This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft (raw, json) Hash identifier: hUgBbcoA3xqYgVYn2cBkwufCdpVrmGnp0M521Qj3gQw= Subject key identifier: 35:82:78:A3:C6:8C:39:77:58:29:18:4A:43:9E:DE:F8:F4:3F:C0:C1 Authority key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 Certificate issuer: /CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft Manifest number: 0241 Signing time: Tue 20 Jan 2026 16:36:49 +0000 Manifest this update: Tue 20 Jan 2026 16:36:49 +0000 Manifest next update: Tue 27 Jan 2026 16:36:49 +0000 Files and hashes: 1: WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl (hash: 6NgdNfmXSbjQqVVmUkyIw055McM56ntJ+m47Fg1X7EY=) 2: 04594232DEA011EE91181415C4F9AE02.roa (hash: ux/yn18OibC6Db2VOykrM0n0NcvF/7PYrwCoPjjFpC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15, serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Validity Not Before: Jan 20 16:36:49 2026 GMT Not After : Jan 27 16:36:49 2026 GMT Subject: CN=696faf21-bd45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f8:fc:1e:96:b8:70:cd:14:de:97:4a:0f:1f: 8b:38:5f:a1:6b:63:3d:a7:79:70:bc:7b:71:6d:2f: 9a:3b:0f:fc:38:52:ec:64:b2:b3:a9:68:17:12:f2: 52:f2:05:b5:ba:9a:a6:d5:e4:9a:39:71:7c:d8:f4: b8:fa:e3:25:36:f3:d5:a7:a2:ae:1a:ee:71:b5:62: be:c6:72:f8:16:12:79:98:f2:da:76:10:2e:c6:1c: 9e:66:e3:41:b1:f3:35:89:88:34:24:88:2e:b2:1e: d1:08:84:b3:30:a8:30:ac:ee:9c:b4:91:ee:f9:d7: e1:b6:19:6f:44:ef:56:ab:a4:1c:20:4f:d4:ad:9a: e7:3d:11:dd:26:6c:d4:d8:31:22:f1:0c:05:7a:91: 32:59:c8:72:de:20:c2:de:f5:60:78:f9:52:66:80: 72:c9:75:83:02:93:5e:b7:3c:52:c2:63:0c:e3:5b: 0d:bd:92:7a:0f:d5:a8:57:7b:1a:8f:7a:51:61:99: c3:56:6e:ba:cb:73:64:b6:f9:e6:ad:49:d7:ff:36: fc:2b:6a:2e:47:4b:19:72:15:27:f9:a7:5f:03:a7: 6d:5d:84:32:16:41:2e:85:8e:ca:9e:8a:35:b3:e7: 6d:98:70:b6:74:57:d0:1b:88:00:85:fe:d6:c6:7c: 52:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:82:78:A3:C6:8C:39:77:58:29:18:4A:43:9E:DE:F8:F4:3F:C0:C1 X509v3 Authority Key Identifier: keyid:58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:9a:a3:69:49:fe:23:1e:55:5e:8d:e3:88:f1:8a:b6:43:7c: a8:da:90:aa:da:04:1b:80:0b:87:16:ae:fc:e8:84:8c:71:fd: f3:f6:59:f7:3b:54:0f:4c:f6:63:fa:26:be:98:56:b1:a7:7b: a3:74:a9:cf:86:f0:d5:1c:a7:91:11:f5:0e:f5:79:88:a2:39: c9:7f:1f:bf:be:20:7b:5a:ed:5d:f2:7a:05:b3:a8:83:45:3b: d5:ce:63:5a:1d:fc:cf:86:e0:68:95:43:1b:48:80:02:5a:23: 32:11:c2:8e:bb:12:9f:ce:3b:38:a4:93:f5:b4:ab:4d:53:47: 5f:12:56:1c:03:67:e3:53:0d:84:b1:89:dc:66:bb:27:3c:be: 97:f6:b4:79:12:74:76:4f:2d:3f:92:00:36:4a:17:54:98:4e: 2e:1f:86:4d:38:be:ec:88:4e:ce:1f:cc:5f:db:28:f3:c1:64: 65:a9:9e:8e:01:41:07:f9:ca:af:b8:d2:09:22:d1:00:58:b5: 4e:02:b2:0a:89:24:b7:9b:a1:34:62:b5:21:df:1f:29:0b:35: df:30:e4:82:ba:64:44:66:8b:b1:dc:11:af:42:df:c4:e0:c8: b9:96:42:0d:f2:14:1b:35:9a:a4:88:5b:3b:ff:41:a4:9f:88: bc:f7:fa:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKDU4MEU0NjZCN0Q0RkE4NjQ5RDJFMEIyNzM3NUVBMjg2 QzZDNTQ1ODQwHhcNMjYwMTIwMTYzNjQ5WhcNMjYwMTI3MTYzNjQ5WjAYMRYwFAYD VQQDDA02OTZmYWYyMS1iZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvj8Hpa4cM0U3pdKDx+LOF+ha2M9p3lwvHtxbS+aOw/8OFLsZLKzqWgXEvJS 8gW1upqm1eSaOXF82PS4+uMlNvPVp6KuGu5xtWK+xnL4FhJ5mPLadhAuxhyeZuNB sfM1iYg0JIgush7RCISzMKgwrO6ctJHu+dfhthlvRO9Wq6QcIE/UrZrnPRHdJmzU 2DEi8QwFepEyWchy3iDC3vVgePlSZoByyXWDApNetzxSwmMM41sNvZJ6D9WoV3sa j3pRYZnDVm66y3NktvnmrUnX/zb8K2ouR0sZchUn+adfA6dtXYQyFkEuhY7Knoo1 s+dtmHC2dFfQG4gAhf7WxnxSiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWCeKPG jDl3WCkYSkOe3vj0P8DBMB8GA1UdIwQYMBaAFFgORmt9T6hknS4LJzdeoobGxUWE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS8zMjZFQjBCNDhE RUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFHU2RMZ3NuTjE2aWhzYkZS WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1dBNUdhMzFQcUdTZExnc25OMTZpaHNiRlJZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0IxNS8zMjZFQjBCNDhERUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFH U2RMZ3NuTjE2aWhzYkZSWVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDmqNpSf4jHlVejeOI8Yq2Q3yo2pCq2gQbgAuHFq786ISMcf3z9ln3 O1QPTPZj+ia+mFaxp3ujdKnPhvDVHKeREfUO9XmIojnJfx+/viB7Wu1d8noFs6iD RTvVzmNaHfzPhuBolUMbSIACWiMyEcKOuxKfzjs4pJP1tKtNU0dfElYcA2fjUw2E sYncZrsnPL6X9rR5EnR2Ty0/kgA2ShdUmE4uH4ZNOL7siE7OH8xf2yjzwWRlqZ6O AUEH+cqvuNIJItEAWLVOArIKiSS3m6E0YrUh3x8pCzXfMOSCumREZoux3BGvQt/E 4Mi5lkIN8hQbNZqkiFs7/0Gkn4i89/qv -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:45 2026 by rpki-client