This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: 5mb/p/cYdfZzpMJ7V4+yNWrpQ/7/TdrEZNlcFiBXrQM= Subject key identifier: DB:FD:2E:C2:09:62:88:17:0C:54:02:FE:96:B7:90:20:39:9F:E3:D8 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 0106 Signing time: Sun 11 Jan 2026 04:19:38 +0000 Manifest this update: Sun 11 Jan 2026 04:19:37 +0000 Manifest next update: Sun 18 Jan 2026 04:19:37 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: C90oYSrxDibYm4wTeQyovDmBAOIMfALQ9EclZiS0tZk=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 9MXU4baBCAJAJy9aPNxn57TypL0yxNcRqoUsf2K4Xic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 04:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Jan 11 04:19:37 2026 GMT Not After : Jan 18 04:19:37 2026 GMT Subject: CN=696324d9-9790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:23:f6:b9:18:79:92:f8:72:a5:0b:ce:1b:1f: 8b:7e:03:7a:28:cb:ac:b0:bd:89:c6:7e:60:22:d5: c5:55:b0:3d:c9:92:1c:9d:0f:af:a1:5d:35:8b:53: bc:fd:ca:f7:89:57:44:0b:92:25:2a:7f:af:0b:fb: ff:2f:1a:5a:ff:3a:22:ae:e2:f2:44:26:0c:a0:46: b3:be:be:5d:8b:2e:34:5b:8b:f9:07:ea:4b:41:44: 80:74:87:83:1d:40:e1:1d:d4:ac:06:bd:83:e4:9c: c6:65:a1:71:e3:bb:29:e7:e1:49:59:b5:0d:0a:19: 2c:35:2d:a4:73:0a:38:83:f5:bb:30:52:5c:a8:ee: b9:d9:8e:5d:50:b9:07:73:41:9f:5c:d4:9e:30:2e: c0:1a:58:e6:96:38:ee:c2:d8:b4:e8:0b:62:32:bd: 6c:d3:e6:97:30:76:e9:c6:c1:95:fb:3e:be:d7:0e: 42:ae:8e:bc:06:31:d8:52:36:d5:17:7f:a9:ab:98: 21:8d:67:cb:d8:cc:cf:be:58:db:99:f9:e6:d4:b9: 66:98:06:05:a6:e4:27:4b:85:37:67:89:92:f0:f4: 90:47:db:f5:ad:25:2a:2d:c4:da:4b:97:86:85:25: 41:aa:c9:a9:72:c8:91:b6:0b:4f:78:92:0d:06:ac: b1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FD:2E:C2:09:62:88:17:0C:54:02:FE:96:B7:90:20:39:9F:E3:D8 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:b3:2f:db:bc:b4:44:84:2d:9b:e2:25:9e:e6:b2:d3:f2:a0: 2c:b7:44:4f:ad:67:23:72:b0:05:62:05:08:18:f3:12:fd:ea: fd:ce:bc:4c:2b:1d:80:ec:d7:93:b0:da:41:52:bc:75:91:cb: 6d:bb:bd:13:ec:3a:44:85:03:cd:a7:24:cd:da:e8:56:9a:de: 29:18:d6:b7:ca:ec:4a:65:05:c8:0f:69:44:d7:05:ee:ae:da: 4e:31:a9:9e:79:3e:31:31:a8:d3:88:df:7a:53:c9:3a:29:c2: 9e:d4:e1:cc:83:31:0b:29:1e:f6:07:6b:61:f3:a4:a2:1a:5d: 9b:b9:df:a1:71:a4:63:f0:f0:2a:f4:01:e4:f1:4b:e1:fd:04: 7f:e6:b1:64:53:cc:2a:50:b1:ee:da:cf:93:ab:31:3d:14:16: d7:28:23:6e:18:a4:f9:ac:b8:56:31:7d:38:d0:01:17:66:48: d4:65:ec:5e:01:9e:21:46:23:c0:cd:7a:1e:67:0d:b5:17:e6: 2a:6b:c3:20:38:78:39:bb:d2:2d:18:32:4f:0e:74:39:6c:f7: 68:29:25:a7:f2:27:22:39:f5:f3:9b:2f:b9:90:0f:59:03:79: 80:8d:02:7c:a1:af:17:f0:7e:2f:b8:cb:24:08:fd:b8:28:4c: 15:8a:b3:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjYwMTExMDQxOTM3WhcNMjYwMTE4MDQxOTM3WjAYMRYwFAYD VQQDDA02OTYzMjRkOS05NzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyP2uRh5kvhypQvOGx+LfgN6KMussL2Jxn5gItXFVbA9yZIcnQ+voV01i1O8 /cr3iVdEC5IlKn+vC/v/Lxpa/zoiruLyRCYMoEazvr5diy40W4v5B+pLQUSAdIeD HUDhHdSsBr2D5JzGZaFx47sp5+FJWbUNChksNS2kcwo4g/W7MFJcqO652Y5dULkH c0GfXNSeMC7AGljmljjuwti06AtiMr1s0+aXMHbpxsGV+z6+1w5Cro68BjHYUjbV F3+pq5ghjWfL2MzPvljbmfnm1LlmmAYFpuQnS4U3Z4mS8PSQR9v1rSUqLcTaS5eG hSVBqsmpcsiRtgtPeJINBqyxLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNv9LsIJ YogXDFQC/pa3kCA5n+PYMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmsy/bvLREhC2b4iWe5rLT8qAst0RPrWcjcrAFYgUIGPMS/er9zrxM Kx2A7NeTsNpBUrx1kcttu70T7DpEhQPNpyTN2uhWmt4pGNa3yuxKZQXID2lE1wXu rtpOMameeT4xMajTiN96U8k6KcKe1OHMgzELKR72B2th86SiGl2bud+hcaRj8PAq 9AHk8Uvh/QR/5rFkU8wqULHu2s+TqzE9FBbXKCNuGKT5rLhWMX040AEXZkjUZexe AZ4hRiPAzXoeZw21F+Yqa8MgOHg5u9ItGDJPDnQ5bPdoKSWn8iciOfXzmy+5kA9Z A3mAjQJ8oa8X8H4vuMskCP24KEwVirNf -----END CERTIFICATE-----Generated at Mon Jan 12 22:45:17 2026 by rpki-client