This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft File: XDfN_Mjp6QxBFko5HukDtN5U37E.mft (raw, json) Hash identifier: HuuqfhEumHKZUa9BfhE6VDijJDsYKlP+rdMZU+VV458= Subject key identifier: 2D:08:58:F9:A9:BC:7C:5C:F9:D4:7C:5E:85:8F:BE:EE:21:8D:A3:0F Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 06B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft Manifest number: 06AE Signing time: Thu 08 Jan 2026 21:44:15 +0000 Manifest this update: Thu 08 Jan 2026 21:44:15 +0000 Manifest next update: Thu 15 Jan 2026 21:44:15 +0000 Files and hashes: 1: XDfN_Mjp6QxBFko5HukDtN5U37E.crl (hash: HlV4fhrkM1dHU1E6Yi+3ylWQtu+qvJqlcz29WtXD/Pg=) 2: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (hash: NSWzyjE2HPsrPxuhTouX2YNe98sTsio9BMgnAVmwnyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 21:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA, serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: Jan 8 21:44:15 2026 GMT Not After : Jan 15 21:44:15 2026 GMT Subject: CN=6960252f-fff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:19:65:9c:36:85:d4:59:96:53:80:96:5b:b5: e2:70:51:b3:fb:9d:12:0c:1a:78:76:9d:cb:cf:40: ae:ce:31:b9:e5:f0:2a:c8:67:b1:43:31:92:46:c0: 1a:75:c4:be:2b:77:c9:88:58:19:1c:20:98:ca:9d: 6c:fe:b2:6a:ef:91:d7:ef:c5:ae:c1:62:30:6a:04: 51:ed:7a:2a:ad:47:23:0e:c1:c0:a5:f4:8a:bf:7f: ee:66:69:50:e0:49:93:11:5e:d0:e0:36:00:18:6d: cf:93:f2:d9:08:7f:2c:05:15:5d:fe:0c:f9:17:1e: 68:45:63:da:e6:f2:4c:d1:98:5b:d3:18:85:72:35: 18:66:8b:39:3a:ab:d4:5e:a5:25:0d:68:32:04:67: 85:c5:c3:d8:f0:e7:2d:d1:8c:5c:0b:9e:53:e6:f5: 0f:75:bb:21:b3:fc:63:ef:0d:b4:3c:df:bd:94:6f: 16:ed:44:7d:c6:3e:df:4c:d6:11:bd:b7:8a:ce:2d: 31:b2:e2:1e:39:c9:0e:00:2c:0f:0c:b3:52:33:3b: 7e:ad:3e:86:b9:0e:74:a9:60:ff:f5:e0:2d:b9:7c: f4:73:62:fb:ec:b6:5e:34:74:72:cb:22:6b:f5:74: 03:9a:85:91:ef:ef:f3:7a:09:4f:a1:1d:4a:54:14: e1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:08:58:F9:A9:BC:7C:5C:F9:D4:7C:5E:85:8F:BE:EE:21:8D:A3:0F X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:aa:58:a0:f9:db:3b:44:f1:06:44:21:b8:be:c1:c5:f7:3b: 61:65:2f:0f:01:98:55:23:64:ce:d5:58:1b:96:23:00:ee:78: ed:b4:7b:ab:da:8a:39:94:62:06:0d:86:02:07:b6:83:6b:4f: de:84:1c:2a:3d:73:19:6e:b3:71:48:57:d1:fe:f0:4c:a2:49: 71:79:73:39:6d:0c:e7:64:43:d2:15:60:6b:59:d9:0b:15:60: a8:ce:ae:3d:92:3a:12:9e:c6:52:6a:8b:6d:c3:70:25:26:35: 2d:c7:b3:d3:c5:33:90:fc:d3:5c:ff:83:8e:4f:48:cc:49:fa: 08:5e:29:e8:f5:0a:66:13:48:1a:11:5d:59:75:dc:b8:09:be: 02:af:16:90:8d:7a:a6:22:49:9f:34:8f:d0:f9:bd:22:2d:e1: 6e:be:12:04:28:ad:1a:9f:a7:14:7b:62:e6:c6:12:5d:68:60: 1b:4c:f4:f6:ad:d5:17:ee:9d:df:7b:23:2c:60:67:e7:d4:49: 13:c5:a5:02:95:86:4e:9c:6c:22:68:f0:a1:ac:b6:7a:9b:21: f6:24:54:d4:a8:0f:9d:7b:e1:0d:92:d0:12:49:12:f1:56:21: a7:b9:82:be:9c:2e:a4:6e:1a:32:7b:7b:2f:52:f6:01:76:e3: 9f:26:f1:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjYwMTA4MjE0NDE1WhcNMjYwMTE1MjE0NDE1WjAYMRYwFAYD VQQDDA02OTYwMjUyZi1mZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxllnDaF1FmWU4CWW7XicFGz+50SDBp4dp3Lz0CuzjG55fAqyGexQzGSRsAa dcS+K3fJiFgZHCCYyp1s/rJq75HX78WuwWIwagRR7XoqrUcjDsHApfSKv3/uZmlQ 4EmTEV7Q4DYAGG3Pk/LZCH8sBRVd/gz5Fx5oRWPa5vJM0Zhb0xiFcjUYZos5OqvU XqUlDWgyBGeFxcPY8Oct0YxcC55T5vUPdbshs/xj7w20PN+9lG8W7UR9xj7fTNYR vbeKzi0xsuIeOckOACwPDLNSMzt+rT6GuQ50qWD/9eAtuXz0c2L77LZeNHRyyyJr 9XQDmoWR7+/zeglPoR1KVBThOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0IWPmp vHxc+dR8XoWPvu4hjaMPMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUVCQS84Mzk0RTI1MDkxRUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZR eEJGa281SHVrRHRONVUzN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBqlig+ds7RPEGRCG4vsHF9zthZS8PAZhVI2TO1VgbliMA7njttHur 2oo5lGIGDYYCB7aDa0/ehBwqPXMZbrNxSFfR/vBMoklxeXM5bQznZEPSFWBrWdkL FWCozq49kjoSnsZSaottw3AlJjUtx7PTxTOQ/NNc/4OOT0jMSfoIXino9QpmE0ga EV1Zddy4Cb4CrxaQjXqmIkmfNI/Q+b0iLeFuvhIEKK0an6cUe2LmxhJdaGAbTPT2 rdUX7p3feyMsYGfn1EkTxaUClYZOnGwiaPChrLZ6myH2JFTUqA+de+ENktASSRLx ViGnuYK+nC6kbhoye3svUvYBduOfJvEd -----END CERTIFICATE-----Generated at Sat Jan 10 09:16:20 2026 by rpki-client