This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft File: oUUkHZgwrySnFWc1ElXsjn7VPv4.mft (raw, json) Hash identifier: EXmZis9kDwmZy3len8RGTFiDashnobAnaedWLGkTn+Q= Subject key identifier: 0E:02:7B:30:91:42:A8:77:2A:1C:04:F8:3F:FB:45:42:4F:60:99:5F Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft Manifest number: 77 Signing time: Sun 25 Jan 2026 06:04:15 +0000 Manifest this update: Sun 25 Jan 2026 06:04:15 +0000 Manifest next update: Sun 01 Feb 2026 06:04:15 +0000 Files and hashes: 1: oUUkHZgwrySnFWc1ElXsjn7VPv4.crl (hash: zVuu0mJLXvBD05X5go+XfVyKIzz6sPj9/1qzXKfU8tY=) 2: 0D83DBA8BE5811F0B151FF78C4F9AE02.roa (hash: ciBVXi3NuZ9007zCdd3QAQNC4sYFdA5GkfUuea4GHXA=) 3: 90CF95CE66DD11F09FD37312C4F9AE02.roa (hash: BBZhX9HK3NBq65o9RCyGDdGBDo4hsR5Etdc6G3lRbjc=) 4: C24679DC741211F0808A8240C4F9AE02.roa (hash: 0sz+kpmtwGElJIZS+dbC02B4JWfvDxu2J1QwiI80uIU=) 5: B015DEC49D0211F0992DA43DC4F9AE02.roa (hash: 1ZtqCzNNxWxSJ7uFzzu6FWZe/QSQ6qrzF6WDQCLLHuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: Jan 25 06:04:15 2026 GMT Not After : Feb 1 06:04:15 2026 GMT Subject: CN=6975b25f-a6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:fd:16:7e:77:d2:a0:eb:dc:18:82:fe:93: ef:b6:c2:77:4c:fc:cb:e2:43:0d:be:30:b7:92:8c: 03:cd:bb:fc:fb:59:b3:90:3d:0c:f6:0a:3a:45:71: b9:44:18:e9:7c:ee:0d:53:b6:f8:99:e3:83:21:55: f5:66:b5:97:33:b2:cf:b1:61:91:a2:bd:07:8e:95: 74:4f:29:b9:17:09:f4:0d:08:4e:98:1a:26:ae:76: 39:2a:2c:29:bd:8e:3a:86:19:83:07:08:c0:50:35: 1c:8d:66:5b:10:3d:4a:64:10:db:33:a7:f4:96:1a: 81:2c:5a:c1:54:d5:94:3a:b6:5e:da:a3:3e:8f:b7: dd:21:09:2b:11:28:d0:e8:b9:78:a4:ef:d7:f8:74: dc:13:36:06:7e:b2:02:b1:ad:55:a1:90:04:8e:d8: c1:44:db:00:5b:0f:2b:52:80:15:98:fe:89:af:ae: b4:7b:ff:ed:d4:2f:e5:4d:77:01:d5:23:af:18:a9: 69:48:54:06:4a:7f:c0:98:b7:07:e5:80:a8:c0:10: f0:ba:bd:2b:a4:58:98:7d:5a:6b:77:2c:ac:34:22: 9c:f9:98:c1:c3:08:c9:dd:4c:14:5b:ff:62:dc:60: 5d:a0:b5:d6:d3:ee:3f:30:97:0a:b3:bc:7f:0b:1b: e4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:02:7B:30:91:42:A8:77:2A:1C:04:F8:3F:FB:45:42:4F:60:99:5F X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:fe:dd:9a:63:51:9c:eb:f9:1a:7e:99:6d:08:e3:b5:2e:69: a4:20:85:79:9d:49:b0:ca:69:93:12:17:27:f8:de:2f:96:57: 