This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: OLXgYuNeGqlwk4ke90Oz+wVsZz3iLs9uwl/2EmvY3P0= Subject key identifier: C6:16:55:FD:7C:40:02:BA:2F:71:80:95:7A:2E:3E:5C:6F:A1:5F:79 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 0847 Signing time: Sat 24 Jan 2026 20:08:51 +0000 Manifest this update: Sat 24 Jan 2026 20:08:51 +0000 Manifest next update: Sat 31 Jan 2026 20:08:51 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: fUYwS/9ZmyC+/ffsDka282Prj22HRkznTN+YBfwfrWQ=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: N5DJ/lWFfI48sdx6BvFVpFHkaPP8kCCAOxZfmLMaFUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Jan 24 20:08:51 2026 GMT Not After : Jan 31 20:08:51 2026 GMT Subject: CN=697526d3-fdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2a:b4:7c:d2:d9:cb:df:22:2c:e2:19:6d:8d: fe:d4:c8:0f:3d:4f:bb:2a:f1:c8:4f:99:4c:29:f9: 58:35:81:42:3f:c9:af:c6:d1:d6:2c:d1:81:fe:46: c4:7b:e2:9e:b7:be:d1:92:65:18:fa:b3:28:f9:45: 57:e0:e4:9e:78:f9:6b:57:44:a2:d0:42:a3:ba:1d: dc:74:d4:02:ec:26:1d:63:76:e6:92:0c:6e:75:48: ec:d9:2c:ec:a5:7e:47:5c:2a:22:57:4e:db:ee:bd: af:31:fd:26:d3:ca:93:ee:a5:94:b6:ab:0e:ad:7f: f1:0c:6b:46:29:f3:95:54:84:d5:f3:64:03:08:21: 27:5f:b8:80:ca:f6:ea:d6:26:6f:3f:55:d2:02:13: 2a:0b:e8:66:da:8c:17:07:16:bd:5e:bd:2b:04:dc: fe:01:d3:5d:d5:76:48:e5:b9:c5:6a:33:97:aa:d4: 6d:fc:6b:ee:79:19:08:1c:6a:87:36:f8:15:9a:ee: 27:be:27:5d:36:a2:f7:b6:d9:72:24:b1:6d:14:ed: b3:12:a4:4c:42:07:2d:66:d9:da:4f:29:a8:6c:5d: f3:a0:98:3f:b7:68:ec:1f:63:a5:a8:00:68:ee:e5: 76:51:87:ae:3b:5d:ec:23:a9:ed:5c:8c:ff:b7:fe: 69:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:16:55:FD:7C:40:02:BA:2F:71:80:95:7A:2E:3E:5C:6F:A1:5F:79 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:68:94:52:cc:fa:a3:be:6d:1f:8a:d6:55:1c:82:03:09:7b: c2:cd:fb:89:fd:b8:82:ae:c3:cf:ba:b9:de:c3:25:c0:7d:e4: 93:36:92:c3:a2:05:b5:d5:14:b9:7f:f3:96:7d:09:1f:43:f5: 55:fd:01:b7:55:b8:cd:26:c4:24:42:67:3b:54:e1:25:45:72: 26:c1:8c:23:05:df:34:3a:06:24:82:62:cb:d7:9f:5b:0c:44: c8:ed:7b:84:ec:32:1a:56:b5:97:7c:95:20:2a:28:44:39:f0: 90:14:c8:6d:2d:d1:81:24:72:36:f2:fc:c8:3e:85:19:6b:75: 8c:72:02:60:f7:ba:43:2e:ed:85:ad:fe:cc:da:c0:00:91:40: 40:99:ed:c5:ee:2e:b8:d2:18:af:58:f3:d8:19:d8:64:d0:fa: 82:16:bb:2b:ec:a0:20:1e:bc:13:ed:1c:b1:a6:f2:52:50:f2: 89:54:a6:01:04:04:9f:99:fc:0d:a2:a5:b3:86:b7:12:e9:69: 00:c2:c8:ae:72:5e:14:57:23:57:77:35:b2:8e:4e:f9:f9:e4: 44:36:5a:72:75:86:0a:69:a2:f4:02:02:00:8e:e1:6c:9f:b5: 89:96:58:96:b8:7a:d4:bb:4d:03:2e:2b:7c:7f:53:9d:3e:f2: dd:5a:5b:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjYwMTI0MjAwODUxWhcNMjYwMTMxMjAwODUxWjAYMRYwFAYD VQQDDA02OTc1MjZkMy1mZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCq0fNLZy98iLOIZbY3+1MgPPU+7KvHIT5lMKflYNYFCP8mvxtHWLNGB/kbE e+Ket77RkmUY+rMo+UVX4OSeePlrV0Si0EKjuh3cdNQC7CYdY3bmkgxudUjs2Szs pX5HXCoiV07b7r2vMf0m08qT7qWUtqsOrX/xDGtGKfOVVITV82QDCCEnX7iAyvbq 1iZvP1XSAhMqC+hm2owXBxa9Xr0rBNz+AdNd1XZI5bnFajOXqtRt/GvueRkIHGqH NvgVmu4nviddNqL3ttlyJLFtFO2zEqRMQgctZtnaTymobF3zoJg/t2jsH2OlqABo 7uV2UYeuO13sI6ntXIz/t/5pSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYWVf18 QAK6L3GAlXouPlxvoV95MB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHaJRSzPqjvm0fitZVHIIDCXvCzfuJ/biCrsPPurnewyXAfeSTNpLD ogW11RS5f/OWfQkfQ/VV/QG3VbjNJsQkQmc7VOElRXImwYwjBd80OgYkgmLL159b DETI7XuE7DIaVrWXfJUgKihEOfCQFMhtLdGBJHI28vzIPoUZa3WMcgJg97pDLu2F rf7M2sAAkUBAme3F7i640hivWPPYGdhk0PqCFrsr7KAgHrwT7RyxpvJSUPKJVKYB BASfmfwNoqWzhrcS6WkAwsiucl4UVyNXdzWyjk75+eRENlpydYYKaaL0AgIAjuFs n7WJlliWuHrUu00DLit8f1OdPvLdWltr -----END CERTIFICATE-----Generated at Mon Jan 26 00:48:53 2026 by rpki-client