This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: rFS+Ts7j79bjcFeujIZCh7ZlCeKZVOL4XEQiG3kyxFg= Subject key identifier: D9:CC:78:87:5D:E6:8D:38:8B:2C:D3:A3:1C:5F:1E:55:42:82:3D:D3 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 056B Signing time: Fri 30 Jan 2026 22:52:25 +0000 Manifest this update: Fri 30 Jan 2026 22:52:25 +0000 Manifest next update: Fri 06 Feb 2026 22:52:25 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: YjQ0XID7akACh30std9UY3QI95zomvyjncUHBRc01hg=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: mQcImRO4WHDBeg3hYUSQht+fqF5qfBOe9KqwrJnunlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Feb 2026 22:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Jan 30 22:52:25 2026 GMT Not After : Feb 6 22:52:25 2026 GMT Subject: CN=697d3629-5055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:51:69:79:68:24:ef:23:3a:9a:68:3a:3f:4a: a1:fa:87:b5:23:d5:40:81:70:a7:29:16:9b:71:2b: 53:48:9e:aa:9d:ce:73:5e:1c:7f:c4:bb:99:0f:95: e4:48:1d:35:78:b7:21:5a:9b:17:6a:6d:df:f2:07: 51:7c:c7:64:0f:13:fb:e3:7b:49:a2:07:29:0d:42: e4:28:4b:1f:e6:4a:ba:48:37:ae:f8:2f:83:e7:35: 2f:a0:c4:1e:3b:e6:99:4a:d8:a8:40:f1:83:a9:ed: 98:f1:98:a5:59:9f:3e:28:08:e0:1f:b2:14:53:45: b8:7c:e6:a2:c4:5e:22:59:29:1d:76:4b:41:09:87: 3e:9e:18:04:28:05:77:0a:30:72:b2:d8:de:86:90: a2:76:e6:17:67:8a:da:11:c9:6b:48:fa:1a:b0:44: af:91:42:a3:a2:5b:5d:00:66:bc:85:80:12:b9:ae: 60:da:45:d9:3b:ff:32:9f:b0:0d:d5:c0:a5:da:b4: 83:1d:b1:a3:6d:bc:93:10:f2:93:44:fd:b2:33:0c: a0:ef:b7:94:ae:1f:12:f4:05:42:8c:ad:b7:9c:b2: f4:aa:e4:45:98:9b:8b:73:fd:3a:d9:fc:6c:a1:95: 91:08:cb:a4:02:6a:fe:8f:c1:7c:f1:bc:0e:c7:f8: 46:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CC:78:87:5D:E6:8D:38:8B:2C:D3:A3:1C:5F:1E:55:42:82:3D:D3 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ff:f5:b0:05:be:43:e4:d3:85:70:0f:5b:2b:21:16:4a:d1: 39:0e:58:9b:87:2b:85:07:f5:f4:b4:5e:59:b7:8e:23:40:9e: 95:f3:2b:64:ac:c2:83:5b:9a:af:6e:6f:1b:4b:e7:19:82:70: 85:d5:4d:bd:cc:f5:87:b5:91:ea:54:e5:4d:cf:98:dd:c1:72: 66:26:69:9a:c7:fb:32:9c:dc:b9:b7:f8:83:9b:44:83:e8:49: e9:c2:19:07:09:6d:56:4b:32:d1:2c:90:81:a2:04:37:0a:00: e0:d7:21:ea:7e:9a:14:08:94:f3:e5:46:f5:bf:e2:a7:7c:06: 4e:c3:3b:44:3f:2a:19:ec:fa:78:94:72:7b:6c:43:1f:8a:71: 6e:d1:ce:a5:23:f4:ba:d5:5f:fa:f4:54:3f:ed:f6:88:02:15: 70:b3:b8:4a:86:09:46:ac:8d:66:dc:e6:40:7e:7d:8b:21:d1: 89:b5:d2:e1:a9:65:5f:f7:65:e9:00:69:a2:13:b3:80:1e:8b: b4:8a:c3:6c:4f:a6:21:d4:14:d4:56:bb:1f:29:a0:a3:e0:21: d3:be:7d:cd:34:1c:57:49:c0:be:06:da:c8:19:0b:e3:79:9f: 33:41:f3:c3:0e:47:6e:90:02:cf:37:af:c5:35:4c:2c:c5:0e: b4:f4:ac:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMTMwMjI1MjI1WhcNMjYwMjA2MjI1MjI1WjAYMRYwFAYD VQQDDA02OTdkMzYyOS01MDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1FpeWgk7yM6mmg6P0qh+oe1I9VAgXCnKRabcStTSJ6qnc5zXhx/xLuZD5Xk SB01eLchWpsXam3f8gdRfMdkDxP743tJogcpDULkKEsf5kq6SDeu+C+D5zUvoMQe O+aZStioQPGDqe2Y8ZilWZ8+KAjgH7IUU0W4fOaixF4iWSkddktBCYc+nhgEKAV3 CjBystjehpCiduYXZ4raEclrSPoasESvkUKjoltdAGa8hYASua5g2kXZO/8yn7AN 1cCl2rSDHbGjbbyTEPKTRP2yMwyg77eUrh8S9AVCjK23nLL0quRFmJuLc/062fxs oZWRCMukAmr+j8F88bwOx/hG3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnMeIdd 5o04iyzToxxfHlVCgj3TMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz//WwBb5D5NOFcA9bKyEWStE5DlibhyuFB/X0tF5Zt44jQJ6V8ytk rMKDW5qvbm8bS+cZgnCF1U29zPWHtZHqVOVNz5jdwXJmJmmax/synNy5t/iDm0SD 6EnpwhkHCW1WSzLRLJCBogQ3CgDg1yHqfpoUCJTz5Ub1v+KnfAZOwztEPyoZ7Pp4 lHJ7bEMfinFu0c6lI/S61V/69FQ/7faIAhVws7hKhglGrI1m3OZAfn2LIdGJtdLh qWVf92XpAGmiE7OAHou0isNsT6Yh1BTUVrsfKaCj4CHTvn3NNBxXScC+BtrIGQvj eZ8zQfPDDkdukALPN6/FNUwsxQ609KyU -----END CERTIFICATE-----Generated at Sat Jan 31 04:24:46 2026 by rpki-client