This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: WL38gxcza4OZFFWsP+Zk5jnL01bIqz13GUXUkD5yqb4= Subject key identifier: 1E:66:C2:8C:96:F9:83:3E:CB:38:80:EF:A3:8D:6B:E8:9A:CA:4F:3E Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 14F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 14E1 Signing time: Sat 24 Jan 2026 16:36:39 +0000 Manifest this update: Sat 24 Jan 2026 16:36:39 +0000 Manifest next update: Sat 31 Jan 2026 16:36:39 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: ChfgxEefw2Gsq3VmOMnZfSVyfJD9vvZ93Ymx0nD+Nlc=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5365 (0x14f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Jan 24 16:36:39 2026 GMT Not After : Jan 31 16:36:39 2026 GMT Subject: CN=6974f517-b75c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:10:ac:ce:7f:d4:76:7a:39:3a:00:1f:81:0c: 60:b8:98:ee:46:c3:2e:4d:b7:ed:3c:ab:6b:cc:5b: 7f:75:92:d4:9d:82:3c:51:f9:b2:40:5d:be:9c:83: d3:77:31:96:03:63:39:56:c8:d7:0d:50:4a:1d:17: 68:6e:af:51:de:78:2b:06:bf:56:de:7f:bd:47:0b: 94:ef:6c:96:e8:1e:f8:8e:de:40:6f:5c:78:15:dc: 1e:ee:57:a5:ad:76:6c:40:1d:f7:d8:dc:62:25:08: 9d:e4:0b:eb:88:10:24:6b:5d:be:66:04:4e:dd:b1: d2:32:ee:f4:b8:34:e6:d4:59:ac:ba:3a:88:8e:94: 52:3e:a1:5b:89:d1:94:86:98:b0:09:f0:d4:a9:77: 53:15:67:42:19:ef:29:f3:fc:17:4c:e0:50:3f:df: e8:18:01:ed:be:82:61:64:18:66:30:a5:ca:dc:59: f4:4a:73:29:cc:aa:da:45:c8:c9:6d:60:02:23:e9: cc:8d:74:8e:81:b2:cb:f9:fb:e9:a5:2f:9c:c5:62: 0f:04:3c:32:f3:41:06:f6:50:74:3a:08:44:ce:75: c0:66:9b:ba:27:e4:3a:1c:c2:7c:ac:f9:69:ce:b3: 8f:4f:95:ad:e9:a6:78:05:20:fd:70:bb:26:90:e7: a6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:66:C2:8C:96:F9:83:3E:CB:38:80:EF:A3:8D:6B:E8:9A:CA:4F:3E X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:b8:49:ee:15:2d:a7:07:ab:06:dc:b6:c9:8c:81:39:00:09: 1a:d2:38:11:68:d8:1f:ae:1c:9e:de:26:2e:8e:11:eb:bd:e6: 2e:4a:79:3a:c2:dc:6a:56:d0:1a:39:ff:d7:e9:be:58:31:c9: 5a:37:f2:1c:f0:e5:74:6d:f0:8d:a5:d9:f6:f3:e6:97:15:4d: a4:53:f0:1e:ef:c7:08:39:17:5b:14:a3:0e:c2:50:a6:c1:be: c1:ae:23:4d:b7:2b:5b:1a:97:53:d2:04:90:de:24:b5:e2:81: d6:e1:e2:9c:35:c0:ed:1c:23:7d:67:64:05:ca:88:a7:bb:75: c6:16:2e:0a:e2:0b:11:30:f9:fd:6a:32:74:4c:78:a8:fc:78: 14:c0:ce:5d:ae:66:9d:8a:a4:ab:6b:b6:ed:68:9b:11:4a:cf: 57:85:2e:4c:1e:c9:ba:bc:a5:09:0e:c8:ae:56:13:03:62:ab: 01:e5:3a:35:32:e8:ea:05:38:e9:ca:9d:0c:ab:48:1d:dc:25: 81:4d:28:02:89:dd:26:22:25:84:6d:1d:26:42:ab:97:50:37: b2:9b:b2:6c:1a:71:cd:0b:32:90:49:95:e0:28:fb:88:ec:a5: d9:98:87:8f:2f:a7:c9:49:5c:19:0e:f2:4d:9a:85:9f:40:b9: 72:b3:c8:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjYwMTI0MTYzNjM5WhcNMjYwMTMxMTYzNjM5WjAYMRYwFAYD VQQDDA02OTc0ZjUxNy1iNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RCszn/Udno5OgAfgQxguJjuRsMuTbftPKtrzFt/dZLUnYI8UfmyQF2+nIPT dzGWA2M5VsjXDVBKHRdobq9R3ngrBr9W3n+9RwuU72yW6B74jt5Ab1x4Fdwe7lel rXZsQB332NxiJQid5AvriBAka12+ZgRO3bHSMu70uDTm1FmsujqIjpRSPqFbidGU hpiwCfDUqXdTFWdCGe8p8/wXTOBQP9/oGAHtvoJhZBhmMKXK3Fn0SnMpzKraRcjJ bWACI+nMjXSOgbLL+fvppS+cxWIPBDwy80EG9lB0OghEznXAZpu6J+Q6HMJ8rPlp zrOPT5Wt6aZ4BSD9cLsmkOemgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5mwoyW +YM+yziA76ONa+iayk8+MB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1uEnuFS2nB6sG3LbJjIE5AAka0jgRaNgfrhye3iYujhHrveYuSnk6 wtxqVtAaOf/X6b5YMclaN/Ic8OV0bfCNpdn28+aXFU2kU/Ae78cIORdbFKMOwlCm wb7BriNNtytbGpdT0gSQ3iS14oHW4eKcNcDtHCN9Z2QFyoinu3XGFi4K4gsRMPn9 ajJ0THio/HgUwM5drmadiqSra7btaJsRSs9XhS5MHsm6vKUJDsiuVhMDYqsB5To1 MujqBTjpyp0Mq0gd3CWBTSgCid0mIiWEbR0mQquXUDeym7JsGnHNCzKQSZXgKPuI 7KXZmIePL6fJSVwZDvJNmoWfQLlys8hv -----END CERTIFICATE-----Generated at Mon Jan 26 04:23:53 2026 by rpki-client