This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft File: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft (raw, json) Hash identifier: miRINqgyOLdMGX7RC2xA+0ENVUiBEN5FB9Kt+3bAQvs= Subject key identifier: F1:B5:81:64:1E:5C:25:B5:1E:C5:99:E5:C9:E6:F7:05:1D:D2:FC:06 Authority key identifier: CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A Certificate issuer: /CN=A91E0CF5/serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft Manifest number: 0112 Signing time: Wed 07 Jan 2026 04:06:13 +0000 Manifest this update: Wed 07 Jan 2026 04:06:13 +0000 Manifest next update: Wed 14 Jan 2026 04:06:13 +0000 Files and hashes: 1: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl (hash: s/0WPfrgoKhj9pqpTuMMOljNZJ5SWcl89iG1hz2V63A=) 2: C155660E492B11EF8EF0D04FC4F9AE02.roa (hash: p1Kd4l2BGto3TUE6P+Iwqb8Y4agcHwTbtFw10TWcSis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 Jan 2026 03:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Validity Not Before: Jan 7 04:06:13 2026 GMT Not After : Jan 14 04:06:13 2026 GMT Subject: CN=695ddbb5-1403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:87:de:82:39:29:37:e2:19:c7:63:ac:c8:6b: dd:81:d7:80:61:23:e5:2a:05:8c:d7:27:7b:d3:f2: 75:70:a1:86:7d:6c:d0:2e:dd:93:62:98:99:0a:2a: 34:1a:df:af:0f:6b:90:ac:9b:7d:73:a7:56:f5:91: ee:17:5c:da:66:44:24:b4:44:45:f0:8e:1f:88:5d: f2:6e:bd:bc:4d:0b:40:27:ae:9a:d6:04:a1:97:b8: 83:18:88:1b:f4:94:62:cd:a3:fe:fc:70:e4:ea:9d: ae:64:8c:88:c5:b7:c6:5e:92:16:92:c6:ec:70:52: a8:60:b1:8a:75:9c:4b:16:69:b6:de:4a:a1:ad:e6: af:73:e5:6c:af:b7:09:b1:d7:f1:21:9f:ac:c5:d6: ed:06:e4:69:89:27:10:70:d8:11:47:52:14:71:97: 2b:cc:39:26:2e:b7:ca:7c:91:92:a8:68:50:d5:4b: bb:e4:b1:fd:44:5b:30:f2:1f:33:11:78:ec:bf:4f: 62:cd:79:d0:8d:b6:55:26:19:c9:34:ac:b9:e5:67: 40:79:4f:9d:99:da:38:7c:03:12:01:1c:a8:84:5e: d9:3b:b7:1a:e5:9a:ed:b8:db:42:c2:9a:af:9f:63: 7e:fa:41:51:b3:4b:e2:29:22:d9:3c:d0:c1:6e:0c: 2a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B5:81:64:1E:5C:25:B5:1E:C5:99:E5:C9:E6:F7:05:1D:D2:FC:06 X509v3 Authority Key Identifier: keyid:CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:a9:88:20:ab:b5:e0:76:c8:3d:d1:9f:ef:4d:e4:d2:de:87: ab:e5:4d:36:c8:21:88:22:0a:b1:1c:70:09:16:e2:d1:d3:e1: 15:2b:17:ac:21:52:91:13:78:c0:74:23:d9:7c:62:78:aa:f8: f3:17:b1:31:21:d9:14:fe:6f:37:dd:4c:88:ce:49:9e:bd:d7: 83:32:7f:2a:11:be:e2:f4:16:e6:46:da:ef:d7:29:29:95:8c: f8:71:c8:c4:e3:e2:6e:12:de:6d:77:e1:d6:9b:37:07:26:09: b5:3b:03:bd:ca:f0:40:33:8b:dd:4a:f4:fd:f3:07:fb:fd:0b: f1:04:8f:4e:2d:31:fa:aa:72:fd:33:63:86:50:12:eb:43:a5: cf:fe:0d:fb:ea:2e:20:ff:86:38:a7:42:f0:9a:28:b5:32:01: 54:e3:3a:e2:43:2b:5c:94:53:d0:2f:11:7d:b9:14:c7:88:02: 69:e4:b0:77:df:21:88:d1:c2:0b:38:a0:d3:fe:6c:60:5e:b2: 76:31:7c:b5:a6:92:27:c1:42:ee:a7:40:1d:b2:21:d6:3d:c0: b5:ea:c7:b6:a5:e2:98:4c:30:d9:74:b2:6c:22:db:a1:37:7a: 79:30:62:9b:9e:09:1f:ec:09:48:73:b8:c2:41:a8:71:45:52: ae:ad:05:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKENCQkJCQjI0QjIyQjQzNUQxQ0E0OTNBOUQ2M0RDQTc3 OUJFMDc5NkEwHhcNMjYwMTA3MDQwNjEzWhcNMjYwMTE0MDQwNjEzWjAYMRYwFAYD VQQDDA02OTVkZGJiNS0xNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04fegjkpN+IZx2OsyGvdgdeAYSPlKgWM1yd70/J1cKGGfWzQLt2TYpiZCio0 Gt+vD2uQrJt9c6dW9ZHuF1zaZkQktERF8I4fiF3ybr28TQtAJ66a1gShl7iDGIgb 9JRizaP+/HDk6p2uZIyIxbfGXpIWksbscFKoYLGKdZxLFmm23kqhreavc+Vsr7cJ sdfxIZ+sxdbtBuRpiScQcNgRR1IUcZcrzDkmLrfKfJGSqGhQ1Uu75LH9RFsw8h8z EXjsv09izXnQjbZVJhnJNKy55WdAeU+dmdo4fAMSARyohF7ZO7ca5ZrtuNtCwpqv n2N++kFRs0viKSLZPNDBbgwqSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPG1gWQe XCW1HsWZ5cnm9wUd0vwGMB8GA1UdIwQYMBaAFMu7uySyK0NdHKSTqdY9yneb4Hlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS81MzhDMTk2MDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclExMGNwSk9wMWozS2Q1dmdl V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3dTdKTElyUTEwY3BKT3AxajNLZDV2Z2VXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS81MzhDMTk2MDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclEx MGNwSk9wMWozS2Q1dmdlV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+qYggq7Xgdsg90Z/vTeTS3oer5U02yCGIIgqxHHAJFuLR0+EVKxes IVKRE3jAdCPZfGJ4qvjzF7ExIdkU/m833UyIzkmevdeDMn8qEb7i9BbmRtrv1ykp lYz4ccjE4+JuEt5td+HWmzcHJgm1OwO9yvBAM4vdSvT98wf7/QvxBI9OLTH6qnL9 M2OGUBLrQ6XP/g376i4g/4Y4p0Lwmii1MgFU4zriQytclFPQLxF9uRTHiAJp5LB3 3yGI0cILOKDT/mxgXrJ2MXy1ppInwULup0AdsiHWPcC16se2peKYTDDZdLJsItuh N3p5MGKbngkf7AlIc7jCQahxRVKurQUr -----END CERTIFICATE-----Generated at Wed Jan 7 06:59:40 2026 by rpki-client