This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: 4T52aPB7hKWIkjy4Z4nk6u2oOu+gCuYdhaDRiGhuFqk= Subject key identifier: 2E:3B:E5:B2:D0:AD:47:25:2C:32:3C:B6:25:09:DD:49:19:E0:79:AD Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: A9 Signing time: Sun 11 Jan 2026 05:22:28 +0000 Manifest this update: Sun 11 Jan 2026 05:22:28 +0000 Manifest next update: Sun 18 Jan 2026 05:22:28 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 1W1gK0hfqsckeCgcRZRWNnmI1w+Ecx6BvX6a098ulqI=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 05:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Jan 11 05:22:28 2026 GMT Not After : Jan 18 05:22:28 2026 GMT Subject: CN=69633394-c7dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:28:60:c5:24:f6:54:46:e6:b4:50:9a:bf:78: 68:04:c9:ad:cf:e0:74:43:a2:5d:be:39:69:f2:1c: e9:02:38:92:7f:2e:c8:c8:fd:a1:b3:b7:56:35:b9: df:83:9e:42:c7:01:30:cf:a5:a5:01:bf:08:01:d2: 0d:a8:b7:9e:14:37:8b:6f:3f:c5:60:ba:ed:b1:92: 20:70:0c:c3:bb:36:26:42:9e:46:f8:d5:ff:da:0b: 5b:c6:97:e5:13:2d:23:0b:28:3f:e7:dc:22:c0:ee: c1:0f:52:6b:35:89:9e:95:e8:e4:67:ea:db:8c:2c: 9c:1e:bc:02:db:79:49:44:a4:a7:52:bb:73:18:a6: d3:87:44:56:0d:f1:26:c5:8b:b2:d2:d0:00:29:83: 5f:35:0d:5b:d4:55:7a:53:d9:71:d5:21:89:88:16: 7b:4d:93:df:29:54:b7:90:90:d6:49:7a:95:3b:9e: 46:1b:8c:08:dc:c9:19:8f:a2:82:68:37:b6:33:c7: 34:78:91:0c:d4:6e:ae:02:2e:f1:ac:3b:a0:ba:27: 86:6b:89:b9:78:eb:5d:95:28:d3:9e:3a:d3:a6:40: 28:1b:68:54:1f:4b:5a:54:64:b2:ad:7b:bd:5f:ca: 1f:07:8b:f3:96:b4:94:3a:46:c3:b6:d4:52:a5:81: 59:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:3B:E5:B2:D0:AD:47:25:2C:32:3C:B6:25:09:DD:49:19:E0:79:AD X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:bf:96:f9:99:33:8a:97:ae:0b:f4:5e:b7:ac:cd:b8:6d:04: c6:69:5d:b0:eb:d9:d9:45:1c:8d:1d:a0:4c:4c:2c:f0:85:80: f3:bc:5a:fd:32:29:08:00:80:c4:36:a4:11:48:3e:43:2f:ea: 02:8b:ba:39:93:cf:bf:44:e3:46:66:88:3f:9d:56:60:7e:1a: 93:1c:ba:65:80:c0:83:25:36:e3:ff:2b:47:0f:95:2a:f2:0f: 32:db:de:c0:55:6b:21:bc:9b:c9:a0:69:6d:86:20:b1:e8:5d: f6:5f:ed:7c:82:9f:39:84:79:38:b6:c0:1f:ec:9c:43:a8:f5: 17:ce:8a:c0:80:77:ec:b7:8a:e4:1b:df:79:f2:bf:84:03:54: 90:1c:26:60:8d:8e:44:50:ac:55:a3:b8:6d:19:d3:ea:ab:48: 5a:6f:86:3e:9e:67:81:ad:fd:0d:43:5d:76:85:0a:22:b9:bc: 4a:a0:46:ad:22:68:90:70:ff:4c:73:ef:2c:c9:9a:a8:b6:91: d1:5a:cc:44:5a:93:ea:9a:e9:d5:e8:7e:b3:f6:7c:b1:16:95: 04:40:d7:83:a5:32:10:6c:d0:c0:74:d6:ba:0e:01:59:29:d8: e7:73:bc:28:86:cb:c9:ea:fa:e2:cc:08:06:8a:1f:aa:7b:cc: a7:02:fe:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjYwMTExMDUyMjI4WhcNMjYwMTE4MDUyMjI4WjAYMRYwFAYD VQQDDA02OTYzMzM5NC1jN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyhgxST2VEbmtFCav3hoBMmtz+B0Q6Jdvjlp8hzpAjiSfy7IyP2hs7dWNbnf g55CxwEwz6WlAb8IAdINqLeeFDeLbz/FYLrtsZIgcAzDuzYmQp5G+NX/2gtbxpfl Ey0jCyg/59wiwO7BD1JrNYmelejkZ+rbjCycHrwC23lJRKSnUrtzGKbTh0RWDfEm xYuy0tAAKYNfNQ1b1FV6U9lx1SGJiBZ7TZPfKVS3kJDWSXqVO55GG4wI3MkZj6KC aDe2M8c0eJEM1G6uAi7xrDuguieGa4m5eOtdlSjTnjrTpkAoG2hUH0taVGSyrXu9 X8ofB4vzlrSUOkbDttRSpYFZiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC475bLQ rUclLDI8tiUJ3UkZ4HmtMB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJv5b5mTOKl64L9F63rM24bQTGaV2w69nZRRyNHaBMTCzwhYDzvFr9 MikIAIDENqQRSD5DL+oCi7o5k8+/RONGZog/nVZgfhqTHLplgMCDJTbj/ytHD5Uq 8g8y297AVWshvJvJoGlthiCx6F32X+18gp85hHk4tsAf7JxDqPUXzorAgHfst4rk G9958r+EA1SQHCZgjY5EUKxVo7htGdPqq0hab4Y+nmeBrf0NQ112hQoiubxKoEat ImiQcP9Mc+8syZqotpHRWsxEWpPqmunV6H6z9nyxFpUEQNeDpTIQbNDAdNa6DgFZ Kdjnc7wohsvJ6vrizAgGih+qe8ynAv5z -----END CERTIFICATE-----Generated at Sun Jan 11 11:25:29 2026 by rpki-client