This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: p48Oj4lJNua5az+wruFZxxZCbH9vZDUZTXf9WIMS3BA= Subject key identifier: 10:CB:E4:52:0B:0D:F5:BC:E8:F1:68:11:87:DB:E0:A1:B8:4F:67:BB Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 027B Signing time: Thu 01 Jan 2026 01:03:44 +0000 Manifest this update: Thu 01 Jan 2026 01:03:44 +0000 Manifest next update: Thu 08 Jan 2026 01:03:44 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: AQG+yi9MqyKqcaKQjd7nR6XWLp77foNoXbymbrue6i8=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: 31J9yBONwQ0Slze1cZAXabZLSH29F7mH7omWRFxw8QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 01:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Jan 1 01:03:44 2026 GMT Not After : Jan 8 01:03:44 2026 GMT Subject: CN=6955c7f0-00a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9a:7e:50:19:bb:c1:1a:bb:76:fe:33:c4:81: 49:a2:18:62:2d:79:6b:7d:40:b1:6a:e4:aa:47:52: fe:66:ee:22:29:af:c7:7f:ee:86:95:e8:c5:f4:77: d9:ed:aa:42:44:66:62:82:f3:1c:ff:21:2f:43:bc: c9:fc:f0:38:4a:5b:42:64:97:3f:6b:39:c9:c7:87: 75:71:1d:c7:45:00:97:5f:2c:fa:b5:f7:d9:e0:6c: b3:16:44:5b:8b:1c:c9:6b:bd:91:b8:3a:61:f1:99: 6b:1c:66:ea:51:87:32:8c:2e:a3:a1:f2:00:0b:35: 12:97:5b:10:0e:96:a1:e2:2b:67:5f:b7:4c:5f:ee: 73:53:be:23:df:37:dc:1a:d8:1f:4e:e5:c5:2f:59: 58:61:56:e7:8f:c1:a1:b0:78:d4:f1:dd:47:b9:ea: 0b:84:f9:51:a9:72:2a:1d:c9:08:fc:a6:e7:11:eb: ae:69:17:b1:4a:3d:df:cb:77:58:2e:6f:a9:52:8b: f3:32:f0:e1:d7:9a:2d:62:55:1c:43:8a:3b:0c:1a: bd:8f:6b:69:e0:cd:66:e6:98:1e:a3:16:fd:48:a8: a9:b4:32:25:fd:cf:be:a9:f3:1b:b8:36:90:ab:dc: 9b:48:ee:3d:bd:61:fd:98:db:6c:38:62:57:94:c2: 8f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:CB:E4:52:0B:0D:F5:BC:E8:F1:68:11:87:DB:E0:A1:B8:4F:67:BB X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:66:9e:09:dc:3f:6d:b5:d9:34:99:5b:69:18:58:81:3a:33: 28:1d:30:54:53:8f:b5:32:18:bd:26:77:47:e0:83:07:ef:e1: 14:51:f2:16:64:72:39:04:2c:d7:0f:e2:c3:5c:e3:9e:12:a5: 1e:5d:11:cf:5d:37:ec:bd:55:8a:51:3e:a7:1f:79:65:c3:17: f5:58:59:e5:2d:cb:3e:bf:9f:d6:3d:90:5e:f4:17:6b:8c:ff: 59:5f:0c:c4:43:be:91:fc:d0:62:35:f2:25:fa:73:a1:20:cb: 19:77:e2:68:74:b8:96:73:67:30:21:df:93:45:a2:41:64:b4: bb:5f:a3:d2:df:53:d3:5f:7f:b5:d8:94:38:40:11:17:a3:52: 70:03:76:60:e7:95:89:5f:c5:24:e7:24:26:47:fe:ea:47:77: 48:c4:bf:84:93:7e:3d:0b:99:e7:53:72:16:c4:8c:72:f0:ba: 31:3f:45:d9:b5:7d:cb:cd:72:06:de:33:d0:22:8f:2d:6a:bc: 33:e1:7a:b3:86:26:4e:a4:32:e9:7f:6c:da:29:ba:cd:88:1e: b8:90:a4:f2:7d:f7:7f:75:8b:51:90:08:a1:72:1e:6e:45:3f: 12:77:a1:e0:6c:3c:c4:49:27:ca:38:d0:7e:29:df:3b:a6:83: 65:02:9a:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjYwMTAxMDEwMzQ0WhcNMjYwMTA4MDEwMzQ0WjAYMRYwFAYD VQQDDA02OTU1YzdmMC0wMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Jp+UBm7wRq7dv4zxIFJohhiLXlrfUCxauSqR1L+Zu4iKa/Hf+6GlejF9HfZ 7apCRGZigvMc/yEvQ7zJ/PA4SltCZJc/aznJx4d1cR3HRQCXXyz6tffZ4GyzFkRb ixzJa72RuDph8ZlrHGbqUYcyjC6jofIACzUSl1sQDpah4itnX7dMX+5zU74j3zfc GtgfTuXFL1lYYVbnj8GhsHjU8d1HueoLhPlRqXIqHckI/KbnEeuuaRexSj3fy3dY Lm+pUovzMvDh15otYlUcQ4o7DBq9j2tp4M1m5pgeoxb9SKiptDIl/c++qfMbuDaQ q9ybSO49vWH9mNtsOGJXlMKPQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDL5FIL DfW86PFoEYfb4KG4T2e7MB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Zp4J3D9ttdk0mVtpGFiBOjMoHTBUU4+1Mhi9JndH4IMH7+EUUfIW ZHI5BCzXD+LDXOOeEqUeXRHPXTfsvVWKUT6nH3llwxf1WFnlLcs+v5/WPZBe9Bdr jP9ZXwzEQ76R/NBiNfIl+nOhIMsZd+JodLiWc2cwId+TRaJBZLS7X6PS31PTX3+1 2JQ4QBEXo1JwA3Zg55WJX8Uk5yQmR/7qR3dIxL+Ek349C5nnU3IWxIxy8LoxP0XZ tX3LzXIG3jPQIo8tarwz4XqzhiZOpDLpf2zaKbrNiB64kKTyffd/dYtRkAihch5u RT8Sd6HgbDzESSfKONB+Kd87poNlApoS -----END CERTIFICATE-----Generated at Thu Jan 1 03:51:34 2026 by rpki-client