This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: LyE1HEM6A74JQDrFf/jhN3hQvlnQPcIP+PeUMrJ7vP0= Subject key identifier: 37:5C:BA:08:AC:86:54:16:E1:A9:3E:3B:3B:6E:BB:BD:99:D2:CB:C2 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: F4 Signing time: Tue 27 Jan 2026 04:31:28 +0000 Manifest this update: Tue 27 Jan 2026 04:31:28 +0000 Manifest next update: Tue 03 Feb 2026 04:31:28 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: jFLzddxs5hPMSaIT/DwKyMHXiuS2jmgT0vdRocKERpI=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 04:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Jan 27 04:31:28 2026 GMT Not After : Feb 3 04:31:28 2026 GMT Subject: CN=69783fa0-debd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9c:ae:52:40:c8:96:a5:35:95:8d:84:53:fe: e3:62:9b:72:02:28:2c:f3:76:3d:84:99:07:1d:36: 93:0d:14:3b:3c:ee:89:0f:f1:40:eb:e1:75:15:37: 94:79:30:21:37:8f:4c:70:de:05:72:c6:ca:11:ea: 8a:50:c4:ee:da:81:19:c2:da:20:e3:5b:60:38:23: 3d:d3:6f:37:cd:1f:df:59:12:a1:46:bc:26:0b:ad: 67:98:91:42:81:7e:66:75:63:be:b7:74:ca:d1:73: dd:bc:8d:81:34:21:25:d4:99:ce:a6:dc:ba:00:89: b3:09:23:e7:ee:9d:c3:8c:c4:ce:d6:27:c6:f8:c7: 6b:a8:5e:3e:d5:e1:c6:60:96:6d:55:7d:76:17:40: 55:45:1d:e3:14:d9:e1:72:3d:9c:08:8a:a3:35:d5: 76:cb:13:0f:e5:7d:21:87:cb:66:d2:4b:e7:4f:55: 29:24:d3:88:24:00:90:e3:64:d6:4b:bf:90:ef:34: a3:5d:12:cc:09:41:02:bd:41:a4:77:5d:21:ae:80: 1c:fd:30:e5:a7:f3:6c:20:7b:ba:58:37:76:1a:35: b2:67:54:4f:69:49:10:b9:4c:bd:4d:85:31:bb:0c: c2:c6:69:b9:38:04:4a:01:c7:29:70:57:56:47:17: bd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5C:BA:08:AC:86:54:16:E1:A9:3E:3B:3B:6E:BB:BD:99:D2:CB:C2 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:dc:b7:c0:d1:a9:30:20:42:6c:ce:f2:cb:bc:9a:9b:4e:2c: 9a:88:37:c6:71:6e:a4:69:10:ed:36:19:29:b9:be:0a:58:65: dd:ea:f6:5c:0d:ba:99:f0:2a:c9:c1:28:8c:0d:c8:f1:ee:89: 87:01:20:05:09:8b:7d:45:7f:46:70:d4:1e:f7:72:90:d7:4c: 90:a0:82:cb:6f:f7:fa:00:24:f9:92:17:89:9f:4f:82:20:17: 9f:c5:c7:4f:71:7a:3a:a0:30:eb:70:b0:9a:10:43:17:15:20: af:24:cc:58:a1:7f:a5:c9:49:11:43:82:13:48:c4:a8:21:74: 56:40:c8:3f:7b:ec:e6:f8:9c:6f:7f:54:48:3f:69:91:5a:57: 48:fc:e6:b3:e8:0f:44:0c:ce:be:53:8a:c4:11:7b:ac:b6:7c: 15:a9:78:79:f7:4d:24:37:e7:ac:b7:ac:a7:da:03:6d:e4:fc: 3b:54:b5:8b:eb:bf:c5:a8:4f:c0:c0:cd:75:3f:03:36:70:2e: 81:5f:af:ce:90:e7:bd:d3:73:64:cb:2d:8a:f4:af:ad:37:cd: a6:0d:79:2b:38:b5:19:7f:9e:4a:82:7d:bf:57:d9:1d:e2:e2: a1:f7:0b:63:6e:68:a6:1e:5b:9d:a6:84:fa:81:22:8a:3d:8f: 5c:6e:c2:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjYwMTI3MDQzMTI4WhcNMjYwMjAzMDQzMTI4WjAYMRYwFAYD VQQDDA02OTc4M2ZhMC1kZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JyuUkDIlqU1lY2EU/7jYptyAigs83Y9hJkHHTaTDRQ7PO6JD/FA6+F1FTeU eTAhN49McN4FcsbKEeqKUMTu2oEZwtog41tgOCM90283zR/fWRKhRrwmC61nmJFC gX5mdWO+t3TK0XPdvI2BNCEl1JnOpty6AImzCSPn7p3DjMTO1ifG+MdrqF4+1eHG YJZtVX12F0BVRR3jFNnhcj2cCIqjNdV2yxMP5X0hh8tm0kvnT1UpJNOIJACQ42TW S7+Q7zSjXRLMCUECvUGkd10hroAc/TDlp/NsIHu6WDd2GjWyZ1RPaUkQuUy9TYUx uwzCxmm5OARKAccpcFdWRxe9cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdcugis hlQW4ak+Oztuu72Z0svCMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA03LfA0akwIEJszvLLvJqbTiyaiDfGcW6kaRDtNhkpub4KWGXd6vZc DbqZ8CrJwSiMDcjx7omHASAFCYt9RX9GcNQe93KQ10yQoILLb/f6ACT5kheJn0+C IBefxcdPcXo6oDDrcLCaEEMXFSCvJMxYoX+lyUkRQ4ITSMSoIXRWQMg/e+zm+Jxv f1RIP2mRWldI/Oaz6A9EDM6+U4rEEXustnwVqXh5900kN+est6yn2gNt5Pw7VLWL 67/FqE/AwM11PwM2cC6BX6/OkOe903Nkyy2K9K+tN82mDXkrOLUZf55Kgn2/V9kd 4uKh9wtjbmimHludpoT6gSKKPY9cbsKS -----END CERTIFICATE-----Generated at Wed Jan 28 13:33:53 2026 by rpki-client