This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: etdZKG+gUek4A3cfm2Wf7JU1Bf13FMVqCe/6jTeKw8w= Subject key identifier: 2A:F6:DA:D9:35:8C:B1:E5:7E:17:00:7E:50:F6:FE:D9:64:61:92:5D Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 087D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 0854 Signing time: Sat 24 Jan 2026 20:13:41 +0000 Manifest this update: Sat 24 Jan 2026 20:13:41 +0000 Manifest next update: Sat 31 Jan 2026 20:13:41 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: Cpt+9w/Bj2/0e6noacro16kY5eR05jIdA5TdBdAaIjA=) 2: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 3: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: D2PIDDhjMLrJzP//kuZEMaof293KC1FejYs4Z1FlT9g=) 4: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 5: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: BxPajmDdLGfIydsWc2EIPgDs9jrVdPhKlvGIPc4xwYE=) 6: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) 7: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: doeraFCMJ4YY06qP/CyZ7CStviCw2H65v541coUCoQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Jan 24 20:13:41 2026 GMT Not After : Jan 31 20:13:41 2026 GMT Subject: CN=697527f5-d80b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:37:ee:b0:cc:0b:e0:fb:54:9e:e5:6f:b0:87: be:cc:86:0f:38:63:b8:91:df:d6:8b:55:c5:5c:9f: ef:e3:70:34:11:b9:7f:1a:58:a7:97:f1:57:30:2f: 80:20:b3:a5:4f:30:54:73:f4:5d:b0:4b:a8:a5:e9: 90:bb:9c:75:21:8e:14:cc:40:c3:cf:25:97:1f:4a: a0:b5:77:07:97:92:09:51:0b:ef:8f:d9:64:bb:3a: 33:ca:aa:f7:a8:96:09:a5:90:61:d6:cb:86:3d:8c: df:3b:5e:ff:e3:38:6f:c9:78:81:bc:99:dc:99:df: 2c:ad:ba:44:98:e1:1a:58:de:63:bd:8a:50:ee:c3: 22:f4:56:35:f2:f3:d0:74:bb:cd:c3:06:3c:2b:c6: 07:b6:22:aa:8e:bd:b9:bb:88:c2:59:ed:ba:aa:69: 41:9d:16:0f:8a:33:d2:6e:d4:89:e2:c6:6b:4f:68: 57:1f:7d:41:3f:47:63:2f:60:0b:5d:04:dd:01:94: 68:a2:ed:4b:07:ef:25:c7:15:36:8a:ad:c6:55:12: f7:8a:35:d4:57:a2:c4:d1:51:06:88:ec:84:f0:4b: e1:9d:0b:1d:ab:1d:9c:1e:a0:9c:97:3c:46:0f:e2: 03:3e:89:0e:6b:0a:e6:66:2c:9c:b1:6f:ed:49:8b: ea:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F6:DA:D9:35:8C:B1:E5:7E:17:00:7E:50:F6:FE:D9:64:61:92:5D X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:63:cb:d0:d4:75:70:e0:c8:50:18:db:79:7f:56:d2:14:ba: 74:b1:76:82:2f:38:cd:8f:cd:5c:7a:bb:c2:2f:08:8d:82:a8: cd:10:79:a5:4d:87:79:1c:8e:2a:4d:c0:83:e6:ec:10:99:ea: 8d:95:37:a6:36:13:03:8a:3d:40:40:9a:c7:13:30:d1:6b:1a: e5:aa:8c:e6:ef:d8:ba:95:7e:96:72:68:34:57:de:ac:00:6b: 12:dc:2b:2d:a5:5a:1d:19:b9:d8:83:12:0f:cf:62:f1:95:98: 8a:57:8d:49:57:76:f4:fd:af:a7:67:4e:38:87:09:df:72:45: ea:d9:5a:11:70:74:06:88:c4:15:66:e1:ac:d9:d1:b7:98:54: 6c:2a:c5:51:7a:57:d4:52:75:2b:8e:e6:82:a6:9d:b4:5c:48: 1e:26:6c:46:0f:34:71:38:e7:04:25:fb:e8:4b:b5:33:6d:4c: 5a:c3:4c:b2:53:7a:89:aa:39:9e:e1:30:e5:f8:ce:24:25:c2: 5d:19:36:ac:e9:43:03:b7:77:e0:6f:ba:d1:b5:ec:17:5f:00: d3:ea:d8:c2:59:8a:60:8d:7a:4f:a7:cf:f2:3e:e6:36:b3:f9: a3:fc:d6:1e:dc:53:58:fe:04:bb:c9:7d:71:22:30:a0:69:37: 93:5d:67:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwMTI0MjAxMzQxWhcNMjYwMTMxMjAxMzQxWjAYMRYwFAYD VQQDDA02OTc1MjdmNS1kODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDfusMwL4PtUnuVvsIe+zIYPOGO4kd/Wi1XFXJ/v43A0Ebl/Glinl/FXMC+A ILOlTzBUc/RdsEuopemQu5x1IY4UzEDDzyWXH0qgtXcHl5IJUQvvj9lkuzozyqr3 qJYJpZBh1suGPYzfO17/4zhvyXiBvJncmd8srbpEmOEaWN5jvYpQ7sMi9FY18vPQ dLvNwwY8K8YHtiKqjr25u4jCWe26qmlBnRYPijPSbtSJ4sZrT2hXH31BP0djL2AL XQTdAZRoou1LB+8lxxU2iq3GVRL3ijXUV6LE0VEGiOyE8EvhnQsdqx2cHqCclzxG D+IDPokOawrmZiycsW/tSYvqmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCr22tk1 jLHlfhcAflD2/tlkYZJdMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADY8vQ1HVw4MhQGNt5f1bSFLp0sXaCLzjNj81cervCLwiNgqjNEHml TYd5HI4qTcCD5uwQmeqNlTemNhMDij1AQJrHEzDRaxrlqozm79i6lX6Wcmg0V96s AGsS3CstpVodGbnYgxIPz2LxlZiKV41JV3b0/a+nZ044hwnfckXq2VoRcHQGiMQV ZuGs2dG3mFRsKsVRelfUUnUrjuaCpp20XEgeJmxGDzRxOOcEJfvoS7UzbUxaw0yy U3qJqjme4TDl+M4kJcJdGTas6UMDt3fgb7rRtewXXwDT6tjCWYpgjXpPp8/yPuY2 s/mj/NYe3FNY/gS7yX1xIjCgaTeTXWe1 -----END CERTIFICATE-----Generated at Sun Jan 25 10:34:52 2026 by rpki-client