This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: jDvTo35NFA5ANITSWmNFTuv/x54k891+e+oIa591TOM= Subject key identifier: 03:76:D0:93:30:97:91:45:25:ED:B5:44:A4:C1:74:5D:DF:F5:8A:6C Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: 75 Signing time: Sat 17 Jan 2026 05:54:01 +0000 Manifest this update: Sat 17 Jan 2026 05:54:01 +0000 Manifest next update: Sat 24 Jan 2026 05:54:01 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: cnIqipnFCV4yqlqmL/ffMqJp0pCO8zyftGT15mSwK40=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: NGudT5ffYxQaLDuPITb3DSyOtSWSbubIZoe2i4vUMeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 05:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Jan 17 05:54:01 2026 GMT Not After : Jan 24 05:54:01 2026 GMT Subject: CN=696b23f9-1f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fa:69:2a:12:9c:98:be:65:1c:a3:3f:18:a0: 0f:70:9b:64:ac:18:d0:ff:4a:26:70:f5:3e:fb:8c: 76:4e:5e:9a:40:d1:9d:67:5a:64:a6:54:61:e2:49: cf:cc:7f:db:22:d3:33:dd:04:b1:2f:59:40:cc:4e: 53:3d:61:92:59:e9:a7:55:46:00:bb:f8:47:7b:50: 98:8e:17:11:76:ba:a1:07:d8:43:c6:e7:54:6f:eb: 50:e6:59:b4:07:51:bb:08:dd:20:d0:25:12:64:91: 6b:4a:e7:18:e0:49:ea:f6:b3:53:9c:73:98:60:bb: c2:3f:f4:18:e5:43:1d:b2:90:64:1b:bc:dd:d4:94: c3:6c:68:9f:8c:b7:83:4e:a1:53:e6:f9:88:40:ed: 9c:0a:8d:bd:57:1b:69:ad:42:3b:77:c9:ec:bc:7d: 1f:ea:7c:38:5b:d4:1f:8b:79:aa:79:91:fd:b8:c3: cb:7a:fe:f1:55:67:5a:ef:8a:33:35:7c:e7:9d:eb: ea:04:c3:66:6d:76:47:d1:05:9d:d5:95:33:e3:86: 82:1b:cd:e7:8c:8b:a0:0d:8c:09:f0:dd:5f:25:8b: f7:ae:5f:12:c5:cc:75:f4:8c:d7:89:36:aa:a2:ff: 40:27:22:0c:35:70:dc:05:43:6f:87:50:b4:e8:70: f3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:76:D0:93:30:97:91:45:25:ED:B5:44:A4:C1:74:5D:DF:F5:8A:6C X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:08:5d:df:5c:58:22:be:25:b2:2c:db:ef:08:10:e2:fc:11: 04:9c:27:ad:15:65:9c:72:97:1d:25:78:96:4d:7b:34:30:21: 88:e9:e2:03:45:60:cc:36:61:03:bd:38:7c:43:91:85:48:35: 0f:54:f7:3d:32:9a:14:a2:f5:63:61:25:b7:15:73:a8:32:08: fc:a8:7d:9b:9d:16:dc:ff:85:35:b2:75:33:e8:40:b8:45:b4: 8d:18:31:f9:05:8e:97:bd:ca:69:8d:d4:8c:73:2c:de:d7:46: bc:23:ed:1b:76:dc:39:1d:71:0b:64:0e:79:c0:31:47:91:1e: 90:ee:79:c2:10:c4:07:69:82:3c:1a:5f:8f:9b:d2:ea:62:21: ed:77:ad:ba:0f:8d:03:3c:b1:c4:57:4e:00:f5:ce:a2:3f:a4: 37:87:ed:c1:1f:c6:5b:4c:ec:d5:d9:e4:6a:97:0d:56:28:2c: 34:a3:39:5b:4d:5d:a9:78:f6:72:80:4b:06:ac:5e:9c:09:73: 8d:74:eb:aa:40:22:2a:94:37:d1:e9:d4:6c:1b:52:7b:f9:b9: 53:48:e4:70:cb:4e:48:38:4c:3d:c9:ce:65:53:23:6c:b3:54: 27:cb:74:e9:3f:61:78:0a:45:e0:40:3d:af:1e:79:14:93:73: f4:be:82:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoMjIyNDI5NDQxNkI4NDY1NzA2NTU0QjUyQ0JDNTZGNDQ5 QkM0NkM4OTAeFw0yNjAxMTcwNTU0MDFaFw0yNjAxMjQwNTU0MDFaMBgxFjAUBgNV BAMMDTY5NmIyM2Y5LTFmNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8+mkqEpyYvmUcoz8YoA9wm2SsGND/SiZw9T77jHZOXppA0Z1nWmSmVGHiSc/M f9si0zPdBLEvWUDMTlM9YZJZ6adVRgC7+Ed7UJiOFxF2uqEH2EPG51Rv61DmWbQH UbsI3SDQJRJkkWtK5xjgSer2s1Occ5hgu8I/9BjlQx2ykGQbvN3UlMNsaJ+Mt4NO oVPm+YhA7ZwKjb1XG2mtQjt3yey8fR/qfDhb1B+Leap5kf24w8t6/vFVZ1rvijM1 fOed6+oEw2ZtdkfRBZ3VlTPjhoIbzeeMi6ANjAnw3V8li/euXxLFzHX0jNeJNqqi /0AnIgw1cNwFQ2+HULTocPMnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA3bQkzCX kUUl7bVEpMF0Xd/1imwwHwYDVR0jBBgwFoAUIiQpRBa4RlcGVUtSy8VvRJvEbIkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0VEMEYxMUY0NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWlRcFJCYTRSbGNHVlV0U3k4VnZSSnZFYklrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0VEMEYxMUY0NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL0lpUXBSQmE0Umxj R1ZVdFN5OFZ2Ukp2RWJJay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMoIXd9cWCK+JbIs2+8IEOL8EQScJ60VZZxylx0leJZNezQwIYjp4gNF YMw2YQO9OHxDkYVINQ9U9z0ymhSi9WNhJbcVc6gyCPyofZudFtz/hTWydTPoQLhF tI0YMfkFjpe9ymmN1IxzLN7XRrwj7Rt23DkdcQtkDnnAMUeRHpDuecIQxAdpgjwa X4+b0upiIe13rboPjQM8scRXTgD1zqI/pDeH7cEfxltM7NXZ5GqXDVYoLDSjOVtN Xal49nKASwasXpwJc41066pAIiqUN9Hp1GwbUnv5uVNI5HDLTkg4TD3JzmVTI2yz VCfLdOk/YXgKReBAPa8eeRSTc/S+gvM= -----END CERTIFICATE-----Generated at Sun Jan 18 03:14:33 2026 by rpki-client