This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft File: BXtTd0A4JnigePW_KExyZ5S50TQ.mft (raw, json) Hash identifier: q7C+B+DtWELEnLvyn7tKI3FnWdkaxNRV5enYOKzkRtM= Subject key identifier: 80:EE:C0:E2:98:85:0B:E7:C2:23:E7:52:23:3B:31:96:96:0F:AE:19 Authority key identifier: 05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 Certificate issuer: /CN=A91992FA/serialNumber=057B537740382678A078F5BF284C726794B9D134 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft Manifest number: A3 Signing time: Thu 01 Jan 2026 05:49:27 +0000 Manifest this update: Thu 01 Jan 2026 05:49:26 +0000 Manifest next update: Thu 08 Jan 2026 05:49:26 +0000 Files and hashes: 1: BXtTd0A4JnigePW_KExyZ5S50TQ.crl (hash: 9JnrR08qi6zrVH8XkwTdW/YSGqWp+ve+Vu9gaxMMttU=) 2: 44A28FACEFEC11EF80EC123DC4F9AE02.roa (hash: kIHtM5yk/7E77z9qFDfBUJpQm2RMukSPxAc1zKCnuxc=) 3: CF5EEDA6894411F0BE628977C4F9AE02.roa (hash: 17QpSjP3T4fN2iFoeGDXqVvnkQ3k4lIOqR9Kwrs2UKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 05:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91992FA, serialNumber=057B537740382678A078F5BF284C726794B9D134 Validity Not Before: Jan 1 05:49:26 2026 GMT Not After : Jan 8 05:49:26 2026 GMT Subject: CN=69560ae7-7eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:84:dc:7b:45:da:1d:20:a2:0b:34:05:f4:5b: 83:db:f9:a6:a0:da:1d:70:c7:e2:36:5b:c6:fb:03: 64:0b:22:d4:09:ae:49:8f:3d:19:75:28:b1:16:64: 5b:d0:9e:5e:1b:0c:ae:b5:1f:1a:f9:44:b2:45:a1: b9:60:f5:60:57:91:7d:76:8c:43:30:d5:ad:d6:7b: ad:39:01:e1:16:d8:c0:56:14:06:67:c5:fb:28:37: 19:a3:c3:df:e9:4d:49:f0:9a:1b:9e:81:3f:61:b0: f9:f5:63:26:71:91:0b:f6:96:a2:f6:24:af:78:13: ec:5a:a1:62:5a:33:2d:2f:2c:ba:15:4f:3f:0f:16: b4:c8:9a:01:2f:67:22:34:b7:4a:2f:c8:62:d6:23: 6f:14:2c:9a:12:a2:57:d6:a1:4c:92:95:90:69:1f: 5e:0d:51:ea:52:cc:84:d2:ed:65:55:8a:ee:2c:2b: 52:67:bc:ca:5e:87:31:53:47:32:54:50:3e:c4:30: fc:e3:67:ff:ab:f2:3e:e6:8f:2e:08:98:19:c4:69: 96:3e:08:22:ba:1f:da:d1:ba:8d:e4:0b:1c:e0:ed: e6:0f:9a:d1:a4:26:b0:50:ac:79:ea:3b:be:f2:97: c6:89:97:b4:89:b8:10:7d:c4:ba:b0:d0:b6:88:43: 40:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:EE:C0:E2:98:85:0B:E7:C2:23:E7:52:23:3B:31:96:96:0F:AE:19 X509v3 Authority Key Identifier: keyid:05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7f:36:76:ac:1e:28:17:51:0b:a2:73:a2:50:e5:68:ca:78: 