84:e7:35:64:f5:5c:4b:10:69:a6:02:16:0d:80:08:63:e1:a4: e9:4a:fe:df:2d:2b:8e:39:f6:73:38:de:f7:55:77:4d:77:1c: 0d:64:58:ea:b1:bb:b4:d4:9e:70:fe:6c:96:ab:49:82:3b:bc: ea:a0:b5:2e:27:d8:cc:2b:b6:87:53:20:1f:a5:61:6a:69:2b: 0c:e5:2e:c0:17:6e:09:67:1d:8a:29:0c:90:20:45:4e:55:7d: e1:14:55:d5:e4:c4:36:52:1d:f7:45:58:f0:b1:01:5d:95:5e: 63:6d:c7:e3:15:1d:1f:0d:bc:8e:9e:59:8f:04:62:77:0e:65: 7d:ad:a4:06:24:e6:46:fe:3b:58:43:48:8c:9d:09:71:a5:d7: 2b:f0:e7:2c:17:6e:32:e6:ba:d6:a5:46:22:74:b3:19:6e:14: b4:4a:ac:6d:be:14:9d:bb:c1:3c:6c:81:53:cd:f5:03:7c:9e: 3e:e7:8f:8d:12:2a:5f:94:0c:79:ff:fb:e6:78:e0:55:9f:c7: bf:99:14:cf:f0:54:63:1c:4b:28:a2:7b:65:96:a4:1d:0f:57: df:4d:68:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzVCQzExMC8GA1UEBRMoQTE0NTI0MUQ5ODMwQUYyNEE3MTU2NzM1MTI1NUVDOEU3 RUQ1M0VGRTAeFw0yNjAxMjUwNjA0MTVaFw0yNjAyMDEwNjA0MTVaMBgxFjAUBgNV BAMMDTY5NzViMjVmLWE2ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB2f0WfnfSoOvcGIL+k++2wndM/MviQw2+MLeSjAPNu/z7WbOQPQz2CjpFcblE GOl87g1TtviZ44MhVfVmtZczss+xYZGivQeOlXRPKbkXCfQNCE6YGiaudjkqLCm9 jjqGGYMHCMBQNRyNZlsQPUpkENszp/SWGoEsWsFU1ZQ6tl7aoz6Pt90hCSsRKNDo uXik79f4dNwTNgZ+sgKxrVWhkASO2MFE2wBbDytSgBWY/omvrrR7/+3UL+VNdwHV I68YqWlIVAZKf8CYtwflgKjAEPC6vSukWJh9Wmt3LKw0Ipz5mMHDCMndTBRb/2Lc YF2gtdbT7j8wlwqzvH8LG+Q/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDgJ7MJFC qHcqHAT4P/tFQk9gmV8wHwYDVR0jBBgwFoAUoUUkHZgwrySnFWc1ElXsjn7VPv4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNUJDLzcxRTVEOEJFNTlG MjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VVa0haZ3dyeVNuRldjMUVsWHNqbjdWUHY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD NUJDLzcxRTVEOEJFNTlGMjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlT bkZXYzFFbFhzam43VlB2NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALb+3ZpjUZzr+Rp+mW0I47UuaaQghXmdSbDKaZMSFyf43i+WV4TnNWT1 XEsQaaYCFg2ACGPhpOlK/t8tK4459nM43vdVd013HA1kWOqxu7TUnnD+bJarSYI7 vOqgtS4n2MwrtodTIB+lYWppKwzlLsAXbglnHYopDJAgRU5VfeEUVdXkxDZSHfdF WPCxAV2VXmNtx+MVHR8NvI6eWY8EYncOZX2tpAYk5kb+O1hDSIydCXGl1yvw5ywX bjLmutalRiJ0sxluFLRKrG2+FJ27wTxsgVPN9QN8nj7nj40SKl+UDHn/++Z44FWf x7+ZFM/wVGMcSyiie2WWpB0PV99NaO8= -----END CERTIFICATE-----Generated at Sun Jan 25 19:23:59 2026 by rpki-client