This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft File: caPb4vD_0LEHymtXE7Fcl6jj4dE.mft (raw, json) Hash identifier: l3UhMu2GnkuXCVmbGs8qb758R+1tuO4DUjAOjbYc/AQ= Subject key identifier: DA:62:A4:CA:E9:D8:65:C7:E7:57:E1:E6:CB:02:0F:36:BC:D2:46:E3 Authority key identifier: 71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 Certificate issuer: /CN=A91EEE79/serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft Manifest number: 1D Signing time: Fri 09 Jan 2026 07:01:16 +0000 Manifest this update: Fri 09 Jan 2026 07:01:15 +0000 Manifest next update: Fri 16 Jan 2026 07:01:15 +0000 Files and hashes: 1: caPb4vD_0LEHymtXE7Fcl6jj4dE.crl (hash: nU7+Qqpcg5FzeF1kGMiist1L/Ry4m7mM1UkO4IaqUXg=) 2: 07EF6C98C45711F0A1027D38C4F9AE02.roa (hash: O7z3m4YVM0wU21WTponLx+IqwFDb7IX9H8f56v/43dA=) 3: 078123C8C45711F09E1B7D38C4F9AE02.roa (hash: er6jr1FS0D2/9mznlhepy8rxBzQvc9rNYi9PUnbvOIQ=) 4: 0853E998C45711F080167D38C4F9AE02.roa (hash: UXfllLAn2oYs6QDv0DiGrvQ4onowkRfHyI9wXDB3nXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 Jan 2026 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE79, serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Validity Not Before: Jan 9 07:01:15 2026 GMT Not After : Jan 16 07:01:15 2026 GMT Subject: CN=6960a7bc-77bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:3b:3b:d6:64:a3:7c:b0:33:80:54:ab:d1:fc: b6:2f:7a:14:98:f7:7e:2d:9b:b6:26:b1:fb:e2:6f: c5:bf:53:88:be:4e:95:24:f9:35:d4:b7:07:ce:be: b2:b2:6c:11:d1:fb:5c:9d:3c:9b:3c:06:0f:0b:97: cf:da:2d:47:cc:c3:7c:ab:ae:08:87:45:20:2a:d6: 0a:ff:f6:3a:20:5c:9d:cd:5e:37:ec:62:1f:a8:29: e7:89:8e:05:9b:fc:ba:51:2a:36:43:5b:24:a5:ee: 3d:a8:c7:0b:97:1e:ec:4a:fc:75:c9:79:7f:55:ed: ae:51:a7:36:49:ba:f1:dd:48:fa:8a:8a:7c:c9:17: 0b:4a:7a:12:51:58:8d:64:f3:73:30:79:08:66:72: 5f:9b:87:c6:a2:5a:de:a4:23:e5:0a:8b:24:bc:68: bd:ca:46:30:88:71:4e:45:96:8b:ac:b8:c8:b6:ea: af:3c:7e:24:d0:01:dd:3e:bd:50:a1:5a:a9:1d:ba: ef:6a:d9:6e:c0:cd:ee:ef:5c:46:a6:44:72:eb:db: cb:61:aa:a5:e2:da:8c:65:b7:82:75:9a:66:54:9d: 7a:66:15:07:5b:04:1f:b4:fa:a3:bc:da:e6:40:4a: 82:ab:6c:e8:2f:20:b0:19:37:cc:ad:d7:18:9f:cb: ad:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:62:A4:CA:E9:D8:65:C7:E7:57:E1:E6:CB:02:0F:36:BC:D2:46:E3 X509v3 Authority Key Identifier: keyid:71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:6a:03:39:51:b7:90:4e:86:9e:62:77:9b:3b:1e:2f:c0:c5: 