This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: 4BA/qrLF9IFA4ft8B1Ri+HY7MvLH16eX70qXvxEU2js= Subject key identifier: 7F:91:D9:92:2E:EB:08:DF:DF:4D:F9:6E:63:0C:26:63:8D:A1:F2:6F Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 257E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 257E Signing time: Fri 16 Jan 2026 14:30:49 +0000 Manifest this update: Fri 16 Jan 2026 14:30:48 +0000 Manifest next update: Fri 23 Jan 2026 14:30:48 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: 0VjK8jpbHFYjf6BLkobUHJQR+aFvjn3SNZQ0/5kM6bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 14:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9598 (0x257e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jan 16 14:30:48 2026 GMT Not After : Jan 23 14:30:48 2026 GMT Subject: CN=696a4b99-e206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8b:c8:a8:ed:8e:08:d2:67:41:a1:23:67:f0: 59:7e:1c:42:c2:1f:20:0b:f1:7e:0d:04:ea:ed:81: d4:59:00:86:b1:5b:bf:ca:aa:34:76:08:7c:2a:ed: f6:4b:cf:58:64:70:50:d5:df:07:45:67:b8:26:d3: 3e:ce:cf:12:98:0c:c5:f7:8b:ea:47:e5:70:58:8f: 8b:97:81:49:4f:3c:7f:6a:80:6e:03:a5:3e:e9:59: f6:98:89:27:31:84:84:ca:97:bb:8c:aa:c9:0d:12: c8:d8:bc:db:b8:7c:7f:f8:63:4d:34:62:2c:08:97: 37:85:d3:8f:9d:02:c4:38:87:47:3c:1c:d7:0c:a6: 14:2a:83:dc:0f:85:55:44:b3:bb:1d:d7:ea:9f:88: 57:f0:d3:39:fd:b3:51:3f:9b:ad:aa:a9:9a:4d:78: a0:6c:e7:f9:dd:4e:f8:f0:3d:f1:16:fe:a9:9d:13: bb:2f:2f:74:8e:14:81:57:99:41:5c:b6:b8:28:87: f6:be:d7:fd:48:45:5f:be:5a:14:2e:01:d9:63:7d: 1c:13:d1:b9:bb:db:e6:2b:65:64:61:d5:ea:6b:64: 56:1c:f3:97:c3:7e:0b:94:e9:ae:a5:a9:8a:59:bf: 95:2c:4c:a1:d9:ae:b8:11:e8:d9:61:d7:9a:11:ba: bc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:91:D9:92:2E:EB:08:DF:DF:4D:F9:6E:63:0C:26:63:8D:A1:F2:6F X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:4f:70:b5:93:6f:0b:3e:45:d4:e8:2e:fa:2c:55:92:37:5a: 44:80:52:62:e7:cd:9c:fc:a8:06:62:ea:5a:16:87:1d:69:75: a3:26:da:20:7d:85:52:31:0b:33:a9:df:ee:40:3e:0b:19:60: cb:02:fc:d7:e0:69:9b:a0:95:9e:66:08:f7:ec:e6:f1:8d:f1: 55:bf:73:03:a0:be:74:d4:07:8f:8e:1d:fa:1d:be:3b:10:0a: 7e:94:3d:75:84:8e:6d:06:58:66:dd:97:33:57:79:6d:16:47: f9:a8:71:6e:b5:ba:56:00:37:fc:c9:d8:2f:c1:fa:45:8e:d6: eb:8e:d0:30:c5:48:73:f7:c0:4b:21:43:90:f2:72:ae:73:74: fa:3f:bb:e7:2e:3d:50:48:74:43:20:d8:d0:db:b7:89:63:16: 47:4d:27:c3:5f:cb:bc:5b:22:21:97:9f:5a:6c:44:32:e0:44: 71:3f:58:c6:14:f7:6b:a5:f3:eb:30:7f:3f:c4:10:d5:e4:3f: 7f:97:e4:f0:98:df:6b:47:a3:26:2e:69:c2:cc:c9:34:51:75: e8:93:03:ff:ed:b4:e9:3a:74:8b:93:8e:a6:4f:1d:7f:3d:ca: 4b:84:7d:29:fd:db:ae:24:77:59:e3:e0:75:09:45:66:a9:41: b7:f6:aa:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwMTE2MTQzMDQ4WhcNMjYwMTIzMTQzMDQ4WjAYMRYwFAYD VQQDDA02OTZhNGI5OS1lMjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzovIqO2OCNJnQaEjZ/BZfhxCwh8gC/F+DQTq7YHUWQCGsVu/yqo0dgh8Ku32 S89YZHBQ1d8HRWe4JtM+zs8SmAzF94vqR+VwWI+Ll4FJTzx/aoBuA6U+6Vn2mIkn MYSEype7jKrJDRLI2LzbuHx/+GNNNGIsCJc3hdOPnQLEOIdHPBzXDKYUKoPcD4VV RLO7Hdfqn4hX8NM5/bNRP5utqqmaTXigbOf53U748D3xFv6pnRO7Ly90jhSBV5lB XLa4KIf2vtf9SEVfvloULgHZY30cE9G5u9vmK2VkYdXqa2RWHPOXw34LlOmupamK Wb+VLEyh2a64EejZYdeaEbq8yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+R2ZIu 6wjf3035bmMMJmONofJvMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgT3C1k28LPkXU6C76LFWSN1pEgFJi582c/KgGYupaFocdaXWjJtog fYVSMQszqd/uQD4LGWDLAvzX4GmboJWeZgj37ObxjfFVv3MDoL501AePjh36Hb47 EAp+lD11hI5tBlhm3ZczV3ltFkf5qHFutbpWADf8ydgvwfpFjtbrjtAwxUhz98BL IUOQ8nKuc3T6P7vnLj1QSHRDINjQ27eJYxZHTSfDX8u8WyIhl59abEQy4ERxP1jG FPdrpfPrMH8/xBDV5D9/l+TwmN9rR6MmLmnCzMk0UXXokwP/7bTpOnSLk46mTx1/ PcpLhH0p/duuJHdZ4+B1CUVmqUG39qq+ -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:38 2026 by rpki-client