This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: +s5h6Wu9+7XCIBE5wwkGpeneOUC0IvQKGoLnL5hHTEU= Subject key identifier: 46:BA:AD:8B:04:2C:F3:EA:D7:34:AF:F4:85:7F:B2:B3:46:03:4D:85 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01D5 Signing time: Sat 31 Jan 2026 02:49:57 +0000 Manifest this update: Sat 31 Jan 2026 02:49:57 +0000 Manifest next update: Sat 07 Feb 2026 02:49:57 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: tuEYYQNglU3apR7BNG6UUypODsfpGGfI7/chS3X/3OY=) 2: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 3: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 4: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) 5: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) 6: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: Kt+JRZe4NSSBGcnDuKjJxIa0JojNpdBSE93Vqrzpq7E=) 7: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Feb 2026 02:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Jan 31 02:49:57 2026 GMT Not After : Feb 7 02:49:57 2026 GMT Subject: CN=697d6dd5-5971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:10:c3:0e:1e:e4:6d:da:6c:ba:91:f1:8a:17: 02:d6:4f:29:8b:55:64:fa:1f:c3:81:c7:29:c0:16: 3d:72:9a:b9:60:f8:9e:42:d4:30:1a:c5:c1:9d:f2: aa:ea:6a:c0:a0:5b:36:6c:6d:cb:ac:d8:e0:b0:54: 98:5b:3f:b2:7c:96:59:4e:48:43:9b:e2:6f:ca:b5: 95:2d:4a:ac:19:86:1c:8b:d3:59:1a:e1:f4:cc:40: 18:bf:97:a2:27:62:d8:38:8a:2a:86:81:d6:ec:a4: c9:19:61:59:21:83:82:2d:ac:1c:1f:5e:32:06:91: a4:da:12:08:8f:c0:bc:5b:65:9c:49:4b:77:da:b5: 36:6a:af:6a:7c:5c:41:90:42:bb:f6:7a:8d:54:2d: b2:0d:34:17:f4:39:9c:2a:4b:1e:89:df:68:23:09: 89:36:a0:cd:ff:46:fe:e3:80:2d:72:1b:a2:e3:77: 70:62:b2:ac:9d:03:2b:cf:d1:9c:8d:c8:c6:85:e5: b7:db:99:a2:ad:6f:f3:68:ae:9c:0b:7b:70:ae:58: 7f:12:0c:30:c7:7b:0e:21:c3:60:81:36:41:5c:23: c6:b1:61:c9:11:08:1b:c0:bc:3f:1d:2d:57:47:91: 69:be:38:16:7f:e7:9f:30:9b:30:cc:3b:9b:56:eb: 3f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:BA:AD:8B:04:2C:F3:EA:D7:34:AF:F4:85:7F:B2:B3:46:03:4D:85 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ec:32:26:75:e5:5f:42:41:ab:73:29:d4:e9:ac:01:ce:d4: e0:d1:04:f4:5b:35:bc:84:5f:d2:51:e7:39:5b:69:ad:21:c8: 64:68:cc:27:b7:c4:c4:77:1f:63:c0:81:31:b0:c0:e3:e9:67: 6b:ab:0e:57:af:be:85:59:22:8a:f7:17:6f:79:c8:57:86:ac: 8a:ff:9d:7d:fc:97:22:7c:5e:2d:d0:f1:5c:89:dc:ed:20:04: a1:e6:c4:57:f4:10:db:13:1c:53:f8:f2:e5:41:be:f2:b8:fe: d4:aa:4e:e3:b5:cd:45:91:19:6a:21:a4:be:0e:75:38:a4:49: 27:a1:7d:ff:cd:43:74:3e:c4:7d:8e:f4:b5:21:20:2a:9a:a8: 80:bc:14:96:4c:7b:ca:f7:00:e4:28:20:52:c6:23:bf:ba:c5: 1b:5c:aa:80:14:8f:77:41:f7:21:49:af:c7:48:6f:de:d9:5d: d8:ca:af:d9:55:47:5b:d5:de:56:67:0e:7b:78:ef:a5:be:34: b7:ea:82:ba:78:19:1d:0d:3f:5e:9f:25:25:20:e0:81:69:3a: 8d:2a:b3:00:0a:12:ab:25:88:bb:d2:07:9a:00:33:18:fe:ae: 8b:e6:bf:f3:12:62:c6:e6:01:a6:58:ee:e5:06:fb:c1:12:51: 91:32:45:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjYwMTMxMDI0OTU3WhcNMjYwMjA3MDI0OTU3WjAYMRYwFAYD VQQDDA02OTdkNmRkNS01OTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkRDDDh7kbdpsupHxihcC1k8pi1Vk+h/DgccpwBY9cpq5YPieQtQwGsXBnfKq 6mrAoFs2bG3LrNjgsFSYWz+yfJZZTkhDm+JvyrWVLUqsGYYci9NZGuH0zEAYv5ei J2LYOIoqhoHW7KTJGWFZIYOCLawcH14yBpGk2hIIj8C8W2WcSUt32rU2aq9qfFxB kEK79nqNVC2yDTQX9DmcKkseid9oIwmJNqDN/0b+44Atchui43dwYrKsnQMrz9Gc jcjGheW325mirW/zaK6cC3twrlh/Egwwx3sOIcNggTZBXCPGsWHJEQgbwLw/HS1X R5FpvjgWf+efMJswzDubVus/rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEa6rYsE LPPq1zSv9IV/srNGA02FMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv7DImdeVfQkGrcynU6awBztTg0QT0WzW8hF/SUec5W2mtIchkaMwn t8TEdx9jwIExsMDj6Wdrqw5Xr76FWSKK9xdvechXhqyK/519/JcifF4t0PFcidzt IASh5sRX9BDbExxT+PLlQb7yuP7Uqk7jtc1FkRlqIaS+DnU4pEknoX3/zUN0PsR9 jvS1ISAqmqiAvBSWTHvK9wDkKCBSxiO/usUbXKqAFI93QfchSa/HSG/e2V3Yyq/Z VUdb1d5WZw57eO+lvjS36oK6eBkdDT9enyUlIOCBaTqNKrMAChKrJYi70geaADMY /q6L5r/zEmLG5gGmWO7lBvvBElGRMkUi -----END CERTIFICATE-----Generated at Sat Jan 31 13:39:01 2026 by rpki-client