This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: CGOXUM1EWNg7tzMyVLns+82Z/3UZtgTacroVyS2YyCg= Subject key identifier: EF:7F:6F:DE:A7:E5:9D:05:E5:87:DA:0A:DF:AC:9B:D7:4D:A6:99:5E Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 05BC Signing time: Sat 24 Jan 2026 22:23:56 +0000 Manifest this update: Sat 24 Jan 2026 22:23:55 +0000 Manifest next update: Sat 31 Jan 2026 22:23:55 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: EmeVRrIPOdrf8/YfAPk9CevWcxa01vbJ600OAGnl2Ec=) 2: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: 9Xivq6s93mksbhu2p/H/z3gtS9/XmhNf3IMjTVy5pWY=) 3: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: KRiDfnMy2+pwD3zrIBOiDvY7T9O/jHD6MSYbIKfk0AY=) 4: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: cMsOBL01lB8MhNIvPe7EZWZhW2/NqYoBIP9IcsqTKSI=) 5: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: ToNYuKjsmNUrDjM3EopYow2kRZNQw6nwL7h9Ilwq2wI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Jan 24 22:23:55 2026 GMT Not After : Jan 31 22:23:55 2026 GMT Subject: CN=6975467c-d957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b4:c5:91:43:f4:ce:16:fc:89:82:17:0d:50: f1:5b:59:f5:95:e2:0f:9e:f1:e6:c8:d8:7d:a0:95: 95:e7:d5:4f:ec:eb:f4:c6:56:e2:67:c1:84:86:c1: b1:f4:ca:6b:6a:71:42:1a:d5:da:eb:fe:64:c1:cf: d1:d1:8a:c6:c1:02:d3:41:93:88:9e:83:53:6f:25: 4a:82:b2:44:46:a6:86:e8:76:a0:7b:5f:dd:81:76: 15:db:17:5f:40:13:bc:28:2b:6f:9b:42:99:02:66: 80:de:7d:99:70:0f:bd:49:b7:f9:aa:28:f3:86:fe: f7:62:0f:5c:32:3a:eb:92:1b:d6:41:56:3f:98:5c: f2:cf:a4:55:75:ac:ec:b8:a7:2b:78:a2:13:a9:a9: ba:1f:d4:dc:bd:88:1e:d3:e7:e8:1a:84:e0:f0:ca: 29:42:69:da:cc:1e:a1:f3:45:dd:91:1d:63:88:7b: f1:ec:48:ad:d6:c1:24:f4:cb:26:b2:3d:17:1d:b4: 0b:c4:3a:9c:d6:a4:18:d9:a2:50:9f:29:bf:8e:46: f5:f8:75:82:38:11:5d:c5:32:7c:2b:0e:b9:85:28: 0d:00:d7:f3:19:48:41:a0:b0:38:bc:6e:33:60:f4: 92:99:b1:c6:14:12:66:5e:1f:3b:76:e2:07:d2:aa: db:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:7F:6F:DE:A7:E5:9D:05:E5:87:DA:0A:DF:AC:9B:D7:4D:A6:99:5E X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:bc:b8:a6:67:2a:9a:10:c7:1c:e9:a4:01:e5:28:2a:42:1c: 19:f0:44:0b:e8:a5:c8:07:5e:aa:0e:d4:e4:a9:30:aa:63:aa: 57:3c:13:9a:cd:42:51:a9:28:0a:b8:d8:1b:e1:15:d5:ab:b0: 19:75:00:5a:81:ca:4d:a3:25:56:5a:a7:a7:88:88:46:38:bc: 4a:39:f5:36:b0:e8:79:b5:96:4e:df:df:cb:92:d1:0a:f5:42: 92:09:a6:47:da:37:ed:9d:29:c3:43:4f:b6:ba:ba:c1:c2:02: f6:70:88:ce:71:3a:d6:b9:23:73:13:8d:3e:63:d4:56:8c:85: 4e:09:d8:4c:20:f8:b4:56:fd:a1:0a:b6:3d:1e:4f:ab:c0:8c: 31:4c:8d:a3:f0:c4:6a:81:1e:95:39:23:e9:7a:a0:ec:a4:51: de:d1:84:a4:8c:d8:2f:26:4b:00:55:c4:03:8e:b9:52:ce:c7: 2e:a0:6e:28:63:c1:0e:ef:6b:60:7d:2f:64:0c:52:81:92:56: c4:a0:64:05:0c:92:07:1c:67:46:9b:05:4d:df:e3:3f:f9:75: e4:c3:48:f2:b1:f4:7a:a1:9e:fa:42:51:ce:83:e5:f5:4c:35: 8d:01:85:dc:d2:15:c9:a6:73:f6:a2:2d:06:74:b6:38:f5:9f: 40:75:05:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjYwMTI0MjIyMzU1WhcNMjYwMTMxMjIyMzU1WjAYMRYwFAYD VQQDDA02OTc1NDY3Yy1kOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrTFkUP0zhb8iYIXDVDxW1n1leIPnvHmyNh9oJWV59VP7Ov0xlbiZ8GEhsGx 9MpranFCGtXa6/5kwc/R0YrGwQLTQZOInoNTbyVKgrJERqaG6Hage1/dgXYV2xdf QBO8KCtvm0KZAmaA3n2ZcA+9Sbf5qijzhv73Yg9cMjrrkhvWQVY/mFzyz6RVdazs uKcreKITqam6H9TcvYge0+foGoTg8MopQmnazB6h80XdkR1jiHvx7Eit1sEk9Msm sj0XHbQLxDqc1qQY2aJQnym/jkb1+HWCOBFdxTJ8Kw65hSgNANfzGUhBoLA4vG4z YPSSmbHGFBJmXh87duIH0qrbPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9/b96n 5Z0F5YfaCt+sm9dNppleMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArvLimZyqaEMcc6aQB5SgqQhwZ8EQL6KXIB16qDtTkqTCqY6pXPBOa zUJRqSgKuNgb4RXVq7AZdQBagcpNoyVWWqeniIhGOLxKOfU2sOh5tZZO39/LktEK 9UKSCaZH2jftnSnDQ0+2urrBwgL2cIjOcTrWuSNzE40+Y9RWjIVOCdhMIPi0Vv2h CrY9Hk+rwIwxTI2j8MRqgR6VOSPpeqDspFHe0YSkjNgvJksAVcQDjrlSzscuoG4o Y8EO72tgfS9kDFKBklbEoGQFDJIHHGdGmwVN3+M/+XXkw0jysfR6oZ76QlHOg+X1 TDWNAYXc0hXJpnP2oi0GdLY49Z9AdQX9 -----END CERTIFICATE-----Generated at Sun Jan 25 08:59:25 2026 by rpki-client