This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: Et9AyGQEv/XSdhDr3+7Ec9ZoQdH1NOxK7VPNpVIzfkE= Subject key identifier: 37:8C:B8:8F:F6:98:37:80:BA:79:0D:03:DB:0E:B2:7C:6F:3F:1D:38 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 024A Signing time: Sun 11 Jan 2026 01:04:12 +0000 Manifest this update: Sun 11 Jan 2026 01:04:12 +0000 Manifest next update: Sun 18 Jan 2026 01:04:12 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: QUuGAAD7UTeAlsbhfPEHLMmkZkM9gtj9IyhiWtpxImg=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: 5f74h8n3N2lPubEJTNiK66D1BQc1WtrIYebG81I+9UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Jan 11 01:04:12 2026 GMT Not After : Jan 18 01:04:12 2026 GMT Subject: CN=6962f70c-5af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:21:5f:7c:67:66:a5:e8:0a:35:35:05:57:5b: a7:c2:f1:ca:5d:a1:f6:94:54:71:11:8e:26:dd:72: 35:05:b6:89:9d:37:cf:10:cf:c9:f6:b1:19:b3:ae: d1:fb:cb:60:e8:1e:bb:9e:54:a5:79:bc:95:38:42: 02:73:22:f2:01:b7:44:6e:b1:94:18:0f:6f:4a:4d: d5:40:db:33:f3:ea:c0:4d:25:3e:53:95:f9:9c:96: cd:55:71:51:24:86:5b:8a:f2:f9:a4:b0:c7:17:55: 22:57:d4:96:3d:c4:8d:aa:f0:3d:ab:db:49:de:0d: 0f:10:ed:fa:18:c6:8a:02:a2:d0:ae:1b:d5:b2:d4: d2:f1:ba:83:97:e1:40:63:aa:3d:8e:43:17:81:ca: ee:65:46:f8:0a:95:7c:f9:4d:bc:81:fd:40:43:01: ba:ee:90:b4:25:b6:99:50:67:6f:a3:8d:c5:cc:d7: dc:47:b2:d5:df:51:9e:bc:a9:88:41:5e:7f:a5:88: 1e:6e:2d:c7:9c:b2:c8:49:9d:a4:50:3a:c8:e4:bf: df:53:2e:b0:17:82:09:4f:64:3c:62:42:34:aa:5f: d8:f4:2b:97:eb:53:71:80:42:a6:9e:0a:b4:b8:8b: 35:a8:90:68:ad:97:f9:ca:89:e3:ea:21:5d:98:45: e7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8C:B8:8F:F6:98:37:80:BA:79:0D:03:DB:0E:B2:7C:6F:3F:1D:38 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:1b:30:36:7c:ca:c7:02:f0:47:3a:f1:db:02:20:24:d8:f5: b5:f5:f2:3b:c0:9e:cc:a2:41:2b:bb:aa:09:9f:26:82:f0:f6: ac:42:9c:7f:f6:01:13:7a:7a:8b:d2:4d:fe:df:28:83:76:f6: b3:9e:63:0d:53:81:ea:e3:11:1c:69:f4:fb:03:62:3e:ab:84: 3d:f4:ff:76:4c:b2:91:c9:ca:0f:e7:17:76:ec:51:7a:53:f0: 5c:83:92:a6:8a:a7:51:62:75:0c:b5:19:30:0e:bd:31:8d:a3: 88:55:79:a7:d7:88:2c:c4:55:7f:a9:a0:25:f4:b7:47:bf:3e: 36:55:fa:a4:32:82:cc:38:7b:58:14:5b:f7:73:89:25:e5:66: 51:9d:6f:bb:6f:4a:6e:4f:d3:8b:7c:b1:a9:02:89:a3:c2:32: b2:df:af:b2:d0:75:32:83:2c:1b:c4:13:e3:ab:25:b5:38:d3: 35:37:63:82:1f:d6:62:9e:a1:53:5c:8b:f7:19:cc:d0:35:5f: b6:e9:a4:16:41:8e:2a:9f:bb:82:f9:6d:1a:36:be:79:cb:88: 1a:10:69:62:ae:7c:b2:1a:47:06:d8:9b:74:91:aa:e1:07:cd: 40:8e:54:ff:0c:b8:68:b9:46:7a:33:6e:9b:93:1d:a6:48:c1: 17:d1:4d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjYwMTExMDEwNDEyWhcNMjYwMTE4MDEwNDEyWjAYMRYwFAYD VQQDDA02OTYyZjcwYy01YWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CFffGdmpegKNTUFV1unwvHKXaH2lFRxEY4m3XI1BbaJnTfPEM/J9rEZs67R +8tg6B67nlSlebyVOEICcyLyAbdEbrGUGA9vSk3VQNsz8+rATSU+U5X5nJbNVXFR JIZbivL5pLDHF1UiV9SWPcSNqvA9q9tJ3g0PEO36GMaKAqLQrhvVstTS8bqDl+FA Y6o9jkMXgcruZUb4CpV8+U28gf1AQwG67pC0JbaZUGdvo43FzNfcR7LV31GevKmI QV5/pYgebi3HnLLISZ2kUDrI5L/fUy6wF4IJT2Q8YkI0ql/Y9CuX61NxgEKmngq0 uIs1qJBorZf5yonj6iFdmEXnhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeMuI/2 mDeAunkNA9sOsnxvPx04MB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTGzA2fMrHAvBHOvHbAiAk2PW19fI7wJ7MokEru6oJnyaC8PasQpx/ 9gETenqL0k3+3yiDdvaznmMNU4Hq4xEcafT7A2I+q4Q99P92TLKRycoP5xd27FF6 U/Bcg5KmiqdRYnUMtRkwDr0xjaOIVXmn14gsxFV/qaAl9LdHvz42VfqkMoLMOHtY FFv3c4kl5WZRnW+7b0puT9OLfLGpAomjwjKy36+y0HUygywbxBPjqyW1ONM1N2OC H9ZinqFTXIv3GczQNV+26aQWQY4qn7uC+W0aNr55y4gaEGlirnyyGkcG2Jt0karh B81AjlT/DLhouUZ6M26bkx2mSMEX0U2c -----END CERTIFICATE-----Generated at Sun Jan 11 06:46:45 2026 by rpki-client