13:6c:60:f1:25:28:81:99:76:1a:37:83:7e:43:d9:57:f6:97: b4:89:2c:df:0f:0f:fe:18:2a:b6:ca:e3:77:be:85:6d:19:83: b5:97:a4:f2:68:55:77:99:e5:fd:f0:6f:4d:1a:9f:9d:e7:f0: 55:68:8e:54:fd:b5:f7:6f:65:6b:0b:12:a6:23:ce:fb:a7:db: 2f:53:1b:37:d7:ee:39:19:99:f0:b4:10:12:45:9e:72:93:48: c8:77:15:8c:5e:49:13:3a:0b:b6:b9:8e:04:22:61:c2:51:91: 99:a0:65:a1:ca:cc:73:65:8c:e3:fa:c4:c1:e3:7f:4a:c3:b2: 22:fe:04:73:a0:ac:55:f9:c6:63:16:c8:07:da:59:ed:ee:0a: 1d:d7:2e:89:10:3e:30:bc:5c:8b:6a:de:c1:83:c9:d2:13:a8: eb:9d:9a:14:cf:8f:6e:79:27:9f:42:5d:70:f4:21:c6:9b:3d: 49:88:94:aa:d1:dd:ae:bd:c6:a1:60:de:97:fb:25:ec:c3:59: 8c:d8:27:a7:f6:14:79:2a:4b:ea:a9:b0:0c:36:54:6a:5c:8a: f3:05:b2:93:b6:b6:6a:a1:b2:81:1c:42:b2:04:b7:5b:c5:d1: b2:10:7d:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RUU3OTExMC8GA1UEBRMoNzFBM0RCRTJGMEZGRDBCMTA3Q0E2QjU3MTNCMTVDOTdB OEUzRTFEMTAeFw0yNjAxMDkwNzAxMTVaFw0yNjAxMTYwNzAxMTVaMBgxFjAUBgNV BAMMDTY5NjBhN2JjLTc3YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQOzvWZKN8sDOAVKvR/LYvehSY934tm7Ymsfvib8W/U4i+TpUk+TXUtwfOvrKy bBHR+1ydPJs8Bg8Ll8/aLUfMw3yrrgiHRSAq1gr/9jogXJ3NXjfsYh+oKeeJjgWb /LpRKjZDWySl7j2oxwuXHuxK/HXJeX9V7a5RpzZJuvHdSPqKinzJFwtKehJRWI1k 83MweQhmcl+bh8aiWt6kI+UKiyS8aL3KRjCIcU5FlousuMi26q88fiTQAd0+vVCh Wqkduu9q2W7Aze7vXEamRHLr28thqqXi2oxlt4J1mmZUnXpmFQdbBB+0+qO82uZA SoKrbOgvILAZN8yt1xify63ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2mKkyunY ZcfnV+HmywIPNrzSRuMwHwYDVR0jBBgwFoAUcaPb4vD/0LEHymtXE7Fcl6jj4dEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFRTc5Lzk1MUUyOEY4QzQ1 NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExFSHltdFhFN0ZjbDZqajRk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2FQYjR2RF8wTEVIeW10WEU3RmNsNmpqNGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF RTc5Lzk1MUUyOEY4QzQ1NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExF SHltdFhFN0ZjbDZqajRkRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJxqAzlRt5BOhp5id5s7Hi/AxRNsYPElKIGZdho3g35D2Vf2l7SJLN8P D/4YKrbK43e+hW0Zg7WXpPJoVXeZ5f3wb00an53n8FVojlT9tfdvZWsLEqYjzvun 2y9TGzfX7jkZmfC0EBJFnnKTSMh3FYxeSRM6C7a5jgQiYcJRkZmgZaHKzHNljOP6 xMHjf0rDsiL+BHOgrFX5xmMWyAfaWe3uCh3XLokQPjC8XItq3sGDydITqOudmhTP j255J59CXXD0IcabPUmIlKrR3a69xqFg3pf7JezDWYzYJ6f2FHkqS+qpsAw2VGpc ivMFspO2tmqhsoEcQrIEt1vF0bIQfcI= -----END CERTIFICATE-----Generated at Fri Jan 9 16:57:43 2026 by rpki-client