This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: MY7ARG81DrphehQek9NExBnufa8yQu/wAuiu7quq0qk= Subject key identifier: 99:29:F6:3F:8B:4A:8C:00:B0:6F:AF:F0:C1:87:1B:01:DF:F9:F3:4E Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 01DA Signing time: Sun 11 Jan 2026 02:01:17 +0000 Manifest this update: Sun 11 Jan 2026 02:01:16 +0000 Manifest next update: Sun 18 Jan 2026 02:01:16 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: qyDvwR1cQuhm5ggmwAn+fGQaXuWyLwsfuV54+qcd3mg=) 2: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: i/4qbq1olZ1yrHtpcck4H45nkVfaKLB8DIL2yG7lkLw=) 3: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: 64T0QVyxSFq/Fdklobji66MEyYuHugmocsuY/nRlqQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 02:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Jan 11 02:01:16 2026 GMT Not After : Jan 18 02:01:16 2026 GMT Subject: CN=6963046d-b89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6f:fa:fb:f5:28:59:4b:7b:67:6d:37:ef:50: ef:be:15:bf:82:b9:dd:60:ce:c9:fd:8f:04:63:b2: f2:f7:13:cb:08:32:df:ce:f7:4d:84:2c:e6:ff:d9: 7f:f0:11:f2:5c:6f:5d:3a:d3:cb:4e:f7:5a:d1:f1: 88:35:24:d5:c6:fb:a6:13:8a:5a:6a:22:8a:81:d4: c6:a2:2f:a3:c4:5a:0d:ab:b6:c3:ac:c0:43:54:1e: 98:af:30:f2:0d:be:bc:62:2a:81:a7:bf:ff:a8:fb: 19:dc:9d:76:c6:1d:33:b2:40:a7:44:ea:ef:ea:bd: 01:f8:14:9f:1a:2d:84:99:23:45:9f:1c:80:b7:53: cb:74:85:e7:b0:f5:ee:b2:6c:67:06:2d:67:c2:72: 9d:32:46:d4:af:17:4f:17:c1:99:3f:86:2b:dc:0d: 94:33:cc:94:95:45:fa:9d:74:a6:3a:99:15:11:39: d8:89:29:3f:dc:50:e2:06:91:20:e3:99:fa:1e:8b: ca:c4:49:14:1e:f6:f8:54:0f:4e:af:e5:fe:a9:d1: 0e:99:ba:44:15:4a:be:11:15:90:c8:c5:09:98:6e: 50:b0:f5:cf:6e:76:b4:1b:3e:e2:ec:e6:e6:b7:e8: de:9a:8b:dc:e4:36:06:dc:85:7e:8d:a1:7a:d4:1c: 70:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:29:F6:3F:8B:4A:8C:00:B0:6F:AF:F0:C1:87:1B:01:DF:F9:F3:4E X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b6:5e:79:44:4d:98:3a:0f:da:93:4e:55:dc:53:ae:8d:08: f8:36:49:70:12:90:76:d1:a0:8a:d5:a0:fc:ae:1c:2c:45:50: 30:a9:92:65:c9:c8:9d:2e:ea:4f:b9:e1:c9:96:be:d3:25:d8: 51:15:6b:5f:b5:2b:f4:7f:f7:c7:a0:7a:e9:91:e0:87:9a:48: f2:28:15:4c:b1:79:ae:04:91:6b:a2:66:0d:4c:fe:d3:c0:09: 35:4f:d8:9f:ae:c0:6e:5b:1e:c4:12:98:37:7d:b1:74:c1:17: 41:50:03:49:6c:56:a6:41:a1:ab:50:10:3d:16:3b:fc:bf:e2: 9f:12:a1:0f:35:60:90:5a:ad:ed:c8:e0:ed:69:79:4c:48:87: e3:6e:27:56:cf:8b:38:ea:ad:92:de:d9:a2:1b:0b:a1:84:40: 6e:dd:47:84:c9:c7:97:69:f0:b6:bb:37:9d:29:69:be:b2:62: 2e:5b:6e:43:31:73:ce:a2:63:2f:bb:dc:0d:13:d4:1a:40:96: 65:77:3f:e4:1f:3a:ef:7b:58:f4:bf:b9:67:ba:26:c0:a2:8e: 8f:03:e5:e0:6c:97:0a:64:2b:ca:46:1b:7c:1a:b5:bd:39:13: ee:26:29:8f:a4:d2:29:d0:0c:6a:50:b3:d9:58:1e:60:64:9a: d4:1e:77:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjYwMTExMDIwMTE2WhcNMjYwMTE4MDIwMTE2WjAYMRYwFAYD VQQDDA02OTYzMDQ2ZC1iODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW/6+/UoWUt7Z20371DvvhW/grndYM7J/Y8EY7Ly9xPLCDLfzvdNhCzm/9l/ 8BHyXG9dOtPLTvda0fGINSTVxvumE4paaiKKgdTGoi+jxFoNq7bDrMBDVB6YrzDy Db68YiqBp7//qPsZ3J12xh0zskCnROrv6r0B+BSfGi2EmSNFnxyAt1PLdIXnsPXu smxnBi1nwnKdMkbUrxdPF8GZP4Yr3A2UM8yUlUX6nXSmOpkVETnYiSk/3FDiBpEg 45n6HovKxEkUHvb4VA9Or+X+qdEOmbpEFUq+ERWQyMUJmG5QsPXPbna0Gz7i7Obm t+jemovc5DYG3IV+jaF61Bxw7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkp9j+L SowAsG+v8MGHGwHf+fNOMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhtl55RE2YOg/ak05V3FOujQj4NklwEpB20aCK1aD8rhwsRVAwqZJl ycidLupPueHJlr7TJdhRFWtftSv0f/fHoHrpkeCHmkjyKBVMsXmuBJFromYNTP7T wAk1T9ifrsBuWx7EEpg3fbF0wRdBUANJbFamQaGrUBA9Fjv8v+KfEqEPNWCQWq3t yODtaXlMSIfjbidWz4s46q2S3tmiGwuhhEBu3UeEyceXafC2uzedKWm+smIuW25D MXPOomMvu9wNE9QaQJZldz/kHzrve1j0v7lnuibAoo6PA+XgbJcKZCvKRht8GrW9 ORPuJimPpNIp0AxqULPZWB5gZJrUHnff -----END CERTIFICATE-----Generated at Mon Jan 12 06:59:43 2026 by rpki-client