This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: LqMeSflx0nw2huvjcsX1TkRgc2h2kRiErTc3YH/5QNo= Subject key identifier: EE:B3:A7:A4:27:05:1F:C8:EF:57:2E:84:9C:99:75:7F:53:42:83:12 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: E4 Signing time: Sat 17 Jan 2026 04:39:43 +0000 Manifest this update: Sat 17 Jan 2026 04:39:43 +0000 Manifest next update: Sat 24 Jan 2026 04:39:43 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: on5+js2JfzmPgJg3p4LEsqMOF+W2hc/2MjsS9SBibIo=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: Wj+ngFxUXKhw04tCHbfHXKLDIlYoTG372wEVCp/viHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Jan 17 04:39:43 2026 GMT Not After : Jan 24 04:39:43 2026 GMT Subject: CN=696b128f-3385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:c3:02:1c:f6:ec:e7:60:e1:15:80:cb:57: e7:22:c6:20:03:ab:31:69:55:25:15:ad:cc:91:35: 20:18:39:13:4c:22:1f:84:fe:e8:33:27:74:89:c2: 50:51:a8:9b:13:3f:2c:43:e5:e3:c8:95:f1:10:cc: 2b:5d:3b:c8:6b:89:7d:69:b9:cd:82:02:e8:a1:ba: e8:35:6e:43:11:62:66:29:5d:6f:9a:0f:12:57:cc: e9:b9:e2:63:46:64:6b:01:26:c4:d5:c4:68:bf:d3: af:27:aa:2e:b0:e4:2c:fb:eb:1f:0d:79:f0:2c:aa: 7f:91:c5:fc:aa:45:6b:1c:de:68:ad:28:fe:8c:05: cc:e6:1c:a3:73:16:59:d9:24:1c:0a:13:8c:00:e9: 68:2d:a2:f3:42:19:88:1c:b6:91:87:8a:7a:9a:c2: 3d:62:0d:28:41:bd:4f:3e:4b:67:98:bd:f7:e3:dd: 00:35:04:75:99:83:16:e3:70:0e:31:1c:d2:bf:6d: 00:e4:3f:54:06:8c:b1:2f:92:c5:9a:94:48:b2:9d: d2:25:4b:83:99:fd:19:2d:a0:d4:a6:f6:ee:51:83: 3f:33:b6:af:c3:77:25:23:98:8b:75:e2:aa:ce:f8: 1e:75:d6:3c:b3:60:a5:ee:e1:5a:21:ee:88:55:cb: 45:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B3:A7:A4:27:05:1F:C8:EF:57:2E:84:9C:99:75:7F:53:42:83:12 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6d:37:c4:e6:ab:23:c8:62:81:e4:fc:0e:b7:8b:53:21:6f: 24:82:73:42:45:c0:58:c1:7e:e1:85:ff:2e:24:72:d8:7f:67: 17:3e:93:d5:cc:22:09:a5:5a:0c:ae:3b:3f:0a:42:de:33:96: 89:31:0e:7d:b3:15:c5:d7:ce:30:a9:43:4f:11:63:71:06:5d: 50:ef:63:ed:54:7f:d9:e6:63:c2:09:d3:ec:00:f6:0d:aa:c0: 05:21:0b:f4:14:35:91:4c:17:e6:a9:03:b1:e5:a0:5d:e4:22: 66:fa:9c:f5:fc:e6:bb:7f:e6:d5:c6:15:de:8a:82:9b:7f:76: bd:39:d3:77:4b:a5:27:00:45:18:c3:b6:12:ac:d8:da:c7:64: ca:b0:a1:f3:e9:d7:7b:7d:31:9d:8f:1e:4b:5f:49:22:17:bb: 4d:a8:7b:a6:fe:85:bf:75:bb:0c:4d:e3:5c:33:14:d9:42:62: cc:fe:43:01:8d:7e:02:b7:a7:0d:d0:fa:5d:a1:c9:b1:ff:96: 2c:5b:57:c6:c1:d3:09:b6:69:05:26:09:dd:3d:61:2c:d1:2e: 07:ed:07:2b:f6:ac:c6:f2:b8:35:c0:ea:ad:82:ce:8b:87:76: bf:c4:ac:8f:bd:8e:5f:63:ee:bd:27:fb:f3:92:15:88:5f:be: a1:b1:26:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjYwMTE3MDQzOTQzWhcNMjYwMTI0MDQzOTQzWjAYMRYwFAYD VQQDDA02OTZiMTI4Zi0zMzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqajDAhz27Odg4RWAy1fnIsYgA6sxaVUlFa3MkTUgGDkTTCIfhP7oMyd0icJQ UaibEz8sQ+XjyJXxEMwrXTvIa4l9abnNggLoobroNW5DEWJmKV1vmg8SV8zpueJj RmRrASbE1cRov9OvJ6ousOQs++sfDXnwLKp/kcX8qkVrHN5orSj+jAXM5hyjcxZZ 2SQcChOMAOloLaLzQhmIHLaRh4p6msI9Yg0oQb1PPktnmL33490ANQR1mYMW43AO MRzSv20A5D9UBoyxL5LFmpRIsp3SJUuDmf0ZLaDUpvbuUYM/M7avw3clI5iLdeKq zvgeddY8s2Cl7uFaIe6IVctFhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6zp6Qn BR/I71cuhJyZdX9TQoMSMB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzbTfE5qsjyGKB5PwOt4tTIW8kgnNCRcBYwX7hhf8uJHLYf2cXPpPV zCIJpVoMrjs/CkLeM5aJMQ59sxXF184wqUNPEWNxBl1Q72PtVH/Z5mPCCdPsAPYN qsAFIQv0FDWRTBfmqQOx5aBd5CJm+pz1/Oa7f+bVxhXeioKbf3a9OdN3S6UnAEUY w7YSrNjax2TKsKHz6dd7fTGdjx5LX0kiF7tNqHum/oW/dbsMTeNcMxTZQmLM/kMB jX4Ct6cN0Ppdocmx/5YsW1fGwdMJtmkFJgndPWEs0S4H7Qcr9qzG8rg1wOqtgs6L h3a/xKyPvY5fY+69J/vzkhWIX76hsSbY -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:25 2026 by rpki-client