This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft File: 5wYBKhBr0JRljmBMVgMFDxTcP0w.mft (raw, json) Hash identifier: sNXN2x85Tlf7I2ClJH/EC3AxR0FjQtBhe0bOjkN77ko= Subject key identifier: 59:44:77:43:DF:07:FE:34:0E:9B:7C:BD:E1:CB:F2:6B:EE:47:49:6E Authority key identifier: E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C Certificate issuer: /CN=A91D94CD/serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft Manifest number: 3B Signing time: Sat 17 Jan 2026 06:30:33 +0000 Manifest this update: Sat 17 Jan 2026 06:30:32 +0000 Manifest next update: Sat 24 Jan 2026 06:30:32 +0000 Files and hashes: 1: 5wYBKhBr0JRljmBMVgMFDxTcP0w.crl (hash: T+TMbVvLgude4gXKZbPgBjeuDoHGDg/Z2SPOS3E9Ams=) 2: 67D535ACA32311F0A8D9D520C4F9AE02.roa (hash: zV/TsOK61tkCb0hqmdLcVSamFC3xdNV0n+J6OlbKFeg=) 3: 6767E894A32311F0A8D9D520C4F9AE02.roa (hash: RmIQAxMzPt9TyOSbY6kkvQxz7NF1izZibV45HtGClcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D94CD, serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Validity Not Before: Jan 17 06:30:32 2026 GMT Not After : Jan 24 06:30:32 2026 GMT Subject: CN=696b2c89-24a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:15:81:11:a0:22:b1:23:7c:ec:0e:85:3c:cc: 9e:b1:16:c0:d8:1d:ee:b2:e9:20:60:d0:24:0c:3b: 6b:23:71:f0:1a:a1:fa:0a:6c:0d:51:68:bb:1f:09: 5e:44:f2:b3:9d:8b:c6:84:24:44:93:e8:ce:81:49: 41:8f:96:d6:1a:3c:9b:61:0d:8b:cc:36:f2:e1:19: ef:2f:70:a9:7b:45:8a:47:34:d5:3a:0c:27:9b:9d: 0a:94:ba:f0:f1:e7:be:2d:c1:30:18:2f:78:64:f2: 0c:80:e5:98:cc:8e:f7:b2:42:cf:4a:5f:3f:43:31: 1e:7c:82:14:c5:b4:14:5e:53:55:4e:0c:7b:92:ce: 14:bb:9a:fd:e8:4a:8d:b3:9f:4c:c6:90:ba:df:13: a5:a9:0e:2b:36:c7:18:78:b0:df:c1:3f:c0:88:12: b9:12:b7:36:47:8b:f5:58:f4:59:66:53:a0:33:1f: 7e:c1:25:b0:70:11:25:c0:bb:fb:40:43:c4:57:7f: d2:3b:48:15:63:16:db:a1:52:d6:d2:d1:f9:67:20: c7:bf:47:89:5e:aa:a5:4f:88:0f:84:02:21:58:f2: 62:e5:a8:79:c1:ee:72:7e:9b:bf:53:58:c8:12:5c: 87:ed:e5:50:f9:3b:f6:04:bd:5f:4c:8d:04:28:64: ef:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:44:77:43:DF:07:FE:34:0E:9B:7C:BD:E1:CB:F2:6B:EE:47:49:6E X509v3 Authority Key Identifier: keyid:E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:a6:bb:93:e7:4b:e9:9d:93:c9:6a:0b:e7:5d:11:74:89:99: 4b:0a:ff:7d:79:03:9e:da:db:f7:20:77:50:bc:06:95:54:27: 16:d1:fa:73:56:43:8d:5c:72:50:29:2e:53:b1:e1:1c:b1:cd: 6b:72:63:28:c6:a6:56:54:de:8e:c8:ea:de:4b:6a:dc:e0:1d: 05:3c:8d:80:0c:cb:4a:67:67:b8:b9:a9:c1:67:90:65:03:50: a9:9f:65:7a:0d:3a:9e:01:dd:ee:22:21:a1:81:89:68:b8:46: c1:70:6e:c2:bf:55:c8:d5:b0:ab:12:f4:76:bd:71:79:4f:36: 25:91:8a:7e:1d:8f:08:af:33:53:3e:cb:38:b4:7a:fa:8f:50: 0f:bf:25:02:c4:a7:78:b1:e5:3e:24:08:94:0b:11:e4:a8:0f: 73:6f:a9:da:a4:eb:57:ba:f6:0b:7c:b9:77:be:bb:7f:3d:11: 18:6b:0a:88:b4:d7:e5:13:2a:71:fb:c2:ac:ff:b5:15:5b:c4: 2b:d3:da:62:43:5c:b0:25:a4:a3:36:c3:d2:a7:a1:ac:c4:6b: 6a:4b:e7:92:68:e6:e2:ea:40:35:bd:42:c3:fa:d6:2a:48:9d: 5f:af:da:10:bc:8e:ed:95:2c:d4:14:4c:d4:21:37:ef:e7:ea: 8f:1b:bf:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTRDRDExMC8GA1UEBRMoRTcwNjAxMkExMDZCRDA5NDY1OEU2MDRDNTYwMzA1MEYx NERDM0Y0QzAeFw0yNjAxMTcwNjMwMzJaFw0yNjAxMjQwNjMwMzJaMBgxFjAUBgNV BAMMDTY5NmIyYzg5LTI0YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4FYERoCKxI3zsDoU8zJ6xFsDYHe6y6SBg0CQMO2sjcfAaofoKbA1RaLsfCV5E 8rOdi8aEJEST6M6BSUGPltYaPJthDYvMNvLhGe8vcKl7RYpHNNU6DCebnQqUuvDx 574twTAYL3hk8gyA5ZjMjveyQs9KXz9DMR58ghTFtBReU1VODHuSzhS7mv3oSo2z n0zGkLrfE6WpDis2xxh4sN/BP8CIErkStzZHi/VY9FlmU6AzH37BJbBwESXAu/tA Q8RXf9I7SBVjFtuhUtbS0flnIMe/R4leqqVPiA+EAiFY8mLlqHnB7nJ+m79TWMgS XIft5VD5O/YEvV9MjQQoZO+jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWUR3Q98H /jQOm3y94cvya+5HSW4wHwYDVR0jBBgwFoAU5wYBKhBr0JRljmBMVgMFDxTcP0ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5NENELzJDRDdGRDBFOUVD ODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpSbGptQk1WZ01GRHhUY1Aw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNXdZQktoQnIwSlJsam1CTVZnTUZEeFRjUDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 NENELzJDRDdGRDBFOUVDODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpS bGptQk1WZ01GRHhUY1Awdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHWmu5PnS+mdk8lqC+ddEXSJmUsK/315A57a2/cgd1C8BpVUJxbR+nNW Q41cclApLlOx4RyxzWtyYyjGplZU3o7I6t5LatzgHQU8jYAMy0pnZ7i5qcFnkGUD UKmfZXoNOp4B3e4iIaGBiWi4RsFwbsK/VcjVsKsS9Ha9cXlPNiWRin4djwivM1M+ yzi0evqPUA+/JQLEp3ix5T4kCJQLEeSoD3Nvqdqk61e69gt8uXe+u389ERhrCoi0 1+UTKnH7wqz/tRVbxCvT2mJDXLAlpKM2w9KnoazEa2pL55Jo5uLqQDW9QsP61ipI nV+v2hC8ju2VLNQUTNQhN+/n6o8bv9Q= -----END CERTIFICATE-----Generated at Sun Jan 18 03:14:24 2026 by rpki-client