This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: LTdA2yV0mS01iqwsuZsg3OAxGlak0RYUrMIT6h2LeoA= Subject key identifier: 4E:EB:99:CD:F6:DB:5D:23:8E:61:86:05:3D:08:D6:7D:C9:F8:09:19 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C58 Signing time: Mon 26 Jan 2026 15:58:45 +0000 Manifest this update: Mon 26 Jan 2026 15:58:44 +0000 Manifest next update: Mon 02 Feb 2026 15:58:44 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: hZfMckXkwsE1t0LH9EXwjpZfYyhRgCvcERVIQ3NMufY=) 2: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) 3: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: 3uXMO0UCJNabKr8uzhOcc7C4VV56oSmRiKoTg6QuV1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 15:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7274 (0x1c6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Jan 26 15:58:44 2026 GMT Not After : Feb 2 15:58:44 2026 GMT Subject: CN=69778f35-83ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:84:b6:62:c2:e9:64:b0:77:00:72:82:c9: dd:eb:52:0c:5b:23:da:76:c3:46:75:30:4a:5d:8b: 7d:a3:b6:5f:56:33:87:b8:78:3d:f3:f0:a1:eb:6f: b2:8e:d4:86:16:61:80:72:7c:e2:f5:40:5e:9a:51: a0:a4:60:16:bc:db:02:79:eb:c8:83:c8:a2:ee:c0: 09:57:96:3b:62:5b:de:97:6a:00:e6:a5:06:e2:81: 05:29:61:66:73:41:76:7c:35:de:ef:c7:23:6f:f7: f6:02:f0:2b:7d:15:e1:9c:0f:52:a6:d5:f6:c0:0b: 75:7b:19:f5:bf:90:44:1e:ca:7d:90:54:ff:ab:cf: b2:df:50:07:3c:d6:22:c7:ab:db:90:b9:81:22:0f: 1b:5a:64:5f:0b:5e:ab:97:22:b0:53:be:96:47:36: 2f:de:94:6a:9a:98:5f:a9:bd:b5:89:47:55:6d:0a: 47:87:cb:33:e8:33:e6:37:d4:93:50:5f:9e:dd:cd: 94:ca:5e:72:42:fa:7a:10:a8:50:14:86:14:df:80: 61:e4:1e:a7:41:b4:58:41:e1:93:b4:40:cb:c2:05: ce:07:4c:fc:25:62:78:9e:4d:a4:66:6b:9e:66:67: 51:a4:e7:92:0f:c7:f8:b5:f2:91:93:b8:a0:e7:d9: 6b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EB:99:CD:F6:DB:5D:23:8E:61:86:05:3D:08:D6:7D:C9:F8:09:19 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:1f:6a:cb:f6:21:af:52:84:ba:f7:4c:e6:c6:6b:03:fa:e5: d5:00:7e:ac:83:55:de:ca:b2:e7:2d:68:f2:99:07:60:54:2d: ce:5c:ad:a2:a9:70:3a:b3:05:7f:81:cb:bf:03:e5:6a:ca:2f: 4c:8d:d7:c8:5e:cc:2a:cb:98:51:97:48:fa:47:c2:3f:0b:ba: 92:be:d2:3a:54:2e:ed:15:66:d1:b5:60:93:3f:1d:48:ea:ff: 23:c7:ae:c5:bf:f7:2a:52:48:3b:2c:3d:8c:ec:79:b2:1d:d3: bc:dc:40:41:19:95:cd:37:b0:d2:fe:41:6e:96:a8:02:6e:a1: 6f:b5:ca:57:a1:a8:de:83:a7:71:a3:13:5f:fd:73:22:76:92: dd:4b:3d:c9:59:14:08:cc:00:0d:da:72:26:5a:0f:f8:48:94: 21:d9:dc:f6:5c:db:a4:e8:f8:7e:9b:42:35:b0:c4:c5:4d:68: 25:46:e3:24:12:60:10:d8:3b:39:5e:c7:3d:65:5e:f4:67:35: 63:78:bf:5b:4a:f0:cf:8c:16:5e:6e:a6:67:83:2d:01:fb:5d: 51:e1:c1:34:25:6c:77:93:e1:c7:f3:46:9d:f2:2d:6a:02:e7: 82:2c:f6:01:9d:a2:c2:5e:10:10:e5:82:16:2f:eb:45:16:f0: 04:21:c0:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwMTI2MTU1ODQ0WhcNMjYwMjAyMTU1ODQ0WjAYMRYwFAYD VQQDDA02OTc3OGYzNS04M2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdaEtmLC6WSwdwBygsnd61IMWyPadsNGdTBKXYt9o7ZfVjOHuHg98/Ch62+y jtSGFmGAcnzi9UBemlGgpGAWvNsCeevIg8ii7sAJV5Y7Ylvel2oA5qUG4oEFKWFm c0F2fDXe78cjb/f2AvArfRXhnA9SptX2wAt1exn1v5BEHsp9kFT/q8+y31AHPNYi x6vbkLmBIg8bWmRfC16rlyKwU76WRzYv3pRqmphfqb21iUdVbQpHh8sz6DPmN9ST UF+e3c2Uyl5yQvp6EKhQFIYU34Bh5B6nQbRYQeGTtEDLwgXOB0z8JWJ4nk2kZmue ZmdRpOeSD8f4tfKRk7ig59lrewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7rmc32 210jjmGGBT0I1n3J+AkZMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyH2rL9iGvUoS690zmxmsD+uXVAH6sg1XeyrLnLWjymQdgVC3OXK2i qXA6swV/gcu/A+Vqyi9MjdfIXswqy5hRl0j6R8I/C7qSvtI6VC7tFWbRtWCTPx1I 6v8jx67Fv/cqUkg7LD2M7HmyHdO83EBBGZXNN7DS/kFulqgCbqFvtcpXoajeg6dx oxNf/XMidpLdSz3JWRQIzAAN2nImWg/4SJQh2dz2XNuk6Ph+m0I1sMTFTWglRuMk EmAQ2Ds5Xsc9ZV70ZzVjeL9bSvDPjBZebqZngy0B+11R4cE0JWx3k+HH80ad8i1q AueCLPYBnaLCXhAQ5YIWL+tFFvAEIcAD -----END CERTIFICATE-----Generated at Tue Jan 27 07:47:55 2026 by rpki-client