This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft File: tkP-swMnQhSPOvnDU5M41VSTcig.mft (raw, json) Hash identifier: QjCPh/fH0/4Y4/lymGikkH13N3UqujsV16Myu3t7hB8= Subject key identifier: D4:B7:51:FA:F8:D6:5B:0F:42:A9:14:D3:A2:0B:56:23:03:91:83:3E Authority key identifier: B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 Certificate issuer: /CN=A91CD0DE/serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft Manifest number: 31 Signing time: Sat 17 Jan 2026 06:33:46 +0000 Manifest this update: Sat 17 Jan 2026 06:33:45 +0000 Manifest next update: Sat 24 Jan 2026 06:33:45 +0000 Files and hashes: 1: tkP-swMnQhSPOvnDU5M41VSTcig.crl (hash: zbmY8VnJ3aWhV2QWTi0Hlo1Rl4wSlm03g1SKGWACo0I=) 2: 341BBBECA99411F093BBAA15C4F9AE02.roa (hash: TNOMyUTzIQDmtZMNg4RAepXI8EHziIAFioU9/cJC+ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Validity Not Before: Jan 17 06:33:45 2026 GMT Not After : Jan 24 06:33:45 2026 GMT Subject: CN=696b2d4a-b8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f0:f5:54:9b:57:13:10:fa:0f:41:bb:f2:32: 72:2e:cb:11:09:87:ae:c0:54:d9:b0:ef:a8:45:4c: 15:f3:6d:fe:76:ae:52:40:d3:38:d7:e4:15:94:b2: 8b:de:04:5a:70:90:09:f0:58:31:01:7a:50:62:86: 3b:7f:0b:5e:3f:bf:df:99:19:26:ed:e9:d2:0d:83: 09:15:32:9a:a6:4b:6d:ab:30:5e:d9:b8:45:c7:26: c9:50:56:a1:30:b5:ff:44:09:8c:ee:bf:c5:d1:8d: ed:37:91:7c:1d:50:9f:d4:5d:ab:7c:3b:1c:16:e0: 97:14:37:e8:a3:3f:45:b9:9d:c4:72:31:05:c8:8e: 68:57:d5:cb:60:81:5f:88:cb:c9:7e:a8:b3:89:69: 86:16:fa:42:6d:e0:3c:ed:ec:90:2f:8c:af:f7:71: 0b:a9:24:6e:83:fc:90:9e:01:4e:ea:02:1c:6d:5a: 88:a0:72:8b:99:68:75:16:71:23:8a:8e:f2:86:93: af:d0:f1:7c:bb:47:22:c7:85:94:7f:e5:14:ef:88: ff:94:10:5a:9f:ea:f9:bb:6a:21:e8:66:c3:e4:e2: e3:0b:0a:38:74:a4:bb:63:1d:28:78:bd:fa:cf:68: 58:b6:db:08:93:d5:22:6c:6c:dc:52:fc:ff:a8:a7: 08:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B7:51:FA:F8:D6:5B:0F:42:A9:14:D3:A2:0B:56:23:03:91:83:3E X509v3 Authority Key Identifier: keyid:B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f6:12:78:45:1a:ec:d7:42:7e:7a:49:03:c5:8c:0c:06:66: e0:24:c9:01:ef:3a:41:db:43:cc:19:3f:44:80:07:2d:e4:a7: 71:3b:d5:c8:ef:3f:c6:ae:e8:d8:6d:fd:c7:6f:d3:84:33:37: 04:ae:61:3a:08:2f:2b:f8:4a:99:71:9f:e1:1b:e0:fc:6c:22: 0b:94:67:e2:38:fe:fa:00:14:61:bb:f5:3a:5c:70:ed:ef:58: 28:98:22:fd:d3:f3:4a:e1:6c:bd:ca:d7:51:58:dc:20:a5:92: a2:6f:0b:19:f4:76:f4:e1:c2:59:c0:fe:e7:63:3e:2e:7f:50: a1:85:0d:43:2d:5b:20:04:3e:dd:22:ea:02:11:82:3c:a5:4f: 17:a2:de:c9:b0:1e:f3:c6:e2:7f:95:3e:1c:07:9a:0b:dd:a3: 48:a3:fb:4d:5d:5d:32:17:06:12:2e:fe:2f:47:05:de:97:c8: 3a:be:5a:97:9c:0b:df:91:4e:be:20:82:21:38:2d:52:b4:59: 37:8c:07:11:f5:98:d0:2e:b2:ee:a7:bf:e5:54:3e:6c:0f:75: 63:d8:1e:37:5e:9f:28:d0:69:55:35:f1:5c:41:1f:2d:44:5e: fc:c3:de:81:32:e4:f3:af:9f:9e:f0:53:be:33:b4:7a:70:f4: 36:4b:e1:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQjY0M0ZFQjMwMzI3NDIxNDhGM0FGOUMzNTM5MzM4RDU1 NDkzNzIyODAeFw0yNjAxMTcwNjMzNDVaFw0yNjAxMjQwNjMzNDVaMBgxFjAUBgNV BAMMDTY5NmIyZDRhLWI4ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa8PVUm1cTEPoPQbvyMnIuyxEJh67AVNmw76hFTBXzbf52rlJA0zjX5BWUsove BFpwkAnwWDEBelBihjt/C14/v9+ZGSbt6dINgwkVMpqmS22rMF7ZuEXHJslQVqEw tf9ECYzuv8XRje03kXwdUJ/UXat8OxwW4JcUN+ijP0W5ncRyMQXIjmhX1ctggV+I y8l+qLOJaYYW+kJt4Dzt7JAvjK/3cQupJG6D/JCeAU7qAhxtWoigcouZaHUWcSOK jvKGk6/Q8Xy7RyLHhZR/5RTviP+UEFqf6vm7aiHoZsPk4uMLCjh0pLtjHSh4vfrP aFi22wiT1SJsbNxS/P+opwjRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1LdR+vjW Ww9CqRTTogtWIwORgz4wHwYDVR0jBBgwFoAUtkP+swMnQhSPOvnDU5M41VSTcigw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzRGNzY5RDU4QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhTUE92bkRVNU00MVZTVGNp Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdGtQLXN3TW5RaFNQT3ZuRFU1TTQxVlNUY2lnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MERFLzRGNzY5RDU4QTk4RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhT UE92bkRVNU00MVZTVGNpZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIf2EnhFGuzXQn56SQPFjAwGZuAkyQHvOkHbQ8wZP0SABy3kp3E71cjv P8au6Nht/cdv04QzNwSuYToILyv4Splxn+Eb4PxsIguUZ+I4/voAFGG79TpccO3v WCiYIv3T80rhbL3K11FY3CClkqJvCxn0dvThwlnA/udjPi5/UKGFDUMtWyAEPt0i 6gIRgjylTxei3smwHvPG4n+VPhwHmgvdo0ij+01dXTIXBhIu/i9HBd6XyDq+Wpec C9+RTr4ggiE4LVK0WTeMBxH1mNAusu6nv+VUPmwPdWPYHjdenyjQaVU18VxBHy1E XvzD3oEy5POvn57wU74ztHpw9DZL4WA= -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:22 2026 by rpki-client