This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: 8JUgwTph3WIJD29RDD9BqkNdG59zJrx9/v922gqewR8= Subject key identifier: 5F:D2:40:17:D9:32:CA:BB:01:2B:0F:7B:A2:D2:F7:CF:A8:4C:86:1D Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 08C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 2088 Signing time: Sat 24 Jan 2026 16:18:19 +0000 Manifest this update: Sat 24 Jan 2026 16:18:18 +0000 Manifest next update: Sat 31 Jan 2026 16:18:18 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: YMi+1yltH63Wb+UHRGlJQOadj4WyYwBmt9UkABIMTFs=) 2: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: XzzXA6m5Sfbs0sLhTPVckgYHL3ZiipFrwRLSzgKZ33U=) 3: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 8Qo70bxIag9X+h+p9rkvEiGVmiiK66r021Qwo1g6tkk=) 4: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: hgO4m8NBFvCWTk/xZ7lTPgH3uo1aBC3KP8OdcPsjkbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Jan 24 16:18:18 2026 GMT Not After : Jan 31 16:18:18 2026 GMT Subject: CN=6974f0cb-1f6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e6:fa:dc:4b:25:2d:ab:a2:ec:27:5d:d6:15: 18:95:75:14:b4:be:1f:ef:92:3e:ad:71:0e:54:d5: 0b:60:b6:26:dd:bc:83:ef:54:6f:3c:a3:15:93:1d: e5:fa:7d:47:c4:c2:14:50:8a:fa:60:fa:7e:9b:28: a1:21:cd:36:d6:cd:14:de:3f:5a:da:b3:3a:bf:c3: 7c:45:f0:5f:dd:83:1d:2b:e3:f7:c1:81:d4:84:df: 9b:ac:b4:d9:26:7c:42:02:3a:64:0d:ac:d0:5a:64: 2e:ad:d4:84:05:fb:3f:3f:3c:bf:a5:e5:1e:cf:d2: c5:d5:aa:42:05:c2:74:71:30:d2:b1:d5:fd:a9:15: 18:42:d4:e0:11:d7:25:1c:33:fe:0f:7b:aa:6e:9f: 6b:86:7e:5b:7b:77:69:f0:2a:d8:7b:65:0d:b5:42: c9:60:2b:31:ff:11:46:cd:65:5a:a9:04:28:4a:42: 95:90:fd:77:c9:e0:8e:02:49:c1:f4:06:05:20:76: a4:3b:fd:a7:5e:08:30:99:7c:8e:95:74:1c:44:48: da:83:e9:3d:3f:6a:9c:e5:07:de:56:3d:01:f1:39: 92:f8:a4:cd:d4:11:97:e4:76:f6:2c:44:ce:9d:5c: fc:2e:1c:1d:81:37:90:b5:f9:1b:95:11:82:23:8a: 03:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D2:40:17:D9:32:CA:BB:01:2B:0F:7B:A2:D2:F7:CF:A8:4C:86:1D X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:f9:76:15:0d:8a:bc:ce:e8:da:0a:a7:9f:aa:4f:d4:65:a0: a2:b9:47:8a:22:96:da:f9:38:b6:6d:70:c1:c2:99:b6:70:64: 8d:f7:a2:52:5c:f3:29:3e:6e:36:13:e6:b5:10:f1:4a:56:01: e5:b2:1f:8f:6f:ef:d8:5f:fd:c2:d8:89:a1:de:d3:ab:b3:30: e5:41:6d:e3:76:52:22:4f:ab:ff:0b:50:b4:08:a8:24:55:56: 8f:64:56:19:53:bd:39:fa:b5:c4:31:b9:05:75:32:ec:51:55: 35:bb:e5:fa:41:d7:81:a3:1d:01:a7:16:e6:cb:45:59:dd:aa: 1e:43:03:6e:13:f1:75:65:db:eb:8e:ef:f0:e0:f9:2b:b0:ae: 33:f9:aa:eb:ed:06:86:5c:52:0e:4c:ef:06:69:c0:44:09:99: 92:8b:49:10:62:96:57:56:13:81:fe:bc:3f:10:23:1d:67:c7: 6c:3a:48:79:88:a9:f8:33:ac:2a:b3:0d:26:6c:56:10:f1:45: 34:d5:d3:93:f7:e9:a8:7e:34:d1:ee:5e:14:50:bc:45:eb:e4: 57:7b:91:73:2e:8e:b2:da:47:95:b1:29:5d:21:d2:27:d8:de: 16:3b:45:0e:e5:97:43:f9:b1:55:d2:ea:cd:4c:07:6f:7a:6d: b3:47:65:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjYwMTI0MTYxODE4WhcNMjYwMTMxMTYxODE4WjAYMRYwFAYD VQQDDA02OTc0ZjBjYi0xZjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeb63EslLaui7Cdd1hUYlXUUtL4f75I+rXEOVNULYLYm3byD71RvPKMVkx3l +n1HxMIUUIr6YPp+myihIc021s0U3j9a2rM6v8N8RfBf3YMdK+P3wYHUhN+brLTZ JnxCAjpkDazQWmQurdSEBfs/Pzy/peUez9LF1apCBcJ0cTDSsdX9qRUYQtTgEdcl HDP+D3uqbp9rhn5be3dp8CrYe2UNtULJYCsx/xFGzWVaqQQoSkKVkP13yeCOAknB 9AYFIHakO/2nXggwmXyOlXQcREjag+k9P2qc5QfeVj0B8TmS+KTN1BGX5Hb2LETO nVz8LhwdgTeQtfkblRGCI4oDpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/SQBfZ Msq7ASsPe6LS98+oTIYdMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm+XYVDYq8zujaCqefqk/UZaCiuUeKIpba+Ti2bXDBwpm2cGSN96JS XPMpPm42E+a1EPFKVgHlsh+Pb+/YX/3C2Imh3tOrszDlQW3jdlIiT6v/C1C0CKgk VVaPZFYZU705+rXEMbkFdTLsUVU1u+X6QdeBox0Bpxbmy0VZ3aoeQwNuE/F1Zdvr ju/w4PkrsK4z+arr7QaGXFIOTO8GacBECZmSi0kQYpZXVhOB/rw/ECMdZ8dsOkh5 iKn4M6wqsw0mbFYQ8UU01dOT9+mofjTR7l4UULxF6+RXe5FzLo6y2keVsSldIdIn 2N4WO0UO5ZdD+bFV0urNTAdvem2zR2Wv -----END CERTIFICATE-----Generated at Sun Jan 25 11:33:42 2026 by rpki-client