This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft File: QpCYAlfGdws2CulWLaWJPGDa2nc.mft (raw, json) Hash identifier: hcc+dhuHQJsnvxVqM1NhmaXlRMGVcL55fXCAIB9+JpE= Subject key identifier: 70:AA:80:A8:C3:5C:ED:3A:84:67:7D:99:CB:50:FC:8F:2C:6C:08:70 Authority key identifier: 42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 Certificate issuer: /CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Certificate serial: 0940 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft Manifest number: 0940 Signing time: Sat 10 Jan 2026 19:35:27 +0000 Manifest this update: Sat 10 Jan 2026 19:35:27 +0000 Manifest next update: Sat 17 Jan 2026 19:35:27 +0000 Files and hashes: 1: QpCYAlfGdws2CulWLaWJPGDa2nc.crl (hash: 4ORLpU6FMGaEl6MY25Z0sAz2iBGTEJqdU2tPA9siF/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 19:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2368 (0x940) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B89, serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Validity Not Before: Jan 10 19:35:27 2026 GMT Not After : Jan 17 19:35:27 2026 GMT Subject: CN=6962a9ff-3e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:95:06:73:d5:08:ae:94:f9:f1:0a:42:b6: ca:f0:1e:12:70:1a:05:61:25:b5:ab:fd:7a:71:ba: 41:56:48:9e:b3:4e:32:2d:5f:85:84:7b:71:49:66: 6d:f6:72:a6:a8:af:f6:fc:74:79:92:3b:b0:1b:b7: d6:91:e0:0f:c2:e3:9d:89:19:bd:a5:8b:75:92:45: c3:d9:d7:20:8e:55:5a:a3:3e:37:8c:f8:ad:8b:50: 2d:92:eb:c1:3c:77:be:22:5b:70:4c:f3:85:08:a7: 18:4a:83:ab:c7:64:c5:92:5d:93:48:fb:26:f8:90: c3:7b:a8:db:37:4f:d0:c0:83:ba:06:f4:5b:bd:a7: 38:2f:7d:0f:71:c5:71:90:b1:7a:1e:6e:4b:cd:3a: 14:ee:b9:ea:27:e2:ac:56:c5:7c:fe:44:d0:69:d2: 62:da:76:ad:e1:9e:09:ca:d1:6c:97:81:bc:4d:7c: 05:93:3b:b3:f4:fb:f0:b4:a1:80:03:1d:b1:8b:2b: 39:bf:74:3d:91:36:cf:06:c4:b2:6e:49:38:ad:de: 27:a0:54:ac:70:a7:21:18:6a:f8:61:5c:8e:96:d1: 22:6b:d0:b5:51:2d:b9:5c:6e:89:10:61:b7:8b:9f: b9:da:8e:15:4c:e7:16:f5:bb:10:31:66:d3:4f:d9: cd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AA:80:A8:C3:5C:ED:3A:84:67:7D:99:CB:50:FC:8F:2C:6C:08:70 X509v3 Authority Key Identifier: keyid:42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:fa:58:4e:77:ce:be:f9:ef:b7:75:9b:0f:4b:2e:27:44:2e: bf:61:21:8e:22:b5:0c:32:5b:c5:ee:a8:f3:3b:c0:50:98:23: 29:0d:25:71:c0:15:72:0e:7e:51:1c:a2:2c:93:e8:22:a0:70: e1:63:e9:00:18:47:b4:a1:59:18:f3:29:a9:a0:d2:f0:ca:8d: a9:8d:23:f8:0e:54:77:bd:eb:1a:94:9d:03:07:7c:c3:86:c1: ed:0b:ae:0c:5c:ec:28:c8:11:d5:3e:5a:f9:84:1c:ba:ef:11: 50:fa:7b:8f:3c:8a:7f:2e:7b:9c:6d:9b:f4:1d:42:a5:72:b2: fb:b4:c7:3b:08:4a:17:7b:f5:f5:b5:82:c3:f8:c5:f1:5c:3c: d3:40:96:cd:f5:90:c9:80:cd:e1:8a:28:b9:36:fa:aa:37:32: aa:d1:82:b7:58:94:e6:58:eb:37:63:8b:ca:f8:79:79:e6:7c: ea:37:c0:9e:39:39:d5:37:7b:9b:28:23:8f:c6:4c:00:aa:64: 82:f3:9c:96:e2:d8:f7:fe:2f:80:05:8f:89:0d:a3:61:17:ce: 4f:9d:cf:b8:48:b4:2f:98:69:73:1f:4b:be:a0:f1:7f:ad:b0: e0:ff:ae:8c:fa:93:33:1b:6d:0c:5e:f5:f4:78:24:7a:aa:75: d3:c6:32:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCODkxMTAvBgNVBAUTKDQyOTA5ODAyNTdDNjc3MEIzNjBBRTk1NjJEQTU4OTND NjBEQURBNzcwHhcNMjYwMTEwMTkzNTI3WhcNMjYwMTE3MTkzNTI3WjAYMRYwFAYD VQQDDA02OTYyYTlmZi0zZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu96VBnPVCK6U+fEKQrbK8B4ScBoFYSW1q/16cbpBVkies04yLV+FhHtxSWZt 9nKmqK/2/HR5kjuwG7fWkeAPwuOdiRm9pYt1kkXD2dcgjlVaoz43jPiti1AtkuvB PHe+IltwTPOFCKcYSoOrx2TFkl2TSPsm+JDDe6jbN0/QwIO6BvRbvac4L30PccVx kLF6Hm5LzToU7rnqJ+KsVsV8/kTQadJi2nat4Z4JytFsl4G8TXwFkzuz9PvwtKGA Ax2xiys5v3Q9kTbPBsSybkk4rd4noFSscKchGGr4YVyOltEia9C1US25XG6JEGG3 i5+52o4VTOcW9bsQMWbTT9nN5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCqgKjD XO06hGd9mctQ/I8sbAhwMB8GA1UdIwQYMBaAFEKQmAJXxncLNgrpVi2liTxg2tp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4OS9EODM1NkJBQ0Iw NzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3czJDdWxXTGFXSlBHRGEy bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwQ1lBbGZHZHdzMkN1bFdMYVdKUEdEYTJuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I4OS9EODM1NkJBQ0IwNzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3 czJDdWxXTGFXSlBHRGEybmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW+lhOd86++e+3dZsPSy4nRC6/YSGOIrUMMlvF7qjzO8BQmCMpDSVx wBVyDn5RHKIsk+gioHDhY+kAGEe0oVkY8ympoNLwyo2pjSP4DlR3vesalJ0DB3zD hsHtC64MXOwoyBHVPlr5hBy67xFQ+nuPPIp/LnucbZv0HUKlcrL7tMc7CEoXe/X1 tYLD+MXxXDzTQJbN9ZDJgM3hiii5NvqqNzKq0YK3WJTmWOs3Y4vK+Hl55nzqN8Ce OTnVN3ubKCOPxkwAqmSC85yW4tj3/i+ABY+JDaNhF85Pnc+4SLQvmGlzH0u+oPF/ rbDg/66M+pMzG20MXvX0eCR6qnXTxjK7 -----END CERTIFICATE-----Generated at Mon Jan 12 16:40:04 2026 by rpki-client