This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft File: yZBd5SSGuexO-HmgJkRccLD9lQU.mft (raw, json) Hash identifier: fyRCUsIoPtE9s9LdFkGaHxYKotjcOFAqxnRy/MVyXHE= Subject key identifier: AD:CA:A7:65:1E:FB:F7:4E:AD:B0:CC:4D:9B:8D:1A:AE:6A:FF:78:1F Authority key identifier: C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 Certificate issuer: /CN=A91E0C5F/serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft Manifest number: 1705 Signing time: Sat 10 Jan 2026 17:11:07 +0000 Manifest this update: Sat 10 Jan 2026 17:11:07 +0000 Manifest next update: Sat 17 Jan 2026 17:11:07 +0000 Files and hashes: 1: yZBd5SSGuexO-HmgJkRccLD9lQU.crl (hash: +iohP1MvRe+qVLmm/dRU8hGzXtSnX0fxe7PNj+hC9Z0=) 2: 039F32B465C411EBA408403CC4F9AE02.roa (hash: xyf+NgV/qzZzzx4oyqEQT3Z/16fLP6Y40HqsQl4nZiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 17:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C5F, serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Validity Not Before: Jan 10 17:11:07 2026 GMT Not After : Jan 17 17:11:07 2026 GMT Subject: CN=6962882b-a169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7d:eb:ab:91:bb:88:c2:11:79:9f:08:56:94: 55:fd:d4:7e:4d:65:cf:f9:65:49:54:34:31:65:8f: b3:c9:4f:9d:0c:ab:65:09:e8:61:3d:9e:f6:00:84: 16:55:10:a3:c8:1e:f1:a6:bd:e7:2a:77:9c:d4:b2: 11:e9:51:be:02:cc:9e:4a:86:34:49:44:42:2f:8c: 71:c8:1f:3a:02:d8:7f:86:43:66:0a:13:27:93:59: e2:b2:40:0c:81:e8:ec:df:06:56:1b:cf:3a:e1:d4: 23:df:df:50:bb:b4:57:d3:7b:01:21:8f:2c:c8:5d: 0e:66:a8:c2:8b:7c:10:f8:b5:b1:61:55:3e:24:98: 8a:c1:0b:69:0b:c6:d5:b2:68:14:35:72:7c:56:a6: 93:79:44:4f:68:2f:e0:5c:8a:e0:a1:e9:b8:14:92: d3:f0:4f:97:c0:19:8e:0c:5c:9f:29:9e:2c:1e:6e: 8c:75:a2:eb:1b:35:b7:f9:80:fc:4a:d1:d8:3f:fd: 16:b2:1f:49:84:fc:83:64:0f:db:71:77:36:1b:1c: 30:6a:8f:eb:c3:1c:f7:f7:44:9e:9b:5e:d2:90:ba: 28:b6:0c:ad:85:b3:a3:ec:19:67:a5:21:c8:08:c1: cd:6b:9d:ad:37:a6:79:5f:71:d5:53:ab:7a:f0:3f: 1f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CA:A7:65:1E:FB:F7:4E:AD:B0:CC:4D:9B:8D:1A:AE:6A:FF:78:1F X509v3 Authority Key Identifier: keyid:C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:e7:1f:c4:b0:59:da:6e:1a:3d:1e:76:77:e5:f8:15:71:54: cd:12:9f:ca:d0:49:cd:06:28:a5:2e:a0:9c:1a:ba:7d:02:6d: 41:d8:dc:15:55:e2:cc:5e:ea:93:86:9c:e2:c0:8f:e7:ad:a2: b8:bc:5c:e5:c5:c8:a6:2f:bc:45:e4:db:b1:56:45:d7:54:54: fd:ef:fb:0b:d2:be:85:88:53:7d:ea:f8:22:56:b4:5e:02:f3: a2:3a:98:05:fe:fd:0d:e7:69:e1:a7:b6:cf:e6:9e:1e:f6:d0: 72:9f:e8:4c:da:38:bf:a3:fc:5e:da:ac:66:93:5f:a7:b4:2f: 7e:0b:a6:8a:10:ab:63:5f:50:9a:9d:06:af:ae:43:0b:2e:ec: a9:f7:7f:1c:11:b0:5c:15:de:1a:56:c2:8b:eb:19:9e:d2:87: 6c:d4:7c:4a:42:c5:c7:b1:2f:6a:af:56:41:7d:5d:29:15:48: ee:d4:e6:51:0e:34:16:aa:cd:ff:50:3b:7c:4d:a8:a9:4c:33: 1d:82:4d:b4:9c:61:c6:77:b3:01:24:d2:94:9e:1b:29:82:a2: 2c:b4:b3:4b:b8:91:8c:2a:7e:80:f6:38:52:cf:7d:bd:3d:b1: 4d:3c:64:e6:cf:e8:ff:4b:30:49:2c:41:de:70:8a:59:fb:c0: 1c:b2:ae:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDNUYxMTAvBgNVBAUTKEM5OTA1REU1MjQ4NkI5RUM0RUY4NzlBMDI2NDQ1Qzcw QjBGRDk1MDUwHhcNMjYwMTEwMTcxMTA3WhcNMjYwMTE3MTcxMTA3WjAYMRYwFAYD VQQDDA02OTYyODgyYi1hMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtH3rq5G7iMIReZ8IVpRV/dR+TWXP+WVJVDQxZY+zyU+dDKtlCehhPZ72AIQW VRCjyB7xpr3nKnec1LIR6VG+AsyeSoY0SURCL4xxyB86Ath/hkNmChMnk1niskAM gejs3wZWG8864dQj399Qu7RX03sBIY8syF0OZqjCi3wQ+LWxYVU+JJiKwQtpC8bV smgUNXJ8VqaTeURPaC/gXIrgoem4FJLT8E+XwBmODFyfKZ4sHm6MdaLrGzW3+YD8 StHYP/0Wsh9JhPyDZA/bcXc2Gxwwao/rwxz390Sem17SkLootgythbOj7BlnpSHI CMHNa52tN6Z5X3HVU6t68D8fwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3Kp2Ue +/dOrbDMTZuNGq5q/3gfMB8GA1UdIwQYMBaAFMmQXeUkhrnsTvh5oCZEXHCw/ZUF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEM1Ri84QjU0N0E3MjY2 NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3VleE8tSG1nSmtSY2NMRDls UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laQmQ1U1NHdWV4Ty1IbWdKa1JjY0xEOWxRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEM1Ri84QjU0N0E3MjY2NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3Vl eE8tSG1nSmtSY2NMRDlsUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe5x/EsFnabho9HnZ35fgVcVTNEp/K0EnNBiilLqCcGrp9Am1B2NwV VeLMXuqThpziwI/nraK4vFzlxcimL7xF5NuxVkXXVFT97/sL0r6FiFN96vgiVrRe AvOiOpgF/v0N52nhp7bP5p4e9tByn+hM2ji/o/xe2qxmk1+ntC9+C6aKEKtjX1Ca nQavrkMLLuyp938cEbBcFd4aVsKL6xme0ods1HxKQsXHsS9qr1ZBfV0pFUju1OZR DjQWqs3/UDt8TaipTDMdgk20nGHGd7MBJNKUnhspgqIstLNLuJGMKn6A9jhSz329 PbFNPGTmz+j/SzBJLEHecIpZ+8Acsq7y -----END CERTIFICATE-----Generated at Mon Jan 12 17:24:10 2026 by rpki-client