This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: C6KHn1f5cbIk9k3kFLZCQ+2FPTOBdTI/GEuzmMa95PA= Subject key identifier: 67:1F:44:63:C1:2F:24:F8:DC:ED:B0:54:E3:17:E6:48:32:60:A4:EC Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1AB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1A98 Signing time: Tue 20 Jan 2026 16:07:41 +0000 Manifest this update: Tue 20 Jan 2026 16:07:41 +0000 Manifest next update: Tue 27 Jan 2026 16:07:41 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: 6XeBjGaGuaXIIcdiP19tplpUGbuIDYsFHbU1NM7yfXA=) 2: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: Bg5JnhOTYWXrnwhhpqWfW4Q3wmcNB2++JHlbLdOmesM=) 3: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: TbtbpAfuNvbCVYz9nj+zPZ5QGVGG8zIP6ItMH+HbWz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6838 (0x1ab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Jan 20 16:07:41 2026 GMT Not After : Jan 27 16:07:41 2026 GMT Subject: CN=696fa84d-414d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:67:6f:54:0e:ea:cd:ae:5a:1f:ea:4e:d6: 1f:84:66:14:57:ec:68:a0:9a:18:4f:3f:33:d6:e5: 24:ea:df:72:7f:cd:8f:ee:c0:bf:e7:3a:5a:96:f0: 38:1b:20:6b:1a:73:c8:9d:c0:33:50:e5:a0:17:ce: 96:7c:44:6b:f3:f3:68:4d:21:c0:e6:a8:9a:e9:92: 9f:2f:3a:48:ce:f9:83:a1:ac:3e:56:ab:8c:02:57: ce:01:bd:c3:de:f7:6c:9a:fa:63:3c:76:cf:f7:64: 06:5c:7a:75:8b:ec:ba:37:5b:60:3e:d1:9e:5e:3e: f0:06:05:88:cd:cb:c5:06:58:d4:d3:d7:5b:63:7c: ca:ee:d6:5c:95:ba:bb:36:dd:cf:0f:35:1e:a9:50: ec:35:94:87:f8:80:ed:18:b0:7b:c1:a5:2c:39:64: dc:36:ac:15:4f:1d:64:b8:df:76:2e:6c:5d:33:c6: cf:db:77:75:e5:3b:07:1f:8a:90:cf:25:8d:d1:8c: 98:07:e3:ea:d2:6f:f4:32:fa:97:49:ea:bd:6d:a1: 89:6e:0b:1b:2f:07:88:da:b7:d5:55:9b:21:7d:63: 38:f3:e2:5f:1a:f5:75:15:af:88:c7:b9:94:c4:a8: 84:e3:e7:7b:97:de:0c:f0:22:b1:30:54:82:c8:b7: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1F:44:63:C1:2F:24:F8:DC:ED:B0:54:E3:17:E6:48:32:60:A4:EC X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:9e:f4:37:96:7d:21:c4:97:48:a3:29:25:df:9e:8f:88:00: 4a:96:e6:53:4e:2a:e0:c9:70:92:aa:db:a9:a3:ab:c8:27:f7: f1:e2:64:a8:b4:35:9d:1d:fe:9d:d3:00:d8:cb:26:4c:2d:17: cc:03:f0:a0:df:04:80:c9:01:1b:b1:1d:75:e6:5a:7c:5a:24: a6:14:68:5a:11:9a:67:4d:c1:c4:5e:14:aa:d0:10:38:07:bd: 30:83:ef:25:46:3f:85:94:b5:f1:1d:2d:16:39:e4:4b:87:28: bf:67:75:2b:31:d6:e4:7b:d6:a7:1c:82:83:cd:17:d7:ec:85: 0c:8e:8a:27:63:f9:c3:d5:29:e3:e5:d7:13:15:ec:d3:7f:09: 12:4f:0b:7b:a0:a5:63:02:a7:d0:6c:33:86:95:0a:4e:4a:f5: cb:8c:8f:d5:8a:d7:e3:ca:ee:6e:3b:68:64:4f:cc:6a:3a:c2: f4:47:ad:ce:6d:e1:45:a6:4c:5c:28:6e:ed:c3:24:1b:d1:b4: 7c:89:c1:06:20:a0:5c:7e:d6:e6:c6:42:6b:7f:36:ce:31:95: 7f:e9:6b:e2:8f:f2:9d:22:93:d2:f7:a6:4e:5f:61:2c:2b:43: 2f:b2:1b:82:3f:36:92:c4:5b:1e:9e:79:f8:ff:8e:2a:cb:fb: 1b:72:9e:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjYwMTIwMTYwNzQxWhcNMjYwMTI3MTYwNzQxWjAYMRYwFAYD VQQDDA02OTZmYTg0ZC00MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqBnb1QO6s2uWh/qTtYfhGYUV+xooJoYTz8z1uUk6t9yf82P7sC/5zpalvA4 GyBrGnPIncAzUOWgF86WfERr8/NoTSHA5qia6ZKfLzpIzvmDoaw+VquMAlfOAb3D 3vdsmvpjPHbP92QGXHp1i+y6N1tgPtGeXj7wBgWIzcvFBljU09dbY3zK7tZclbq7 Nt3PDzUeqVDsNZSH+IDtGLB7waUsOWTcNqwVTx1kuN92LmxdM8bP23d15TsHH4qQ zyWN0YyYB+Pq0m/0MvqXSeq9baGJbgsbLweI2rfVVZshfWM48+JfGvV1Fa+Ix7mU xKiE4+d7l94M8CKxMFSCyLdaFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcfRGPB LyT43O2wVOMX5kgyYKTsMB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlnvQ3ln0hxJdIoykl356PiABKluZTTirgyXCSqtupo6vIJ/fx4mSo tDWdHf6d0wDYyyZMLRfMA/Cg3wSAyQEbsR115lp8WiSmFGhaEZpnTcHEXhSq0BA4 B70wg+8lRj+FlLXxHS0WOeRLhyi/Z3UrMdbke9anHIKDzRfX7IUMjoonY/nD1Snj 5dcTFezTfwkSTwt7oKVjAqfQbDOGlQpOSvXLjI/Vitfjyu5uO2hkT8xqOsL0R63O beFFpkxcKG7twyQb0bR8icEGIKBcftbmxkJrfzbOMZV/6Wvij/KdIpPS96ZOX2Es K0MvshuCPzaSxFsennn4/44qy/sbcp57 -----END CERTIFICATE-----Generated at Wed Jan 21 09:06:30 2026 by rpki-client