This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: v1CRSLBsl2oEMmMB8mX6Cc0VhjnbPazArotzaeDA7DA= Subject key identifier: 5C:14:15:2A:51:F8:8F:A8:53:31:2F:BF:7A:0B:72:55:5C:A3:25:D4 Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 0856 Signing time: Tue 20 Jan 2026 19:41:52 +0000 Manifest this update: Tue 20 Jan 2026 19:41:52 +0000 Manifest next update: Tue 27 Jan 2026 19:41:52 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: 0yxvuyuK0veW6K/kMKxFUo+PjDJ+mTmlSNdLJqkshxo=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: NqIb0O8e2GCcDz67+/QlLTVfXxW0NeRvUXG1KEKM7SI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 19:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Jan 20 19:41:52 2026 GMT Not After : Jan 27 19:41:52 2026 GMT Subject: CN=696fda80-0bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:78:90:ad:92:eb:3c:f2:64:11:b1:4e:dc:20: 94:1c:0c:65:6f:3a:09:e7:1e:a2:36:f2:fc:15:f6: 8a:10:8a:59:28:49:f2:b4:1b:8c:0f:d6:a0:0c:5b: d2:f3:bb:f4:4d:85:91:22:72:84:f3:ab:09:72:60: cb:cb:fe:0e:e6:63:fd:6a:fc:d4:9c:b6:38:56:42: 7a:4f:24:c3:d9:7e:eb:a9:ca:11:11:3c:c2:e5:c0: 32:1b:ff:f1:7e:6e:2d:99:87:85:39:ca:c6:f6:52: 2e:4f:3a:60:35:72:22:78:87:2e:15:d8:5c:30:07: f3:58:86:cb:33:3b:04:5b:2c:f8:ed:b6:3c:51:bd: f9:95:0a:4a:41:e4:fb:8e:42:f1:db:20:de:e1:1b: 44:9d:5e:ba:08:ab:4b:49:47:69:d3:2a:b7:41:87: 78:7f:82:69:08:93:fe:b9:c0:b2:06:fb:67:1e:b0: 30:4a:68:1d:68:19:f7:6c:bd:d7:c0:69:93:87:09: 46:11:ff:21:0f:96:60:fd:3d:87:e7:bb:71:81:a9: bb:84:c7:7b:d4:14:e3:cd:1d:60:d8:49:96:e5:ad: 34:7a:3c:96:10:76:35:25:23:88:76:cf:10:8b:43: 00:fa:31:84:e6:88:4d:a9:46:5b:c4:6a:15:9a:da: a8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:14:15:2A:51:F8:8F:A8:53:31:2F:BF:7A:0B:72:55:5C:A3:25:D4 X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:70:f8:fe:4e:d6:6f:29:ef:38:1b:79:3c:41:22:88:84:e1: e1:22:35:23:4f:83:29:9b:d2:a5:f8:83:05:f7:0e:5f:16:e3: a6:48:4f:48:84:4b:85:1d:4b:a8:e3:ff:9f:57:29:21:2e:12: 36:76:62:2c:36:fd:28:9d:ce:80:41:5c:a2:ad:8c:5d:20:c5: 85:82:c1:ca:92:b5:a1:cb:6d:3a:d6:38:3a:f9:e9:01:da:7a: 75:40:f1:e0:5a:69:a1:d6:ba:03:81:71:79:37:05:e8:c6:bb: b6:87:25:5f:7c:a1:85:be:4e:d0:ba:57:71:d8:5b:8e:5f:ed: 0b:65:38:0a:2c:22:1f:0b:e7:5d:f8:7b:08:7d:a0:58:ce:f4: 00:5b:e5:7b:ef:74:58:cf:f9:c3:a3:9b:06:b2:d8:2b:4c:7e: 6b:09:aa:61:cb:6e:e4:8a:d3:bf:a1:e7:e2:63:29:92:a2:31: 17:e8:78:24:c7:b7:42:b1:65:43:2c:1c:a4:db:e6:70:ca:83: 6d:f3:6c:41:94:d5:87:d2:17:7e:e4:0e:96:ee:ca:2b:7f:56: df:15:c2:cd:16:c5:1d:95:33:07:2c:de:35:af:0e:32:10:f3: 57:94:26:03:3e:58:57:80:68:a2:2c:b6:33:a0:5e:01:07:3a: 72:b7:95:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjYwMTIwMTk0MTUyWhcNMjYwMTI3MTk0MTUyWjAYMRYwFAYD VQQDDA02OTZmZGE4MC0wYmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3iQrZLrPPJkEbFO3CCUHAxlbzoJ5x6iNvL8FfaKEIpZKEnytBuMD9agDFvS 87v0TYWRInKE86sJcmDLy/4O5mP9avzUnLY4VkJ6TyTD2X7rqcoRETzC5cAyG//x fm4tmYeFOcrG9lIuTzpgNXIieIcuFdhcMAfzWIbLMzsEWyz47bY8Ub35lQpKQeT7 jkLx2yDe4RtEnV66CKtLSUdp0yq3QYd4f4JpCJP+ucCyBvtnHrAwSmgdaBn3bL3X wGmThwlGEf8hD5Zg/T2H57txgam7hMd71BTjzR1g2EmW5a00ejyWEHY1JSOIds8Q i0MA+jGE5ohNqUZbxGoVmtqoMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwUFSpR +I+oUzEvv3oLclVcoyXUMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjcPj+TtZvKe84G3k8QSKIhOHhIjUjT4Mpm9Kl+IMF9w5fFuOmSE9I hEuFHUuo4/+fVykhLhI2dmIsNv0onc6AQVyirYxdIMWFgsHKkrWhy2061jg6+ekB 2np1QPHgWmmh1roDgXF5NwXoxru2hyVffKGFvk7Quldx2FuOX+0LZTgKLCIfC+dd +HsIfaBYzvQAW+V773RYz/nDo5sGstgrTH5rCaphy27kitO/oefiYymSojEX6Hgk x7dCsWVDLByk2+ZwyoNt82xBlNWH0hd+5A6W7sorf1bfFcLNFsUdlTMHLN41rw4y EPNXlCYDPlhXgGiiLLYzoF4BBzpyt5Uj -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:45 2026 by rpki-client