This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: sOvdDYv6aUk6eKM+qPgwiy/NPyU4Om2aaTYBXIXt74Q= Subject key identifier: 8D:60:07:D0:BB:8D:70:86:BA:A0:E2:98:8C:22:4E:7C:EA:A2:78:7F Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 068A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0685 Signing time: Sat 24 Jan 2026 21:46:56 +0000 Manifest this update: Sat 24 Jan 2026 21:46:55 +0000 Manifest next update: Sat 31 Jan 2026 21:46:55 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: wUOnRl+dlQ47T2tIqO33PfSF+rb1wmkFIoDuZc+32sY=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1674 (0x68a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Jan 24 21:46:55 2026 GMT Not After : Jan 31 21:46:55 2026 GMT Subject: CN=69753dd0-e6c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0f:9f:6d:d0:c8:af:80:f5:88:77:99:30:46: 22:90:80:cb:82:1b:94:bc:b6:d5:0c:0f:9c:ed:22: 70:05:45:76:bd:c1:4a:fb:ef:c1:9a:d6:38:54:41: 09:07:66:94:7e:06:b7:f6:8c:1d:d0:81:d8:c5:c1: 33:7d:64:22:11:77:61:47:99:b0:36:50:41:0e:a1: ca:b7:01:4f:58:b4:ae:ef:6d:7c:ac:af:0c:bb:df: df:76:e9:9b:ef:75:81:93:26:52:87:0c:22:55:f4: dd:07:5e:5e:24:6a:f6:64:08:32:20:29:6a:dc:fc: 4e:6e:5a:94:7e:bb:5a:bd:cb:85:ad:1c:41:a3:b0: 62:cc:50:b2:e0:62:dd:88:cf:09:45:95:5f:f5:22: a6:48:9f:62:14:65:ea:09:fd:32:0c:ea:54:95:ec: c0:c5:5e:25:4d:f4:0b:a6:fd:3f:04:3c:d8:63:82: 48:fb:67:bf:65:06:78:bf:bd:18:73:88:e2:06:8c: 75:4c:bf:36:fe:b9:13:9e:7b:5d:95:40:13:ba:ad: 6f:b2:51:2e:23:21:b1:69:dd:b6:98:3b:c0:d6:c7: 81:b1:00:5f:af:65:23:82:31:23:19:d4:c9:90:cd: c9:a8:61:04:29:8d:dc:2b:70:77:bc:74:d4:6f:7f: 30:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:60:07:D0:BB:8D:70:86:BA:A0:E2:98:8C:22:4E:7C:EA:A2:78:7F X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:be:7f:99:4c:ea:ad:c6:e9:ba:cd:44:54:df:ba:42:e8:fd: be:36:d3:1e:61:9e:22:48:6c:51:cc:83:52:2f:d1:5c:88:95: 74:73:03:33:d3:b3:e2:36:89:1b:e0:99:31:46:c8:f5:08:07: 8b:0d:0e:9c:67:bc:9b:d8:8b:60:85:70:ce:3c:20:c5:c7:69: fd:c3:f3:20:01:5b:66:f6:52:f6:4e:f9:dd:82:61:13:00:3a: 0b:c1:1f:57:ba:d1:54:78:c5:20:ac:99:0b:74:5a:0f:85:07: 4f:b6:bf:0a:a6:fb:98:46:4c:e8:5b:67:18:b8:67:db:2f:3b: 11:e5:1d:2b:c7:a3:e4:bf:4c:43:e5:37:77:8c:65:e7:c5:af: d5:77:7a:a7:7b:af:ba:a0:b2:2c:45:29:fe:69:a2:78:2f:c4: 47:0d:7c:b3:c2:69:61:1f:15:e7:7a:8c:61:4f:de:43:b3:64: 0c:8c:3a:a2:83:f1:35:1d:51:1c:0b:cd:5d:b8:35:73:d4:01: ba:af:00:4d:d9:8a:a2:31:91:59:77:5a:6c:e6:41:a7:c8:9c: 87:76:05:b6:14:71:25:37:d1:68:ab:17:2f:99:ca:05:12:80: 49:a8:e3:d2:1b:40:20:2e:50:69:11:70:cf:9c:fd:1a:9e:7a: 13:f1:63:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjYwMTI0MjE0NjU1WhcNMjYwMTMxMjE0NjU1WjAYMRYwFAYD VQQDDA02OTc1M2RkMC1lNmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQ+fbdDIr4D1iHeZMEYikIDLghuUvLbVDA+c7SJwBUV2vcFK++/BmtY4VEEJ B2aUfga39owd0IHYxcEzfWQiEXdhR5mwNlBBDqHKtwFPWLSu7218rK8Mu9/fdumb 73WBkyZShwwiVfTdB15eJGr2ZAgyIClq3PxOblqUfrtavcuFrRxBo7BizFCy4GLd iM8JRZVf9SKmSJ9iFGXqCf0yDOpUlezAxV4lTfQLpv0/BDzYY4JI+2e/ZQZ4v70Y c4jiBox1TL82/rkTnntdlUATuq1vslEuIyGxad22mDvA1seBsQBfr2UjgjEjGdTJ kM3JqGEEKY3cK3B3vHTUb38wIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1gB9C7 jXCGuqDimIwiTnzqonh/MB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6vn+ZTOqtxum6zURU37pC6P2+NtMeYZ4iSGxRzINSL9FciJV0cwMz 07PiNokb4JkxRsj1CAeLDQ6cZ7yb2ItghXDOPCDFx2n9w/MgAVtm9lL2TvndgmET ADoLwR9XutFUeMUgrJkLdFoPhQdPtr8KpvuYRkzoW2cYuGfbLzsR5R0rx6Pkv0xD 5Td3jGXnxa/Vd3qne6+6oLIsRSn+aaJ4L8RHDXyzwmlhHxXneoxhT95Ds2QMjDqi g/E1HVEcC81duDVz1AG6rwBN2YqiMZFZd1ps5kGnyJyHdgW2FHElN9FoqxcvmcoF EoBJqOPSG0AgLlBpEXDPnP0annoT8WNM -----END CERTIFICATE-----Generated at Sun Jan 25 04:28:38 2026 by rpki-client