This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft File: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft (raw, json) Hash identifier: Lp0JIJrWLsB1iYLPlV9oBuTeF28y8jw9Hg18Gi1bAQ0= Subject key identifier: DE:06:29:CB:AF:06:84:A6:90:D1:FF:84:11:A1:75:FE:F6:BE:68:C3 Authority key identifier: DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 Certificate issuer: /CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Certificate serial: 0AAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft Manifest number: 0AA7 Signing time: Thu 08 Jan 2026 19:02:52 +0000 Manifest this update: Thu 08 Jan 2026 19:02:51 +0000 Manifest next update: Thu 15 Jan 2026 19:02:51 +0000 Files and hashes: 1: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl (hash: uZFDr6WnhMl+H/VBLgmNi60Jjq55DQdbwR1JIOHDpeE=) 2: 47772F946C2011EAA5965B3CC4F9AE02.roa (hash: VtwEbio1gRB7Ch5LlsoNkh9yhOMrAAqsTjIWAhPZFj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 19:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2734 (0xaae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D76BE, serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Validity Not Before: Jan 8 19:02:51 2026 GMT Not After : Jan 15 19:02:51 2026 GMT Subject: CN=695fff5c-40f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:d3:26:37:e6:8c:94:99:89:ed:f1:6d:60: 9c:c0:d6:af:fa:41:f2:65:37:c8:c6:07:89:19:36: 8c:f4:e3:de:e6:e5:76:54:88:9c:0a:0c:2d:f1:15: b1:8c:6d:98:62:5f:ca:1c:4f:7b:de:dd:dc:87:0f: 56:75:39:de:d7:4f:e8:7c:1e:55:35:53:a1:50:99: 03:ef:fd:6f:a6:79:8d:a7:53:f2:71:69:92:ae:73: d9:bb:98:f1:30:08:0a:24:a3:5d:fb:28:8b:c4:49: e9:36:c6:ef:0d:d0:2c:85:3a:80:85:bb:d9:c7:7b: 03:8b:eb:82:4d:f5:ed:00:13:a5:9f:91:51:ee:d6: 1a:2e:eb:64:ce:e7:d4:cb:5d:28:c3:9f:91:e5:0c: 56:03:39:57:2b:ae:ec:29:95:12:c2:e7:13:0a:2d: cc:98:b3:38:9c:a2:24:4e:c3:34:b9:43:d1:3f:1f: 57:1b:a6:05:5e:87:aa:ee:8e:d6:3a:59:29:7e:53: 36:6b:88:35:b3:98:c7:cf:8b:8b:3a:84:fa:65:ea: 69:2a:6e:53:1b:fb:f1:18:dd:a4:da:55:28:7d:0e: 2d:a2:8c:61:be:56:e2:33:6d:a6:f3:1b:48:7f:e1: 23:6b:1b:27:f8:3b:72:d0:fd:c4:e7:09:d1:23:84: ce:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:06:29:CB:AF:06:84:A6:90:D1:FF:84:11:A1:75:FE:F6:BE:68:C3 X509v3 Authority Key Identifier: keyid:DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:cb:8f:c2:93:1b:97:9d:fc:75:51:82:70:fc:a0:e7:35:75: 15:b3:85:7e:70:a2:eb:b1:27:d4:56:c1:1a:a1:0e:ab:89:30: 6e:db:4f:30:a4:fd:06:9f:41:19:39:ea:a0:88:0f:9d:0b:d1: 4d:3d:3e:c6:e7:c5:30:8a:fa:e5:a9:2d:cb:9d:17:cf:61:ae: 47:85:35:dc:c2:16:b1:32:98:fa:23:bd:5a:f6:69:62:41:50: a2:67:73:f5:c1:71:fc:d5:ec:1f:aa:8a:82:05:c0:80:ba:2f: 9c:95:89:15:1f:66:5a:57:c5:9a:5a:93:b1:c4:b2:f7:f1:ca: df:fe:f6:29:57:35:35:83:6d:87:e0:1e:01:a1:d0:29:c8:c8: 2b:ba:4c:d0:44:ac:69:ff:8e:f4:77:ba:d4:3e:0e:bc:28:0d: 37:fc:20:46:5d:88:33:ed:69:f3:09:f1:57:b3:08:e7:6e:3b: b7:41:5e:8b:eb:5f:1c:3d:e3:b4:21:fd:cd:b3:b4:6e:85:45: ec:6c:a0:f9:ea:3f:ca:8a:d6:65:cd:60:39:7a:5e:23:c2:26: 14:d1:a6:6c:21:05:e2:17:c6:88:99:79:40:e0:57:80:bd:78: 12:cb:cb:55:3d:99:3d:69:6e:fc:38:39:d3:e5:ac:9c:2f:a1: 0d:a0:82:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc2QkUxMTAvBgNVBAUTKEREMTE4QkJCMzQ5RjJDOUI0MEREOUJCNzFBNUI2MUM2 NEJEQjNFMTEwHhcNMjYwMTA4MTkwMjUxWhcNMjYwMTE1MTkwMjUxWjAYMRYwFAYD VQQDDA02OTVmZmY1Yy00MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxerTJjfmjJSZie3xbWCcwNav+kHyZTfIxgeJGTaM9OPe5uV2VIicCgwt8RWx jG2YYl/KHE973t3chw9WdTne10/ofB5VNVOhUJkD7/1vpnmNp1PycWmSrnPZu5jx MAgKJKNd+yiLxEnpNsbvDdAshTqAhbvZx3sDi+uCTfXtABOln5FR7tYaLutkzufU y10ow5+R5QxWAzlXK67sKZUSwucTCi3MmLM4nKIkTsM0uUPRPx9XG6YFXoeq7o7W OlkpflM2a4g1s5jHz4uLOoT6ZeppKm5TG/vxGN2k2lUofQ4tooxhvlbiM22m8xtI f+Ejaxsn+Dty0P3E5wnRI4TODQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4GKcuv BoSmkNH/hBGhdf72vmjDMB8GA1UdIwQYMBaAFN0Ri7s0nyybQN2btxpbYcZL2z4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzZCRS80NEMyOUUwRTZC NzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxKdEEzWnUzR2x0aHhrdmJQ aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNSR0x1elNmTEp0QTNadTNHbHRoeGt2YlBoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzZCRS80NEMyOUUwRTZCNzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxK dEEzWnUzR2x0aHhrdmJQaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANy4/CkxuXnfx1UYJw/KDnNXUVs4V+cKLrsSfUVsEaoQ6riTBu208w pP0Gn0EZOeqgiA+dC9FNPT7G58UwivrlqS3LnRfPYa5HhTXcwhaxMpj6I71a9mli QVCiZ3P1wXH81ewfqoqCBcCAui+clYkVH2ZaV8WaWpOxxLL38crf/vYpVzU1g22H 4B4BodApyMgrukzQRKxp/470d7rUPg68KA03/CBGXYgz7WnzCfFXswjnbju3QV6L 618cPeO0If3Ns7RuhUXsbKD56j/KitZlzWA5el4jwiYU0aZsIQXiF8aImXlA4FeA vXgSy8tVPZk9aW78ODnT5aycL6ENoIL0 -----END CERTIFICATE-----Generated at Fri Jan 9 16:30:56 2026 by rpki-client