This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: HN4ZsiNMfjgrZ/VzPxb5doJnxtofhduoFccw0IM0lrU= Subject key identifier: 0D:89:08:89:8A:F1:34:56:97:E8:F4:58:43:DE:80:CF:0B:1C:6D:A5 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 119E Signing time: Thu 08 Jan 2026 16:56:35 +0000 Manifest this update: Thu 08 Jan 2026 16:56:35 +0000 Manifest next update: Thu 15 Jan 2026 16:56:35 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: 595fuF2nuMdanXTuNF5GDN44V5/Whahm7f/a6/ZnZMQ=) 2: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: X6YwhVSJsRk4vRctAp4yh1iloPqdQuAk/cq6rLQ/5Io=) 3: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: 0aF9iAN+3RVH4J1O6kdqQLay7pM2xBWN/Y0/JqEVjB4=) 4: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: I1Ooxb/QxZtnwvTSGkb227BhEGDqKjHAGb9PCGADRjg=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: aQ6IFtryhMAcftZ8/U9VLVpz3iJ+2Www/ebnR7Mk7tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 16:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4545 (0x11c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Jan 8 16:56:35 2026 GMT Not After : Jan 15 16:56:35 2026 GMT Subject: CN=695fe1c3-a05b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8b:51:15:c8:66:08:0d:ec:4a:83:4c:e5:38: 73:21:4e:ce:48:a2:78:4d:32:fd:9b:d3:70:6c:dc: 06:44:dd:2d:a5:e9:bb:b7:ee:b1:c0:23:7e:90:64: 2f:b2:57:26:22:d1:da:dc:76:06:02:e1:f8:dc:24: 91:b2:4d:65:d4:06:5a:39:06:2e:29:0e:63:5b:fc: 57:a9:95:d4:b1:c7:7e:bd:3f:10:10:1d:40:69:a6: ce:69:95:55:aa:28:20:2a:65:49:27:8f:22:9d:1a: 44:54:9b:bc:3f:7b:03:b3:95:66:4a:3a:26:6a:4c: 7e:d4:05:9a:2e:38:51:c9:d6:24:fc:70:b2:ad:a5: 48:57:f4:95:8c:5c:61:13:5b:d0:c0:13:22:01:ce: 3f:be:a5:2c:f3:77:fd:cf:43:cb:dd:2f:82:9f:50: 42:f5:f4:cd:92:68:fb:d5:3c:5c:59:69:2b:04:cc: 3d:8d:37:93:bc:19:6d:42:4d:26:68:be:86:f4:27: 1b:b5:6e:d9:d3:f2:f7:f7:4b:d1:6c:e7:0a:e5:71: c0:ee:2a:2c:7a:22:49:8b:07:94:78:1e:d7:b9:aa: 2e:7f:64:2c:99:ca:d7:47:c2:d3:b6:b4:f5:27:19: 7b:12:5b:c7:f5:c5:48:d4:37:83:d1:8e:c7:c2:70: c9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:89:08:89:8A:F1:34:56:97:E8:F4:58:43:DE:80:CF:0B:1C:6D:A5 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:ec:ac:5d:98:35:1d:8c:c2:33:ad:56:68:2b:af:e3:21:72: de:0a:f7:be:67:93:aa:db:ff:ae:5b:85:f7:75:ea:64:b6:f0: a2:12:61:5e:d9:79:82:22:95:63:28:7b:e1:b2:08:b9:ad:c0: a1:1d:c2:e1:18:9e:86:3d:ba:43:cd:75:92:b5:e3:6f:45:8d: 75:12:83:d1:f1:9e:78:32:f2:e3:cf:e0:48:ca:1a:18:74:e7: 92:63:f8:1f:be:27:21:ff:e6:25:27:65:20:08:b0:71:4e:c6: 52:3f:c6:d0:35:a6:6f:fc:e5:59:d5:7e:f1:ae:4d:c6:1b:df: 32:4b:c1:5f:1e:26:00:f0:8e:6c:b2:0f:f3:f5:29:50:13:07: 27:87:a6:2e:48:40:83:c8:fd:5c:a8:de:1c:77:27:44:56:1c: ae:c7:95:d9:3c:74:bf:e8:98:d1:80:71:4a:9d:7f:e8:53:08: 04:ee:d1:d4:26:36:cc:f0:9d:af:36:f0:10:84:a4:b6:de:1f: 57:ec:d4:6b:c0:e3:1c:7d:61:82:b9:e2:b3:d4:35:67:ad:fd: 99:1d:3d:23:43:1c:9d:68:99:6a:7b:6c:0d:24:d3:76:b8:38: 49:aa:0c:dd:45:57:96:f9:06:5f:32:86:a6:ac:1c:01:b6:56: b0:d8:b9:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjYwMTA4MTY1NjM1WhcNMjYwMTE1MTY1NjM1WjAYMRYwFAYD VQQDDA02OTVmZTFjMy1hMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYtRFchmCA3sSoNM5ThzIU7OSKJ4TTL9m9NwbNwGRN0tpem7t+6xwCN+kGQv slcmItHa3HYGAuH43CSRsk1l1AZaOQYuKQ5jW/xXqZXUscd+vT8QEB1AaabOaZVV qiggKmVJJ48inRpEVJu8P3sDs5VmSjomakx+1AWaLjhRydYk/HCyraVIV/SVjFxh E1vQwBMiAc4/vqUs83f9z0PL3S+Cn1BC9fTNkmj71TxcWWkrBMw9jTeTvBltQk0m aL6G9CcbtW7Z0/L390vRbOcK5XHA7ioseiJJiweUeB7Xuaouf2QsmcrXR8LTtrT1 Jxl7ElvH9cVI1DeD0Y7HwnDJ0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2JCImK 8TRWl+j0WEPegM8LHG2lMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDX7KxdmDUdjMIzrVZoK6/jIXLeCve+Z5Oq2/+uW4X3depktvCiEmFe 2XmCIpVjKHvhsgi5rcChHcLhGJ6GPbpDzXWSteNvRY11EoPR8Z54MvLjz+BIyhoY dOeSY/gfvich/+YlJ2UgCLBxTsZSP8bQNaZv/OVZ1X7xrk3GG98yS8FfHiYA8I5s sg/z9SlQEwcnh6YuSECDyP1cqN4cdydEVhyux5XZPHS/6JjRgHFKnX/oUwgE7tHU JjbM8J2vNvAQhKS23h9X7NRrwOMcfWGCueKz1DVnrf2ZHT0jQxydaJlqe2wNJNN2 uDhJqgzdRVeW+QZfMoamrBwBtlaw2LmJ -----END CERTIFICATE-----Generated at Sat Jan 10 00:29:39 2026 by rpki-client