This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: H/mX/LaD/xkJWaUtZwj9MSv7ke3phw0Q3GFDyFS8ZKs= Subject key identifier: B5:18:23:29:39:66:B9:6D:A9:35:44:E1:3E:E4:27:68:58:47:53:88 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 353A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 351A Signing time: Thu 08 Jan 2026 14:18:56 +0000 Manifest this update: Thu 08 Jan 2026 14:18:55 +0000 Manifest next update: Thu 15 Jan 2026 14:18:55 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: Dty1L4uM0uzsDZmbS/Z/OutVROMR/0XNmbZLVTuwtYY=) 2: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) 3: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 14:18:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13626 (0x353a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Jan 8 14:18:55 2026 GMT Not After : Jan 15 14:18:55 2026 GMT Subject: CN=695fbcd0-856d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7b:ed:ee:3c:b7:c1:9a:d4:71:d1:45:fe:eb: 0b:8e:a3:4c:e6:88:e2:de:fb:2a:89:e5:15:7e:f0: 17:16:37:f8:ab:0d:07:79:5a:8d:53:c5:48:73:07: 64:8f:a5:21:f5:aa:45:ec:c2:73:02:11:c6:a2:70: cb:71:10:a6:eb:65:70:dc:b8:63:45:d0:af:6e:a1: c7:b4:96:2c:06:ae:01:5a:ba:ff:b1:47:a2:c8:b9: 5f:8e:f9:7b:28:f5:26:db:41:56:56:4f:25:47:08: e6:77:b6:f9:e3:d3:ca:88:54:3d:4d:b1:48:60:af: ef:7f:1d:0f:d8:40:0a:70:2a:bc:3b:bd:58:50:ec: 33:20:a0:60:ef:96:90:9f:27:bc:d2:ac:e9:9a:8e: 15:c9:9a:52:f0:1c:c5:ef:8e:2a:2e:44:16:1a:1e: 95:9f:c8:48:bb:a2:c6:79:77:9d:fe:d8:e6:cf:21: e3:2b:fe:c0:e0:cf:a6:47:58:f9:41:3f:f6:2b:53: a5:bf:ed:92:ed:6d:a4:e7:f2:00:fc:61:b8:2d:e5: 47:f2:71:1e:c8:53:c5:80:eb:a9:e1:8d:8c:33:bc: 0b:81:98:44:a6:1a:9a:a3:4b:cf:d9:d8:42:7d:93: c2:cf:f6:1b:61:f4:41:38:9c:85:0d:49:0c:22:31: fb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:18:23:29:39:66:B9:6D:A9:35:44:E1:3E:E4:27:68:58:47:53:88 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:f0:11:bb:a6:30:8e:2f:06:c8:87:5f:5f:66:81:32:69:44: 8f:e0:27:6c:6c:dd:a6:37:5e:b9:c5:78:73:05:9d:83:2a:d2: 9d:63:29:fe:55:4c:6f:ed:9a:0d:d0:8b:5e:b0:23:90:bb:39: 53:82:ba:61:21:2a:a0:94:c3:6e:45:05:f0:58:49:56:df:7f: 89:48:94:cf:6b:85:a8:ca:f2:58:7c:53:cd:34:69:9d:d8:8f: 2c:5f:65:a4:d5:fe:73:ff:b5:74:52:73:27:7a:2a:24:8d:4f: f8:24:e8:af:72:10:55:db:5e:40:f5:30:cf:3a:d8:ac:6b:1a: 43:0d:f4:87:b3:a8:8d:8b:27:42:a2:2f:84:f4:a3:00:22:0e: 27:09:cf:9e:b4:72:3e:04:b9:f5:dd:ce:a1:ad:7b:37:e2:01: 38:a2:1e:2d:d8:0b:5b:3f:82:94:c7:ce:52:af:33:20:e1:fa: 6d:ac:f4:9a:44:57:4f:b2:0e:05:bc:e3:35:9a:91:93:61:ab: 1f:7e:27:a1:91:bf:c5:32:f4:8a:42:01:94:09:d4:ca:44:32: 45:06:84:27:ff:82:13:7a:91:9b:2e:ca:36:e6:b0:74:6c:d3: 49:08:ba:c1:36:c8:00:44:5f:cd:ef:ef:b6:76:06:8a:5a:c0: 25:48:67:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjYwMTA4MTQxODU1WhcNMjYwMTE1MTQxODU1WjAYMRYwFAYD VQQDDA02OTVmYmNkMC04NTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13vt7jy3wZrUcdFF/usLjqNM5oji3vsqieUVfvAXFjf4qw0HeVqNU8VIcwdk j6Uh9apF7MJzAhHGonDLcRCm62Vw3LhjRdCvbqHHtJYsBq4BWrr/sUeiyLlfjvl7 KPUm20FWVk8lRwjmd7b549PKiFQ9TbFIYK/vfx0P2EAKcCq8O71YUOwzIKBg75aQ nye80qzpmo4VyZpS8BzF744qLkQWGh6Vn8hIu6LGeXed/tjmzyHjK/7A4M+mR1j5 QT/2K1Olv+2S7W2k5/IA/GG4LeVH8nEeyFPFgOup4Y2MM7wLgZhEphqao0vP2dhC fZPCz/YbYfRBOJyFDUkMIjH72wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUYIyk5 ZrltqTVE4T7kJ2hYR1OIMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA88BG7pjCOLwbIh19fZoEyaUSP4CdsbN2mN165xXhzBZ2DKtKdYyn+ VUxv7ZoN0ItesCOQuzlTgrphISqglMNuRQXwWElW33+JSJTPa4WoyvJYfFPNNGmd 2I8sX2Wk1f5z/7V0UnMneiokjU/4JOivchBV215A9TDPOtisaxpDDfSHs6iNiydC oi+E9KMAIg4nCc+etHI+BLn13c6hrXs34gE4oh4t2AtbP4KUx85SrzMg4fptrPSa RFdPsg4FvOM1mpGTYasffiehkb/FMvSKQgGUCdTKRDJFBoQn/4ITepGbLso25rB0 bNNJCLrBNsgARF/N7++2dgaKWsAlSGep -----END CERTIFICATE-----Generated at Fri Jan 9 16:58:26 2026 by rpki-client