This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: 4EhVd047ILYj1SQPqLWOT5Yts1o7nhdLL9wsW9x32ow= Subject key identifier: 49:83:3B:0E:02:48:C2:C2:FE:34:B5:C5:46:4F:93:E2:2A:BA:73:15 Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 1029 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 1020 Signing time: Sat 24 Jan 2026 17:08:31 +0000 Manifest this update: Sat 24 Jan 2026 17:08:31 +0000 Manifest next update: Sat 31 Jan 2026 17:08:31 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: CftVJ27XFyLZNMnfgno0kcjecRajBYn0T973uL2ehOU=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: vKLtsTjRDQmvaoDy2+JZ+X/edFfE0cROOj6FdGkYWZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Jan 24 17:08:31 2026 GMT Not After : Jan 31 17:08:31 2026 GMT Subject: CN=6974fc8f-f2ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f1:fc:44:86:6f:ec:69:41:02:dc:b9:2f:c1: d4:11:39:87:78:4f:32:5f:e2:ec:7c:8b:57:31:a6: 35:8c:6b:31:b2:e6:b1:34:91:f8:46:1c:f8:c5:ef: ad:89:53:12:f7:47:a6:d8:1b:8b:cb:31:67:2c:52: 97:e6:06:bd:f5:0a:3d:1b:8b:cb:43:08:f0:5c:20: 62:b9:e5:e5:f5:18:1e:56:2d:d6:91:35:ce:2a:13: bc:d6:2a:38:16:83:9d:d1:30:f5:dd:ad:42:0b:6f: d7:9e:7f:60:b1:5b:30:e1:b3:7c:40:bf:b2:6e:bc: 9b:47:86:31:a2:35:8d:87:4d:c2:70:71:86:22:b4: f2:c2:87:53:5d:c5:34:6f:81:f1:69:97:c4:7c:13: 5a:80:7f:13:77:2d:47:35:f6:8c:6f:f5:a2:e8:79: b8:4d:2a:ba:ff:6f:db:84:e2:c5:33:e8:5f:c5:55: 4d:19:09:d2:87:c8:03:5d:4d:1c:b2:dd:98:5a:04: 63:21:49:95:83:4d:e1:f2:55:4b:1e:88:10:ad:91: 80:f3:52:b2:f1:78:23:06:74:98:47:09:a4:ea:66: 47:6d:1c:dc:50:1d:b6:73:43:e7:a4:74:54:dc:b0: e3:47:28:4e:d0:2a:00:be:8a:77:ac:a9:32:6d:ce: 3e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:83:3B:0E:02:48:C2:C2:FE:34:B5:C5:46:4F:93:E2:2A:BA:73:15 X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:11:26:1b:a6:44:60:aa:d3:3a:f8:9d:46:d6:2d:f7:4f:47: 75:1d:84:00:46:ee:df:c3:6c:44:b8:13:94:b7:fd:d0:2f:80: fc:93:6b:4b:c1:d7:8e:9c:3c:6c:85:6d:0d:ef:3b:77:27:c8: 2b:e7:4b:d8:b5:dc:e3:e0:24:9a:30:16:97:99:ee:21:1a:65: ce:3e:38:b9:90:ac:e9:f1:e3:89:31:c1:d2:fc:e7:2e:44:c2: dc:c0:76:47:e2:0e:b5:4c:65:54:81:dd:4e:d9:d2:9c:99:af: ee:73:6b:9f:f6:4e:e9:31:50:56:05:1c:dc:71:76:4c:a0:ad: 93:d6:92:4b:b9:2b:e7:62:60:d7:a5:fd:77:c7:63:da:46:ff: 56:16:01:bd:ff:a3:8d:43:f6:63:47:ea:e6:76:67:3b:cf:f9: a5:38:e8:42:22:87:e6:dc:90:2d:67:63:db:77:80:7c:0b:58: 82:e4:e6:87:ec:2e:7b:8a:9c:f0:0d:5b:36:00:5a:78:19:07: c6:b6:58:e7:98:11:fd:bc:50:dd:38:c8:87:50:5d:16:f2:1b: 69:cf:7f:68:50:a8:e3:17:6f:60:ad:e6:64:30:1c:1e:94:34: ac:83:4d:77:3f:a3:00:e6:4e:30:82:0d:88:76:15:62:6e:04: 5f:01:1f:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjYwMTI0MTcwODMxWhcNMjYwMTMxMTcwODMxWjAYMRYwFAYD VQQDDA02OTc0ZmM4Zi1mMmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fH8RIZv7GlBAty5L8HUETmHeE8yX+LsfItXMaY1jGsxsuaxNJH4Rhz4xe+t iVMS90em2BuLyzFnLFKX5ga99Qo9G4vLQwjwXCBiueXl9RgeVi3WkTXOKhO81io4 FoOd0TD13a1CC2/Xnn9gsVsw4bN8QL+ybrybR4YxojWNh03CcHGGIrTywodTXcU0 b4HxaZfEfBNagH8Tdy1HNfaMb/Wi6Hm4TSq6/2/bhOLFM+hfxVVNGQnSh8gDXU0c st2YWgRjIUmVg03h8lVLHogQrZGA81Ky8XgjBnSYRwmk6mZHbRzcUB22c0PnpHRU 3LDjRyhO0CoAvop3rKkybc4+gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmDOw4C SMLC/jS1xUZPk+IqunMVMB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaESYbpkRgqtM6+J1G1i33T0d1HYQARu7fw2xEuBOUt/3QL4D8k2tL wdeOnDxshW0N7zt3J8gr50vYtdzj4CSaMBaXme4hGmXOPji5kKzp8eOJMcHS/Ocu RMLcwHZH4g61TGVUgd1O2dKcma/uc2uf9k7pMVBWBRzccXZMoK2T1pJLuSvnYmDX pf13x2PaRv9WFgG9/6ONQ/ZjR+rmdmc7z/mlOOhCIofm3JAtZ2Pbd4B8C1iC5OaH 7C57ipzwDVs2AFp4GQfGtljnmBH9vFDdOMiHUF0W8htpz39oUKjjF29greZkMBwe lDSsg013P6MA5k4wgg2IdhVibgRfAR/W -----END CERTIFICATE-----Generated at Sun Jan 25 18:35:12 2026 by rpki-client