0c:1e:c5:0b:da: be:29:d5:85:8f:11:eb:32:43:49:36:40:79:32:00: 6f:fe:7c:40:73:7d:2e:aa:3c:e7:1e:85:29:a3:d9: 4c:f9:79:2a:47:68:1e:0f:1e:0a:5c:33:ce:88:66: 65:18:e9:9f:aa:01:dc:4c:bf:93:0a:17:4e:d6:ba: 77:73:23:6d:74:de:8a:b1:1a:a4:50:13:43:c9:b5: f8:95:a7:be:2c:36:ba:87:5f:dc:b5:d3:17:7d:0e: 45:8a:45:83:37:b2:0b:84:a9:c2:59:39:d4:85:4b: a5:b0:62:1d:48:8a:20:22:ab:ad:24:50:41:52:29: cc:56:62:34:15:c0:35:88:2e:19:53:ad:cb:60:21: f5:ba:53:8f:c9:7e:21:22:a7:8a:96:38:47:8b:9f: 17:71:6f:bb:6f:f6:d9:71:80:f6:82:78:d0:72:77: 4a:d5:96:b1:c4:72:d0:07:6b:b2:63:33:43:2c:f6: 73:38:bd:56:94:fa:c2:4b:84:33:68:8f:79:59:b9: 3a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:83:00:D2:0D:BC:5A:37:EE:7D:D0:7B:B8:C8:E3:B5:1E:08:98:6E X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:66:20:f9:fa:1b:39:5e:4b:e2:77:7f:c6:0b:d6:f7:e5:05: 57:64:9e:cb:6d:f6:ab:36:88:3b:b3:83:5f:92:a2:7d:15:a5: 8b:1d:a8:1a:4c:49:b1:46:fc:b7:7b:8b:27:76:ac:fd:90:0e: 87:c6:e2:aa:26:70:76:4e:f1:e0:92:90:bd:62:fd:a9:de:7e: 29:03:0f:0d:a0:93:a7:76:75:ef:0f:38:06:51:0e:58:33:d1: 29:c4:da:3b:e5:76:61:5e:9e:f5:aa:98:e7:ed:33:f2:13:0e: 64:ec:20:0e:c8:10:85:8c:b0:b0:a7:13:39:1a:37:a8:ec:a1: 86:e4:b1:7b:c7:a4:e7:0b:59:ad:e4:4b:57:90:ef:c0:df:86: 2f:49:e3:70:60:93:d7:f9:79:bc:5f:3a:bd:e3:e3:ae:fc:12: 74:5d:9a:d6:5c:d7:94:81:a2:96:65:ca:14:5f:4b:77:51:cc: 5c:a2:2f:d3:81:33:0c:d6:2f:90:7a:25:dc:28:64:b9:26:69: 77:07:98:8b:25:18:ec:8d:3e:63:9c:6b:c2:65:15:1d:78:a0: 2a:92:5b:58:11:2b:fc:81:4e:e4:e1:f1:d5:4b:ce:4b:2a:bb: f8:72:17:b7:35:79:59:68:45:96:bf:e2:8d:2b:03:cd:49:45: bd:99:4b:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjYwMTE3MDM0MDE5WhcNMjYwMTI0MDM0MDE5WjAYMRYwFAYD VQQDDA02OTZiMDRhMy1kYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtypnm+QpKFFSLOSC60SoQ5KzP3MgtDH6n7L4AXc4eSYSY6I9xoZW4OINzZ1n 8QOhnZU26ABEDB7FC9q+KdWFjxHrMkNJNkB5MgBv/nxAc30uqjznHoUpo9lM+Xkq R2geDx4KXDPOiGZlGOmfqgHcTL+TChdO1rp3cyNtdN6KsRqkUBNDybX4lae+LDa6 h1/ctdMXfQ5FikWDN7ILhKnCWTnUhUulsGIdSIogIqutJFBBUinMVmI0FcA1iC4Z U63LYCH1ulOPyX4hIqeKljhHi58XcW+7b/bZcYD2gnjQcndK1ZaxxHLQB2uyYzND LPZzOL1WlPrCS4QzaI95Wbk6fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeDANIN vFo37n3Qe7jI47UeCJhuMB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GMkE1NzMyRTFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBm UVozelBmc0dpRndjTklpeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfZiD5+hs5Xkvid3/GC9b35QVXZJ7LbfarNog7s4NfkqJ9FaWLHaga TEmxRvy3e4sndqz9kA6HxuKqJnB2TvHgkpC9Yv2p3n4pAw8NoJOndnXvDzgGUQ5Y M9EpxNo75XZhXp71qpjn7TPyEw5k7CAOyBCFjLCwpxM5Gjeo7KGG5LF7x6TnC1mt 5EtXkO/A34YvSeNwYJPX+Xm8Xzq94+Ou/BJ0XZrWXNeUgaKWZcoUX0t3Ucxcoi/T gTMM1i+QeiXcKGS5Jml3B5iLJRjsjT5jnGvCZRUdeKAqkltYESv8gU7k4fHVS85L Krv4che3NXlZaEWWv+KNKwPNSUW9mUvx -----END CERTIFICATE-----Generated at Sun Jan 18 03:10:28 2026 by rpki-client