This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft File: 3lBUK-oQggGncsALyfJRrRf6ls0.mft (raw, json) Hash identifier: aLCoF3ku072eXoc4Fhb0wwJbenNnHxVb/vK8gZeNhrA= Subject key identifier: 27:C3:17:31:FE:B9:EA:A8:2F:0D:C3:3B:85:9F:71:C2:54:A3:DF:F7 Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0D2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft Manifest number: 0CEF Signing time: Sat 10 Jan 2026 17:52:10 +0000 Manifest this update: Sat 10 Jan 2026 17:52:09 +0000 Manifest next update: Sat 17 Jan 2026 17:52:09 +0000 Files and hashes: 1: 3lBUK-oQggGncsALyfJRrRf6ls0.crl (hash: raRFBB3zS/hT+9Snq8iRei+lZEkeRfzQHvX+n7y6jos=) 2: AF0508E8B1EE11EF93E70F63C4F9AE02.roa (hash: /m7E0Dw/anD8qYNxCWedW44uleLaVBkf0eBmZ6XFvMk=) 3: D59CB8F4968511EF93AE8239C4F9AE02.roa (hash: rZ4CQjG/7W0/b4/xy8McSOxNbiTi926f91iRcbtKHeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 17:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3372 (0xd2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Jan 10 17:52:09 2026 GMT Not After : Jan 17 17:52:09 2026 GMT Subject: CN=696291c9-4061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7c:02:af:41:66:dc:bf:7a:aa:1a:24:ab:e2: 66:75:13:ef:db:93:78:5a:5a:fb:36:2b:77:7b:9d: 5b:d5:c6:78:dc:d6:4c:68:19:78:12:58:bb:74:be: ba:fe:08:51:bb:b2:f4:8c:2d:ad:32:1b:39:07:34: 2d:01:b1:8a:8a:05:02:d4:9d:fa:89:c9:ea:59:d5: 6a:48:60:73:93:53:d6:ee:31:63:56:7b:6d:d6:ab: f1:d8:e5:a6:e3:89:bc:36:99:43:0d:9e:85:6e:ac: 89:43:33:ed:65:9f:46:78:6f:6f:aa:89:93:27:a2: d1:46:f9:0e:c3:78:c8:8c:80:dc:74:ba:75:9e:d3: 14:fc:b9:90:c5:5f:51:68:e7:f8:32:61:f9:4f:1e: c6:c8:d1:8e:d2:4a:5e:16:1e:2a:61:59:7f:8e:30: ee:ff:5f:57:07:5b:08:7c:e1:7b:80:21:a4:69:e7: f6:bf:37:5e:0c:ae:c7:ca:5b:62:3f:ca:20:21:a2: f3:24:9e:ae:64:ab:12:31:ed:7f:14:65:6b:3e:a8: 6b:09:cc:27:14:e3:9d:1c:0e:b3:b2:d4:78:e7:d1: 18:6a:19:e8:83:42:95:77:ab:88:40:9a:9c:c7:83: 85:42:c0:c3:54:5d:68:36:c3:db:1d:a0:7e:c8:cb: 5a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C3:17:31:FE:B9:EA:A8:2F:0D:C3:3B:85:9F:71:C2:54:A3:DF:F7 X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:3b:43:71:0c:dd:d1:f0:ee:eb:6e:97:73:42:83:76:c2:01: b0:e4:10:fa:4d:11:e4:86:0b:ce:a5:f0:a0:00:ae:8a:a8:d2: d9:5b:c6:6b:54:a2:02:dc:93:f9:f5:bb:b0:0b:c2:7d:0c:a8: 3c:c7:a2:de:1e:0b:07:5e:bf:16:37:23:77:8d:b1:79:c7:5d: 9f:4a:6e:9e:d2:b0:8f:4f:95:c9:b3:06:cb:70:0c:c6:c1:31: c6:28:64:7f:a7:99:7f:4c:3d:35:60:3e:38:50:82:f0:23:57: ee:63:82:78:cd:3f:cb:37:39:db:95:bf:7d:64:09:69:4f:3d: 41:44:c7:6d:15:8e:07:55:85:aa:fb:52:13:d9:c4:0d:a9:39: 61:8b:41:70:7d:80:1f:3a:d8:14:b3:48:73:10:4b:f0:b7:4e: 8a:f1:ef:4a:fa:09:81:a2:1f:22:a1:20:5e:3a:f6:72:fc:9b: 9f:78:e3:da:82:a3:7b:15:1d:95:ab:a5:f2:3e:e0:36:a2:1c: 00:dc:88:16:d9:34:12:ae:23:aa:ef:c4:7e:7a:f7:96:69:d3: 87:64:f1:92:c5:87:06:35:70:77:5a:4e:44:ff:a7:c6:22:a1: 1a:49:ec:3e:98:65:06:5c:7c:f1:0c:4a:c5:ba:3e:a8:f1:ae: ef:a3:53:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjYwMTEwMTc1MjA5WhcNMjYwMTE3MTc1MjA5WjAYMRYwFAYD VQQDDA02OTYyOTFjOS00MDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13wCr0Fm3L96qhokq+JmdRPv25N4Wlr7Nit3e51b1cZ43NZMaBl4Eli7dL66 /ghRu7L0jC2tMhs5BzQtAbGKigUC1J36icnqWdVqSGBzk1PW7jFjVntt1qvx2OWm 44m8NplDDZ6FbqyJQzPtZZ9GeG9vqomTJ6LRRvkOw3jIjIDcdLp1ntMU/LmQxV9R aOf4MmH5Tx7GyNGO0kpeFh4qYVl/jjDu/19XB1sIfOF7gCGkaef2vzdeDK7Hylti P8ogIaLzJJ6uZKsSMe1/FGVrPqhrCcwnFOOdHA6zstR459EYahnog0KVd6uIQJqc x4OFQsDDVF1oNsPbHaB+yMtaYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfDFzH+ ueqoLw3DO4WfccJUo9/3MB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUJFMy84MEFFMTBDNjA0NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdn R25jc0FMeWZKUnJSZjZsczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfO0NxDN3R8O7rbpdzQoN2wgGw5BD6TRHkhgvOpfCgAK6KqNLZW8Zr VKIC3JP59buwC8J9DKg8x6LeHgsHXr8WNyN3jbF5x12fSm6e0rCPT5XJswbLcAzG wTHGKGR/p5l/TD01YD44UILwI1fuY4J4zT/LNznblb99ZAlpTz1BRMdtFY4HVYWq +1IT2cQNqTlhi0FwfYAfOtgUs0hzEEvwt06K8e9K+gmBoh8ioSBeOvZy/JufeOPa gqN7FR2Vq6XyPuA2ohwA3IgW2TQSriOq78R+eveWadOHZPGSxYcGNXB3Wk5E/6fG IqEaSew+mGUGXHzxDErFuj6o8a7vo1Px -----END CERTIFICATE-----Generated at Mon Jan 12 13:48:18 2026 by rpki-client