This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: 5hGlPeI7tNmWtWN/RXgxq/D6pqJzv9EUuebqIpLVvDE= Subject key identifier: 02:90:04:59:00:91:E9:71:E8:A1:D4:FF:AE:E7:8E:6E:BF:38:69:51 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 056A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 055F Signing time: Fri 09 Jan 2026 19:41:03 +0000 Manifest this update: Fri 09 Jan 2026 19:41:03 +0000 Manifest next update: Fri 16 Jan 2026 19:41:03 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: ctJhrclalcxH5DswNqao+Ykp+w/m2x/c179Fci/31hM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 Jan 2026 19:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Jan 9 19:41:03 2026 GMT Not After : Jan 16 19:41:03 2026 GMT Subject: CN=696159cf-a482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1a:88:1a:b6:cc:8c:75:78:37:0f:ab:6f:0f: ba:5c:7c:9c:22:30:4b:a2:b6:85:b6:6a:82:7c:25: 91:28:f0:91:d1:f8:dc:6f:77:86:6e:21:23:ca:c9: 3d:a7:71:06:79:c9:fc:6c:c5:01:e0:00:53:a9:ad: 5d:1f:b6:91:4e:44:71:86:dc:75:9a:92:1f:4a:65: 79:95:51:bd:23:ca:28:e8:46:0b:a2:55:4f:71:63: 46:35:a8:2e:f1:26:c8:98:bc:50:3f:22:93:c1:f6: a7:d5:b9:35:6e:e7:39:4b:04:c2:cf:af:b4:f4:eb: 0c:a8:78:6e:03:12:d6:d3:2b:07:ed:a8:4c:c0:cd: cd:c5:0e:5e:96:71:38:cf:9b:3c:37:a0:39:45:ed: fc:73:8e:5d:7f:a2:19:dc:1d:00:8f:e6:96:28:a8: ad:77:55:41:c2:e2:e9:44:ed:52:6e:ef:f4:4b:ca: f1:e5:70:fe:59:6c:16:ad:f8:47:3c:af:eb:b7:fe: a1:eb:ec:3e:fc:69:9a:3a:9e:f6:6c:f4:24:9e:ed: ab:4b:cf:d3:cf:5a:21:94:ba:bf:47:2c:ba:be:69: 58:ad:ae:b5:4e:b7:65:71:5a:b7:db:b9:c4:0d:ef: de:f1:47:0a:58:64:97:00:eb:b0:d3:65:b9:e0:da: 47:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:90:04:59:00:91:E9:71:E8:A1:D4:FF:AE:E7:8E:6E:BF:38:69:51 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:0a:c7:0e:c7:a2:64:f9:f6:25:ad:2d:44:be:e8:04:6b:50: df:5d:36:59:51:fc:43:46:d2:22:57:e8:dc:75:60:60:11:0b: f9:34:8f:59:d0:2e:ce:b3:6c:17:6a:fa:a8:9f:b2:f9:72:ec: ad:24:c4:f3:06:b1:cc:89:3c:c5:72:fc:f4:02:78:e0:94:60: 73:91:e9:a4:e6:61:fe:e4:aa:64:ee:9c:a9:9e:61:03:62:1d: 97:24:dc:19:d4:ab:f4:0b:3d:7a:f7:b5:73:33:e6:e6:9a:20: 74:f4:40:08:47:b5:1c:5d:74:a3:0f:df:e1:9f:f8:98:fa:cb: 9c:fb:93:2d:32:40:57:8c:40:f7:95:98:9c:e2:e6:ec:7d:30: 19:c1:e8:30:46:b6:9e:22:d9:57:53:e5:a7:b6:69:44:cb:3a: 06:23:0c:ac:a1:90:4f:40:c9:e9:8f:22:6a:f6:e4:c4:20:57: ce:5a:ff:81:a6:60:3c:2e:c9:7a:09:62:c9:1c:b0:aa:d1:a9: b3:fd:e3:96:87:45:ea:e4:bf:29:33:7a:74:07:da:52:d4:9a: a7:3c:ac:94:66:09:1c:d4:14:94:6c:31:c9:22:f5:a6:f8:01: a4:dc:c7:68:04:81:44:08:b9:2e:88:2f:1f:0d:13:19:ff:f4: bc:5b:2c:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMTA5MTk0MTAzWhcNMjYwMTE2MTk0MTAzWjAYMRYwFAYD VQQDDA02OTYxNTljZi1hNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BqIGrbMjHV4Nw+rbw+6XHycIjBLoraFtmqCfCWRKPCR0fjcb3eGbiEjysk9 p3EGecn8bMUB4ABTqa1dH7aRTkRxhtx1mpIfSmV5lVG9I8oo6EYLolVPcWNGNagu 8SbImLxQPyKTwfan1bk1buc5SwTCz6+09OsMqHhuAxLW0ysH7ahMwM3NxQ5elnE4 z5s8N6A5Re38c45df6IZ3B0Aj+aWKKitd1VBwuLpRO1Sbu/0S8rx5XD+WWwWrfhH PK/rt/6h6+w+/GmaOp72bPQknu2rS8/Tz1ohlLq/Ryy6vmlYra61TrdlcVq327nE De/e8UcKWGSXAOuw02W54NpH+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKQBFkA kelx6KHU/67njm6/OGlRMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxCscOx6Jk+fYlrS1EvugEa1DfXTZZUfxDRtIiV+jcdWBgEQv5NI9Z 0C7Os2wXavqon7L5cuytJMTzBrHMiTzFcvz0AnjglGBzkemk5mH+5Kpk7pypnmED Yh2XJNwZ1Kv0Cz1697VzM+bmmiB09EAIR7UcXXSjD9/hn/iY+suc+5MtMkBXjED3 lZic4ubsfTAZwegwRraeItlXU+WntmlEyzoGIwysoZBPQMnpjyJq9uTEIFfOWv+B pmA8Lsl6CWLJHLCq0amz/eOWh0Xq5L8pM3p0B9pS1JqnPKyUZgkc1BSUbDHJIvWm +AGk3MdoBIFECLkuiC8fDRMZ//S8Wyyt -----END CERTIFICATE-----Generated at Sat Jan 10 02:51:04 2026 by rpki-client