This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft File: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json) Hash identifier: /R/PC/xW6jf0XHnj9rS85FTXPZtLfM5mavYqF0k4BfE= Subject key identifier: F4:DD:FE:01:B7:24:1E:7E:26:0A:46:10:AE:AE:5E:71:21:32:FE:27 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 084A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft Manifest number: 082F Signing time: Sat 24 Jan 2026 20:21:37 +0000 Manifest this update: Sat 24 Jan 2026 20:21:36 +0000 Manifest next update: Sat 31 Jan 2026 20:21:36 +0000 Files and hashes: 1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: KlZDKIP3wvaJHIdqh5e5oGP5PZSiOOOYibJ8QaHWvtE=) 2: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (hash: soxPBotfeGZJQtYFANg/AIsqymj558YBgTRf2OttWoQ=) 3: B0425744D7E211ECBD1D447FC4F9AE02.roa (hash: FmrrPxT3AQS1QsODrOl0Mag5fJkdo8yw7npJe5EvI48=) 4: 1DB0529C7CA711F0A52C5966C4F9AE02.roa (hash: XaSGJdVmQFwnCd+b3KdpqRusxazGj+qlh/KndRTEPfA=) 5: 1069D50EB54B11F092E79246C4F9AE02.roa (hash: oPyKzL4O0xlhZZ92P0pzMtzovY+UYDC46Jkmm8P2idY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2122 (0x84a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Jan 24 20:21:36 2026 GMT Not After : Jan 31 20:21:36 2026 GMT Subject: CN=697529d1-eaf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b4:6a:8f:3a:78:bc:00:3d:6b:2d:1c:91:b9: 4c:ac:8d:c2:c2:01:ba:de:cc:ed:09:26:6b:e5:65: 5b:84:fd:5b:2c:ff:81:ac:be:a9:52:f2:56:e9:a4: f1:73:0f:27:30:c0:78:67:85:f1:ee:09:2b:84:80: 6a:ac:06:d9:3e:8e:9c:18:87:cb:0b:63:1a:1a:31: e7:4c:e4:0b:97:f4:0f:04:ad:cd:00:e4:96:cf:f3: 0c:98:a4:72:98:50:6e:b5:cf:90:f5:03:17:c1:5c: ce:13:81:ff:58:6e:66:3f:01:db:3a:21:fd:c6:62: b0:e5:34:33:8a:ce:99:fb:5b:2b:6e:c3:5a:67:72: 90:73:65:fd:3d:be:db:8b:7c:c2:1f:76:ce:ad:70: 10:2b:3d:cf:04:fa:99:6d:fd:8a:96:83:4a:b6:a0: 31:72:4f:fc:a0:ec:84:3e:fb:b4:5d:77:7d:0b:84: 28:74:fa:46:51:ea:6f:c9:f1:f0:06:62:0e:49:95: e4:a8:27:7b:ec:5c:33:b5:c5:71:23:a8:71:a4:04: 19:87:d6:4d:10:6f:85:e7:90:6e:71:8c:88:2d:52: 61:70:8a:a4:42:a3:79:89:d1:ea:dc:f5:f8:7f:93: c3:24:45:f4:db:d9:8e:e4:8c:c2:62:f8:ed:21:bf: aa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DD:FE:01:B7:24:1E:7E:26:0A:46:10:AE:AE:5E:71:21:32:FE:27 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:61:02:dc:4b:6b:09:0a:8f:0f:f8:98:c6:92:9c:2a:5f:83: 17:a3:32:d9:ac:35:c9:e9:3c:9a:b1:5f:1f:a4:66:d7:2f:ac: 3e:21:d5:22:15:ff:1f:c9:41:e5:5d:49:d5:f9:58:11:de:c0: 35:83:60:2a:40:df:ed:71:c9:6d:9d:ed:a6:8a:b3:71:66:74: 53:c1:20:b0:b0:9c:69:cc:9b:cf:6f:ef:fa:c2:e5:e2:5a:d1: 26:f4:8a:62:f3:70:de:4c:88:7b:8a:7f:fd:a3:99:16:af:77: d5:ae:ae:be:88:d2:e4:04:6f:f6:56:b2:70:42:b8:73:68:99: 32:bb:e9:22:7a:62:92:22:aa:e7:71:5d:d0:b1:61:ae:63:48: 3f:16:ba:5b:8e:eb:77:a6:f2:67:98:ff:be:5e:fd:95:aa:3b: 7e:82:2b:7f:bd:77:1f:3d:58:82:b1:ae:93:1e:53:73:15:05: bf:2d:47:75:9f:e9:3f:82:f5:46:bf:7e:53:89:2b:e9:c7:5c: 51:63:18:cc:96:75:7b:4b:59:95:13:94:dc:57:6f:dd:17:74: 68:b6:ce:a7:16:e7:1f:d2:ec:d7:6f:ce:9f:b3:9b:e7:41:4e: b9:e5:4b:76:44:83:d2:f4:e0:c4:53:1a:c5:69:46:94:73:92: 6a:25:02:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjYwMTI0MjAyMTM2WhcNMjYwMTMxMjAyMTM2WjAYMRYwFAYD VQQDDA02OTc1MjlkMS1lYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbRqjzp4vAA9ay0ckblMrI3CwgG63sztCSZr5WVbhP1bLP+BrL6pUvJW6aTx cw8nMMB4Z4Xx7gkrhIBqrAbZPo6cGIfLC2MaGjHnTOQLl/QPBK3NAOSWz/MMmKRy mFButc+Q9QMXwVzOE4H/WG5mPwHbOiH9xmKw5TQzis6Z+1srbsNaZ3KQc2X9Pb7b i3zCH3bOrXAQKz3PBPqZbf2KloNKtqAxck/8oOyEPvu0XXd9C4QodPpGUepvyfHw BmIOSZXkqCd77FwztcVxI6hxpAQZh9ZNEG+F55BucYyILVJhcIqkQqN5idHq3PX4 f5PDJEX029mO5IzCYvjtIb+qawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTd/gG3 JB5+JgpGEK6uXnEhMv4nMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDFFOS9EQUQ4RkI4MDA3OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2 ZnN2Z0tUVnlYQ1hOSnIxcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcYQLcS2sJCo8P+JjGkpwqX4MXozLZrDXJ6TyasV8fpGbXL6w+IdUi Ff8fyUHlXUnV+VgR3sA1g2AqQN/tccltne2mirNxZnRTwSCwsJxpzJvPb+/6wuXi WtEm9Ipi83DeTIh7in/9o5kWr3fVrq6+iNLkBG/2VrJwQrhzaJkyu+kiemKSIqrn cV3QsWGuY0g/Frpbjut3pvJnmP++Xv2Vqjt+git/vXcfPViCsa6THlNzFQW/LUd1 n+k/gvVGv35TiSvpx1xRYxjMlnV7S1mVE5TcV2/dF3Rots6nFucf0uzXb86fs5vn QU655Ut2RIPS9ODEUxrFaUaUc5JqJQJj -----END CERTIFICATE-----Generated at Sun Jan 25 03:02:48 2026 by rpki-client