This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: qHvt4qoA9jY0pqyeCLaHLpVOC9WzoQN58cEgEidPJAw= Subject key identifier: F3:24:18:51:8E:04:9A:2E:B1:D3:0B:A1:49:9A:A3:B3:26:2D:94:65 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 01EA Signing time: Sat 17 Jan 2026 01:47:49 +0000 Manifest this update: Sat 17 Jan 2026 01:47:48 +0000 Manifest next update: Sat 24 Jan 2026 01:47:48 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: 1pKzRMbV7K8IAV/IxOBwJ63YanJqxcfiZIGRYGUH9OY=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: r5pIAbK8kOI15XkP+OMpWTYz9FMauuzr/FnyF6gxDgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 01:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Jan 17 01:47:48 2026 GMT Not After : Jan 24 01:47:48 2026 GMT Subject: CN=696aea44-bdb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4a:31:f3:f6:11:ae:26:5c:db:c7:c5:4d:06: 8c:c1:3c:67:c7:11:02:d4:eb:94:2e:b3:8e:9e:f6: 4a:67:be:08:a9:5b:29:14:46:c8:6d:2a:a0:3c:85: a0:d5:cc:2b:ed:59:d7:53:75:78:49:40:08:c7:a1: 65:6f:d6:f5:34:6a:a2:3d:86:e1:c4:ea:de:68:83: 92:f4:4b:3f:01:22:6f:e0:4c:5f:10:d1:e4:c1:11: e4:ff:b7:18:fd:1d:0d:a1:f5:e4:e6:70:9e:34:22: 38:62:40:02:51:cf:83:ff:88:c5:3d:95:53:17:96: 7a:1f:52:92:af:34:d3:dd:45:0c:15:5a:e7:0c:6b: 14:d7:c2:89:0e:3f:f1:ac:37:97:3d:1e:3f:9e:8a: 5b:9a:0d:c9:26:6b:91:cf:ec:b4:5d:5c:82:1c:48: e9:61:0b:bd:0b:a3:be:89:69:2a:99:c8:42:2f:79: 63:6d:e5:c5:b4:cd:fb:27:8b:3f:1e:58:94:32:50: 21:e3:db:ff:b3:31:76:a7:f2:6c:94:63:b2:58:ce: e8:ee:e7:93:4a:47:1f:9d:80:95:ee:96:af:d9:19: b7:b9:31:1f:46:ab:f9:65:cf:5c:84:77:bc:cb:2e: 9f:43:76:24:bb:38:2d:15:0d:e6:54:fc:3b:ed:d7: 27:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:24:18:51:8E:04:9A:2E:B1:D3:0B:A1:49:9A:A3:B3:26:2D:94:65 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:32:9f:29:b5:b3:c7:59:df:3f:df:13:e5:be:8b:5e:f6:6c: 3c:6f:cf:f6:37:7a:20:17:1a:67:ad:e2:6a:ea:97:67:99:93: 07:8c:ae:16:13:91:ed:c6:ce:0b:14:b7:5f:c4:2e:b8:8f:f7: 8d:ae:6e:fa:27:1e:34:ac:e9:3c:01:82:d0:78:2a:fd:e4:2e: 14:6d:6d:d8:e3:82:f7:07:8e:d4:ac:d4:57:a0:29:fc:a9:3a: 4c:6f:c0:89:83:e1:bc:fe:36:c5:2b:9e:ea:49:fd:90:b1:b7: 76:ab:85:61:79:dd:99:5d:4a:d5:fb:2d:fc:d0:da:45:84:c5: fe:08:a2:53:84:75:f6:64:f9:9a:34:65:ac:c5:72:5d:ce:62: d9:61:78:cd:da:de:97:b0:40:61:a7:a6:39:c0:75:6a:c9:91: 1b:18:20:a8:e0:cb:3e:d9:43:de:7b:4b:cb:83:e1:82:dd:ed: e5:65:26:3d:9f:2b:ad:48:97:e9:86:dd:b4:28:da:9a:a2:d5: 29:08:ad:2c:6e:b3:71:8c:2d:4d:a8:f1:93:c2:89:f3:d0:e1: ea:67:a4:a7:02:0e:9a:2f:5f:e8:6e:4c:a1:d3:ae:2d:42:89: 06:14:cc:22:2f:f5:d0:b2:14:8a:50:a0:3d:cb:7c:93:1a:4b: 29:23:2c:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjYwMTE3MDE0NzQ4WhcNMjYwMTI0MDE0NzQ4WjAYMRYwFAYD VQQDDA02OTZhZWE0NC1iZGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEox8/YRriZc28fFTQaMwTxnxxEC1OuULrOOnvZKZ74IqVspFEbIbSqgPIWg 1cwr7VnXU3V4SUAIx6Flb9b1NGqiPYbhxOreaIOS9Es/ASJv4ExfENHkwRHk/7cY /R0NofXk5nCeNCI4YkACUc+D/4jFPZVTF5Z6H1KSrzTT3UUMFVrnDGsU18KJDj/x rDeXPR4/nopbmg3JJmuRz+y0XVyCHEjpYQu9C6O+iWkqmchCL3ljbeXFtM37J4s/ HliUMlAh49v/szF2p/JslGOyWM7o7ueTSkcfnYCV7pav2Rm3uTEfRqv5Zc9chHe8 yy6fQ3YkuzgtFQ3mVPw77dcnTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMkGFGO BJousdMLoUmao7MmLZRlMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Mp8ptbPHWd8/3xPlvote9mw8b8/2N3ogFxpnreJq6pdnmZMHjK4W E5Htxs4LFLdfxC64j/eNrm76Jx40rOk8AYLQeCr95C4UbW3Y44L3B47UrNRXoCn8 qTpMb8CJg+G8/jbFK57qSf2Qsbd2q4Vhed2ZXUrV+y380NpFhMX+CKJThHX2ZPma NGWsxXJdzmLZYXjN2t6XsEBhp6Y5wHVqyZEbGCCo4Ms+2UPee0vLg+GC3e3lZSY9 nyutSJfpht20KNqaotUpCK0sbrNxjC1NqPGTwonz0OHqZ6SnAg6aL1/obkyh064t QokGFMwiL/XQshSKUKA9y3yTGkspIyzQ -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:15 2026 by rpki-client