This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: 6+eWLWombWzp3cUobQ3Xm3BNU571du3gnyVRXiIaFpc= Subject key identifier: 26:E4:84:3E:67:D6:00:A7:AB:8F:32:AF:54:3E:93:5A:C8:C7:47:12 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 090E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08D6 Signing time: Sat 24 Jan 2026 19:53:01 +0000 Manifest this update: Sat 24 Jan 2026 19:53:00 +0000 Manifest next update: Sat 31 Jan 2026 19:53:00 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: 4DRaZbQZWn7rebCtSmP1XQC/gnxB7QSTYB3rsEvQZEQ=) 2: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: KLxFMFuExsnPKk7ehnMGot9TEXcnIXuDGRsDC/SqYdc=) 3: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: g2Es0FtiWlI2wUZjhcKolcXm06CxccFnLzcDd+5e5mY=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: lohr8A0pJoxU5YjZ4Iv+RM2sF95pgDEhCh+aZEFVj7A=) 5: 4EF79184489411ED86987260C4F9AE02.roa (hash: iQNiRJndJ2EDSy4xdUwWuCF3frGlBaK+w6YY3/xBdJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2318 (0x90e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Jan 24 19:53:00 2026 GMT Not After : Jan 31 19:53:00 2026 GMT Subject: CN=6975231d-be23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3b:94:9b:0d:63:da:15:cd:d9:17:c5:85:6f: 35:d8:ee:ff:94:53:d4:7d:37:ab:a8:e8:ad:ae:40: 12:e6:e5:5f:c6:49:05:3b:b6:e0:ea:dc:58:06:5a: e4:a2:18:84:e0:f3:fb:ba:df:59:c9:99:d4:52:92: 3c:15:7b:f1:0e:08:e7:c2:5c:f8:b2:38:18:10:34: 17:04:24:32:31:c0:b2:22:0c:f1:34:03:61:f4:3d: cf:77:92:67:d7:81:b6:74:b8:b2:08:af:dc:b2:6d: 17:f3:e8:80:94:d6:a9:40:18:7c:54:2b:e7:aa:48: d5:fc:ef:32:05:22:f9:89:8a:59:09:76:0f:61:fa: 4d:ea:0a:19:31:32:53:61:14:67:14:d2:fd:f2:b4: eb:d1:e3:e3:a3:a3:f3:25:42:81:0a:04:a5:d2:40: 76:f9:1d:0e:6b:35:9a:ba:b0:49:60:4d:d4:02:59: 39:7b:19:00:f3:ba:24:4e:0f:e0:d5:ad:3c:2d:a9: 85:08:a8:ee:97:96:bd:70:70:30:53:32:08:1f:2f: 41:71:2f:8f:96:9a:bf:46:51:11:7e:30:5b:e4:c8: 8b:2d:00:50:90:72:91:bb:28:f6:18:18:e5:16:9e: 91:3d:b7:51:8b:99:fd:a7:71:f1:92:57:b7:b3:61: e8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E4:84:3E:67:D6:00:A7:AB:8F:32:AF:54:3E:93:5A:C8:C7:47:12 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:23:80:c1:0e:fa:23:78:c8:e2:f4:09:f4:25:8e:ce:58:c9: 97:a6:a2:db:a4:1a:9c:46:ee:40:3f:d5:03:eb:ac:cd:4c:66: 2a:a7:b5:f3:64:e2:dd:b2:c5:19:a4:4e:e5:bf:93:9c:c3:31: 54:48:44:f8:a9:52:30:69:a3:6c:be:db:ae:4d:4b:96:36:cf: 2c:82:e5:b4:41:83:89:c7:94:b9:39:53:d7:4a:2d:ce:99:3c: ff:4d:0f:95:c0:ad:60:a5:62:44:77:cb:c0:ae:0f:2c:dc:4d: c6:ef:aa:b9:f0:30:bd:31:be:79:cb:21:13:a6:44:21:71:1b: 40:9d:fa:3c:1a:29:e1:d5:f9:65:ce:54:d2:2b:26:34:6e:3f: e3:25:0c:be:a5:e5:9c:72:d9:ca:56:db:b6:95:ff:5f:bf:98: f3:58:53:16:bc:ca:22:81:ac:e5:dd:44:70:fc:ea:21:34:61: 1d:3b:b4:b8:65:c3:36:22:b0:cb:a6:76:32:de:31:8a:ee:9f: b7:84:3f:04:7b:2a:da:28:d3:ed:48:fb:83:52:8c:44:d0:7f: 7e:1c:bb:44:cf:58:f6:4b:e0:e6:ec:7c:10:e5:bd:4f:ef:f5: 91:58:2a:78:42:40:a1:a5:01:83:68:e9:1a:fd:42:04:c3:c7: c8:8c:0a:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjYwMTI0MTk1MzAwWhcNMjYwMTMxMTk1MzAwWjAYMRYwFAYD VQQDDA02OTc1MjMxZC1iZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zuUmw1j2hXN2RfFhW812O7/lFPUfTerqOitrkAS5uVfxkkFO7bg6txYBlrk ohiE4PP7ut9ZyZnUUpI8FXvxDgjnwlz4sjgYEDQXBCQyMcCyIgzxNANh9D3Pd5Jn 14G2dLiyCK/csm0X8+iAlNapQBh8VCvnqkjV/O8yBSL5iYpZCXYPYfpN6goZMTJT YRRnFNL98rTr0ePjo6PzJUKBCgSl0kB2+R0OazWaurBJYE3UAlk5exkA87okTg/g 1a08LamFCKjul5a9cHAwUzIIHy9BcS+Plpq/RlERfjBb5MiLLQBQkHKRuyj2GBjl Fp6RPbdRi5n9p3Hxkle3s2HoVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbkhD5n 1gCnq48yr1Q+k1rIx0cSMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQI4DBDvojeMji9An0JY7OWMmXpqLbpBqcRu5AP9UD66zNTGYqp7Xz ZOLdssUZpE7lv5OcwzFUSET4qVIwaaNsvtuuTUuWNs8sguW0QYOJx5S5OVPXSi3O mTz/TQ+VwK1gpWJEd8vArg8s3E3G76q58DC9Mb55yyETpkQhcRtAnfo8Ginh1fll zlTSKyY0bj/jJQy+peWcctnKVtu2lf9fv5jzWFMWvMoigazl3URw/OohNGEdO7S4 ZcM2IrDLpnYy3jGK7p+3hD8EeyraKNPtSPuDUoxE0H9+HLtEz1j2S+Dm7HwQ5b1P 7/WRWCp4QkChpQGDaOka/UIEw8fIjAru -----END CERTIFICATE-----Generated at Sun Jan 25 18:48:33 2026 by rpki-client