This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft File: awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft (raw, json) Hash identifier: AZ9tEpgXW+3ed4+TWXeoCczKF0tCs55XCoR14DV4fbA= Subject key identifier: 1C:41:EC:8C:68:EB:FF:14:EA:C0:73:5C:DB:AC:AB:5D:FE:87:52:F6 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0CBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft Manifest number: 0C94 Signing time: Sat 24 Jan 2026 18:08:18 +0000 Manifest this update: Sat 24 Jan 2026 18:08:17 +0000 Manifest next update: Sat 31 Jan 2026 18:08:17 +0000 Files and hashes: 1: awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl (hash: 75bzVhWmyGTMmwNtjJSHhdOGp0lLZUaV59b7sNv6LU0=) 2: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (hash: X2T86WPoFoEyZcogT1ndr7RJyh96AHdCumJauzM/7xw=) 3: 7A0359125C0E11ECA36CBF0FC4F9AE02.roa (hash: o9KgCgIfk9qmZZ9pgzWFPU4WMxKkFhiZ4bjzLNQ6ffs=) 4: 1ECA8050696211EC8A05D115C4F9AE02.roa (hash: bKIVbhRs5w35IIfwUaxKPcUoIg+dZW+Orr/jkzvA1ls=) 5: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (hash: 3CkpfzzdlD3cY7gMPcsoVBDo+GHLrm85uXTpFP0fJ9Q=) 6: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (hash: ltU83qHdHMX+gE2JiPsnwwizXD7fI0umImKJHXZ+qiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3259 (0xcbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Jan 24 18:08:17 2026 GMT Not After : Jan 31 18:08:17 2026 GMT Subject: CN=69750a92-9e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:27:e8:5d:63:9c:30:f1:54:55:12:05:3f: c1:91:12:07:13:51:e8:50:5a:87:44:d4:25:38:ff: 28:8d:60:ad:7f:00:8d:c6:26:67:57:e4:a8:4c:20: 5c:e8:e0:b9:ac:7b:53:86:5f:de:bf:83:15:d5:95: cd:99:69:b5:5f:c0:eb:c0:02:af:5d:d1:52:fd:b7: 15:58:8f:9b:fc:22:5e:d2:d9:1b:66:66:d5:0a:f8: fb:5f:b4:75:1a:94:e9:db:ee:63:bd:fc:69:46:85: 21:58:5f:e1:24:40:3f:3e:72:b4:35:1b:b8:ce:97: 9b:c8:a1:d5:b5:77:51:2b:d2:d2:db:b5:30:b2:5c: 11:15:93:86:35:06:71:d3:29:31:19:a0:f6:3d:1d: 96:2b:6b:7e:71:cf:68:6c:bb:ee:47:29:3f:e5:cc: e4:d9:a1:43:36:fc:9a:c3:e3:fc:0f:d6:b9:27:18: 9f:3c:57:5e:34:77:81:54:38:d3:f7:3f:ef:4c:2f: 0c:a8:d4:37:9c:c4:ed:bf:c8:87:0b:33:42:6a:9f: 8b:bd:8f:9d:b4:46:b1:f4:e7:f2:e5:62:57:10:86: 24:44:c0:a4:51:41:95:d9:79:9c:61:aa:a4:b3:a6: 64:56:de:89:3b:48:1b:cf:ff:c4:4b:e4:72:88:8c: f0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:41:EC:8C:68:EB:FF:14:EA:C0:73:5C:DB:AC:AB:5D:FE:87:52:F6 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:0d:93:25:5b:2e:1c:ce:b8:da:e6:6b:d0:d5:a2:ba:72:13: bc:99:fc:f1:78:c9:26:6c:4f:aa:2a:5e:8f:66:53:73:ea:d8: 96:ec:e0:a7:38:07:ec:93:b3:0b:85:60:9a:60:69:c7:5c:ec: ed:ee:b4:79:e6:27:d8:01:93:d7:11:4f:fa:4e:ce:7e:f8:aa: bf:e3:f8:04:c9:89:3f:c0:f3:22:70:5c:ee:ea:ac:e7:51:1d: 18:7c:34:28:21:c2:ae:b7:e7:2b:01:3f:a4:a3:7d:d3:bd:52: 5d:d0:1b:55:02:01:1d:c4:06:d8:44:fb:b8:1f:dc:1a:bc:b6: f6:54:95:a3:32:96:da:42:6e:4d:ed:4d:df:d6:c9:ac:c2:71: cd:1c:10:40:6c:e3:24:41:97:80:ca:0d:70:27:00:0c:f8:ad: c0:31:ec:98:9b:92:6c:c5:03:91:64:4a:1f:73:a5:46:93:32: 51:a4:c5:3c:86:8e:09:07:82:bb:17:fb:d8:a0:94:db:2d:b6: 57:d9:1f:93:83:33:49:00:66:30:da:6b:9b:9a:f3:06:81:32: b8:0f:8e:d8:6a:22:78:c9:6a:01:18:b7:ce:60:14:32:17:34: 8e:1a:df:53:12:fd:a7:aa:a0:c2:2e:3f:e6:17:6b:45:ec:63: 9b:32:dd:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjYwMTI0MTgwODE3WhcNMjYwMTMxMTgwODE3WjAYMRYwFAYD VQQDDA02OTc1MGE5Mi05ZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaMn6F1jnDDxVFUSBT/BkRIHE1HoUFqHRNQlOP8ojWCtfwCNxiZnV+SoTCBc 6OC5rHtThl/ev4MV1ZXNmWm1X8DrwAKvXdFS/bcVWI+b/CJe0tkbZmbVCvj7X7R1 GpTp2+5jvfxpRoUhWF/hJEA/PnK0NRu4zpebyKHVtXdRK9LS27UwslwRFZOGNQZx 0ykxGaD2PR2WK2t+cc9obLvuRyk/5czk2aFDNvyaw+P8D9a5JxifPFdeNHeBVDjT 9z/vTC8MqNQ3nMTtv8iHCzNCap+LvY+dtEax9Ofy5WJXEIYkRMCkUUGV2XmcYaqk s6ZkVt6JO0gbz//ES+RyiIzwPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxB7Ixo 6/8U6sBzXNusq13+h1L2MB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVFMC8yM0JGMkYyNjExM0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlW XzVRbW5YcWJ3Z0poY0UzT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKDZMlWy4czrja5mvQ1aK6chO8mfzxeMkmbE+qKl6PZlNz6tiW7OCn OAfsk7MLhWCaYGnHXOzt7rR55ifYAZPXEU/6Ts5++Kq/4/gEyYk/wPMicFzu6qzn UR0YfDQoIcKut+crAT+ko33TvVJd0BtVAgEdxAbYRPu4H9wavLb2VJWjMpbaQm5N 7U3f1smswnHNHBBAbOMkQZeAyg1wJwAM+K3AMeyYm5JsxQORZEofc6VGkzJRpMU8 ho4JB4K7F/vYoJTbLbZX2R+TgzNJAGYw2mubmvMGgTK4D47YaiJ4yWoBGLfOYBQy FzSOGt9TEv2nqqDCLj/mF2tF7GObMt2z -----END CERTIFICATE-----Generated at Sun Jan 25 17:10:05 2026 by rpki-client