This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: DL0z4dv6ED3pBPUwk411K4xK2xazUg6/tvZTcwCmGco= Subject key identifier: 31:53:2D:E1:50:58:03:79:F5:C3:0F:47:F9:3E:8F:8B:43:E1:45:31 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: D8 Signing time: Sat 17 Jan 2026 04:46:43 +0000 Manifest this update: Sat 17 Jan 2026 04:46:43 +0000 Manifest next update: Sat 24 Jan 2026 04:46:43 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: MqcrJEYnXFiXasyBJFQ0ia+ajUI4Wbu5WPdFGq1mWRQ=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: UYM1+JyUTiIe7hrNbR8AB9pkdgDLjYHrI0Dj67rXtxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Jan 17 04:46:43 2026 GMT Not After : Jan 24 04:46:43 2026 GMT Subject: CN=696b1433-dea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cf:63:20:90:8f:f5:ad:f1:ed:e5:e2:50:c5: 12:97:f2:d5:75:41:6f:e1:71:e2:21:63:c6:67:54: 85:46:ae:d7:3c:cf:2f:20:d5:53:b1:20:a1:b2:5d: 4b:90:b0:07:79:07:ae:05:72:41:e0:a1:13:17:96: c3:62:81:3a:d7:51:0b:0e:92:9e:df:69:90:35:ed: 26:5c:1c:22:35:43:21:15:69:26:fa:93:0d:d9:d6: 38:4c:c0:4f:e3:54:12:04:53:1c:1f:00:23:e9:11: 12:cc:9f:e1:15:cc:7f:b0:de:5f:16:1e:f7:81:15: 06:5e:79:1a:46:69:d3:63:c4:44:33:7b:3a:b3:f5: 01:0e:bb:9e:28:d0:dd:76:21:9b:54:00:15:b5:a8: a6:7d:ca:62:20:52:50:c1:ff:2e:6d:30:5d:ef:ac: 16:59:cf:9c:7b:ba:80:21:ca:c7:72:79:9a:85:e0: 24:c0:8e:14:db:8c:01:c6:12:36:ab:ab:31:91:97: 48:a1:f0:ef:30:2e:18:18:30:1a:7c:82:e3:8c:b4: 99:75:d7:74:2c:5b:eb:17:69:49:d6:51:3d:65:b0: fc:e1:dc:02:0b:52:ce:e5:06:60:4f:27:4d:85:b5: 0c:f4:fa:70:a0:45:d2:10:3e:d3:fa:5f:24:19:cc: 84:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:53:2D:E1:50:58:03:79:F5:C3:0F:47:F9:3E:8F:8B:43:E1:45:31 X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:de:e4:cc:c0:62:2d:8f:f5:c3:0d:9a:b6:cb:62:1f:b5:fe: ce:8d:a9:66:ad:2d:16:04:4f:bd:30:11:34:b6:e8:d3:ff:91: c7:5e:78:b9:5f:c8:c2:89:71:8e:4c:29:99:e2:67:1b:36:05: 8f:35:00:51:cf:a8:3a:94:6e:af:0e:36:af:67:b9:55:f3:81: aa:fd:54:e8:58:15:56:b9:5d:6d:dd:07:ee:8d:3d:90:c8:20: 4a:33:65:5e:6b:4c:b6:89:92:b4:0e:37:84:ac:5b:fb:6f:ed: c5:e5:d6:9e:25:98:3c:68:b5:15:cc:9b:57:32:e5:69:48:0a: f7:32:b2:7c:35:84:66:ef:c0:53:f6:96:ec:e5:a5:3f:9c:35: 93:8f:eb:07:8b:82:95:da:88:ac:a5:ce:ec:fc:5d:82:6d:66: 8f:cf:8e:0e:56:42:a8:bd:df:5f:67:39:0d:47:8a:7c:96:c0: 73:44:34:54:9c:f1:b6:48:90:ea:4a:12:e0:1f:bd:ea:45:d7: e0:97:8c:a6:42:8e:4f:98:f9:4b:6d:ce:e0:fc:c7:85:90:e2: 3e:2e:17:54:2f:f9:90:f3:de:19:e8:9d:82:ea:69:f7:7d:f1: 1c:3c:28:ca:f5:59:5c:1b:d1:b0:54:a8:38:47:7b:6a:7d:a2: 4e:12:6d:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1 OTAyNDE1MjMwHhcNMjYwMTE3MDQ0NjQzWhcNMjYwMTI0MDQ0NjQzWjAYMRYwFAYD VQQDDA02OTZiMTQzMy1kZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA589jIJCP9a3x7eXiUMUSl/LVdUFv4XHiIWPGZ1SFRq7XPM8vINVTsSChsl1L kLAHeQeuBXJB4KETF5bDYoE611ELDpKe32mQNe0mXBwiNUMhFWkm+pMN2dY4TMBP 41QSBFMcHwAj6RESzJ/hFcx/sN5fFh73gRUGXnkaRmnTY8REM3s6s/UBDrueKNDd diGbVAAVtaimfcpiIFJQwf8ubTBd76wWWc+ce7qAIcrHcnmaheAkwI4U24wBxhI2 q6sxkZdIofDvMC4YGDAafILjjLSZddd0LFvrF2lJ1lE9ZbD84dwCC1LO5QZgTydN hbUM9PpwoEXSED7T+l8kGcyEOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFTLeFQ WAN59cMPR/k+j4tD4UUxMB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQx NTB5NlBSWnJZYmRaQWtGU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk3uTMwGItj/XDDZq2y2Iftf7OjalmrS0WBE+9MBE0tujT/5HHXni5 X8jCiXGOTCmZ4mcbNgWPNQBRz6g6lG6vDjavZ7lV84Gq/VToWBVWuV1t3QfujT2Q yCBKM2Vea0y2iZK0DjeErFv7b+3F5daeJZg8aLUVzJtXMuVpSAr3MrJ8NYRm78BT 9pbs5aU/nDWTj+sHi4KV2oispc7s/F2CbWaPz44OVkKovd9fZzkNR4p8lsBzRDRU nPG2SJDqShLgH73qRdfgl4ymQo5PmPlLbc7g/MeFkOI+LhdUL/mQ894Z6J2C6mn3 ffEcPCjK9VlcG9GwVKg4R3tqfaJOEm3g -----END CERTIFICATE-----Generated at Sun Jan 18 07:44:47 2026 by rpki-client