0c:22:b4:dc:09:3d:b4:4f:65:59:1e:c5:ab:68:fa:0e:f0:53: a9:fc:9a:27:18:04:17:7b:50:45:6f:a8:38:0c:73:bd:18:1f: 4e:56:22:5d:98:cd:0b:4b:fa:e6:3f:84:04:a6:31:2e:be:ec: 84:48:66:cb:61:82:15:fc:24:42:da:11:72:d9:89:e8:f6:ad: 4f:30:11:57:bc:7b:55:f8:7d:ec:7d:c2:48:25:8f:5a:f4:31: 0b:9c:c5:dd:73:be:e5:9b:23:bd:82:84:40:00:f8:4d:33:f1: 64:6a:dd:f2:13:48:06:56:97:c1:3f:d7:06:5a:bd:50:4f:02: f7:cf:74:5e:f6:c3:f9:b2:8d:3c:27:27:ab:77:5b:9b:f3:a4: fd:d7:81:fa:ce:0f:4b:31:c4:af:81:18:cc:8b:52:1b:a1:67: bd:db:02:9f:83:ca:71:a1:54:9c:fc:bd:d6:e9:24:77:c7:36: f8:e0:e2:0c:39:cd:0d:c5:43:73:4a:7e:c4:83:c2:12:eb:7b: c0:ff:c4:eb:4a:b0:dc:13:5c:34:e9:fd:3a:f3:c3:4a:e8:59: 35:d6:b6:e1:13:92:32:12:1a:48:fb:d0:d3:61:52:e2:2c:e4: 7a:f5:e0:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyRkExMTAvBgNVBAUTKDA1N0I1Mzc3NDAzODI2NzhBMDc4RjVCRjI4NEM3MjY3 OTRCOUQxMzQwHhcNMjYwMTAxMDU0OTI2WhcNMjYwMTA4MDU0OTI2WjAYMRYwFAYD VQQDDA02OTU2MGFlNy03ZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoTce0XaHSCiCzQF9FuD2/mmoNodcMfiNlvG+wNkCyLUCa5Jjz0ZdSixFmRb 0J5eGwyutR8a+USyRaG5YPVgV5F9doxDMNWt1nutOQHhFtjAVhQGZ8X7KDcZo8Pf 6U1J8JobnoE/YbD59WMmcZEL9pai9iSveBPsWqFiWjMtLyy6FU8/Dxa0yJoBL2ci NLdKL8hi1iNvFCyaEqJX1qFMkpWQaR9eDVHqUsyE0u1lVYruLCtSZ7zKXocxU0cy VFA+xDD842f/q/I+5o8uCJgZxGmWPggiuh/a0bqN5Asc4O3mD5rRpCawUKx56ju+ 8pfGiZe0ibgQfcS6sNC2iENAJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDuwOKY hQvnwiPnUiM7MZaWD64ZMB8GA1UdIwQYMBaAFAV7U3dAOCZ4oHj1vyhMcmeUudE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTJGQS9GQTQ2RTBEMkVF MDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpuaWdlUFdfS0V4eVo1UzUw VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYdFRkMEE0Sm5pZ2VQV19LRXh5WjVTNTBUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTJGQS9GQTQ2RTBEMkVFMDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpu aWdlUFdfS0V4eVo1UzUwVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsfzZ2rB4oF1ELonOiUOVoyngMIrTcCT20T2VZHsWraPoO8FOp/Jon GAQXe1BFb6g4DHO9GB9OViJdmM0LS/rmP4QEpjEuvuyESGbLYYIV/CRC2hFy2Yno 9q1PMBFXvHtV+H3sfcJIJY9a9DELnMXdc77lmyO9goRAAPhNM/Fkat3yE0gGVpfB P9cGWr1QTwL3z3Re9sP5so08Jyerd1ub86T914H6zg9LMcSvgRjMi1IboWe92wKf g8pxoVSc/L3W6SR3xzb44OIMOc0NxUNzSn7Eg8IS63vA/8TrSrDcE1w06f0688NK 6Fk11rbhE5IyEhpI+9DTYVLiLOR69eCW -----END CERTIFICATE-----Generated at Thu Jan 1 19:54:36 2026 by rpki-client