This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft File: r9CVWn3X-bDsKkShHZNyB8J1SmM.mft (raw, json) Hash identifier: F8/vcusXZtFJI9SqXeIGSC6tTdDjF8sZmkwhZBowNQY= Subject key identifier: 08:54:E1:EF:98:72:D5:40:82:29:56:47:16:C8:C5:A7:21:90:72:0F Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft Manifest number: 0456 Signing time: Sat 24 Jan 2026 23:28:32 +0000 Manifest this update: Sat 24 Jan 2026 23:28:31 +0000 Manifest next update: Sat 31 Jan 2026 23:28:31 +0000 Files and hashes: 1: r9CVWn3X-bDsKkShHZNyB8J1SmM.crl (hash: 0LbI3dzRtVnR0LS9kfEH3VkqHhe1d8FaAaFUdKgISzw=) 2: E69ABF78033911EFBE28FC1FC4F9AE02.roa (hash: Rg7/HWvbLuN8QkYRlBgqkedDJt7Lv8j0nbDNMsIVYIo=) 3: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (hash: IBTL0V7J1tBYqG7NDXusQxEwJubmZUah6ZmQZ+9P3Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Jan 24 23:28:31 2026 GMT Not After : Jan 31 23:28:31 2026 GMT Subject: CN=697555a0-98ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:46:d7:27:f4:de:9a:a5:84:45:8f:2d:1c:aa: 54:7f:f2:fd:8f:a7:16:8f:37:26:a1:66:7a:10:5f: e5:66:3f:27:8e:f3:a4:d9:0f:d5:8c:5c:cd:1a:6f: da:4a:e9:6a:0e:f4:10:a4:fa:b0:de:a7:dc:b3:ac: 4a:75:20:ce:a4:99:a7:40:2d:22:0d:3d:86:fb:27: dc:d7:3f:36:f1:0d:c9:63:24:79:a0:00:30:be:d1: e5:4f:7a:84:27:96:63:6e:b8:c7:ac:68:31:00:50: 37:80:01:97:c4:7c:d9:86:77:a5:34:09:fe:64:39: 87:e8:1b:bf:a6:79:5d:e8:7c:84:32:84:e3:e7:f8: 9d:46:99:e5:8a:77:fb:c6:90:4d:4e:be:b2:3a:31: 04:1d:f3:4e:b1:9b:4f:ab:79:dd:4a:a1:16:25:c8: 24:9f:d7:d8:d7:91:2d:44:ce:61:c5:0b:22:17:8c: e9:aa:cc:a6:08:2b:6a:ed:36:fd:e8:fb:c7:38:36: 74:43:6e:c3:27:11:ad:ed:00:f4:ed:75:86:df:03: ec:5b:86:97:dc:ea:90:d5:6a:9f:b8:0e:e3:02:7c: 06:35:7c:41:8c:f4:29:d2:04:69:d1:c8:f6:43:d9: d4:00:a7:1e:92:5c:02:6c:da:ff:d3:ee:5e:c9:08: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:54:E1:EF:98:72:D5:40:82:29:56:47:16:C8:C5:A7:21:90:72:0F X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:3d:e9:66:07:08:85:41:08:a1:55:2f:0d:23:59:c9:77:8d: 7a:16:c6:8e:dc:14:7b:19:d0:c8:af:19:a3:54:41:10:5b:60: e0:87:2c:2c:cd:77:20:2f:9a:60:ff:7d:89:94:d3:e0:2f:20: a4:8a:56:85:c7:6f:71:ff:eb:44:6f:3f:33:c3:7d:2f:a7:3e: ab:b9:35:df:7c:e3:59:88:f2:1b:4b:e2:a7:7b:61:1a:23:51: 13:e4:24:b5:81:31:bf:c6:a6:73:e4:f8:c8:b1:1b:44:d1:71: e1:05:af:2c:99:d6:d2:08:a3:aa:f0:5f:50:71:6d:9d:14:20: fb:85:3f:3c:c3:65:63:ce:63:a0:2f:5c:00:84:f2:4f:be:38: 4c:d4:21:f5:65:87:c7:ab:f6:e2:92:e0:ac:45:b2:17:34:d9: e0:4e:72:9a:ae:a9:66:9f:c2:1d:e5:51:0e:a4:38:e7:a1:f5: 3c:15:38:b2:07:d0:f0:e6:b0:a0:f3:71:a5:29:8f:70:b8:68: c5:35:92:f1:b0:54:f2:f2:0e:6b:dd:f7:14:1c:e1:df:6b:e3: 9f:d9:71:f4:4f:45:f8:9d:57:2f:fb:f8:56:a8:43:ed:1b:43: 6e:b3:13:f1:76:d0:e1:ba:76:cf:65:17:15:77:eb:35:43:94: 73:6f:af:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjYwMTI0MjMyODMxWhcNMjYwMTMxMjMyODMxWjAYMRYwFAYD VQQDDA02OTc1NTVhMC05OGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0bXJ/TemqWERY8tHKpUf/L9j6cWjzcmoWZ6EF/lZj8njvOk2Q/VjFzNGm/a SulqDvQQpPqw3qfcs6xKdSDOpJmnQC0iDT2G+yfc1z828Q3JYyR5oAAwvtHlT3qE J5ZjbrjHrGgxAFA3gAGXxHzZhnelNAn+ZDmH6Bu/pnld6HyEMoTj5/idRpnlinf7 xpBNTr6yOjEEHfNOsZtPq3ndSqEWJcgkn9fY15EtRM5hxQsiF4zpqsymCCtq7Tb9 6PvHODZ0Q27DJxGt7QD07XWG3wPsW4aX3OqQ1WqfuA7jAnwGNXxBjPQp0gRp0cj2 Q9nUAKceklwCbNr/0+5eyQiSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhU4e+Y ctVAgilWRxbIxachkHIPMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTAxOC84ODM2RkE2MDhENEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1i RHNLa1NoSFpOeUI4SjFTbU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9PelmBwiFQQihVS8NI1nJd416FsaO3BR7GdDIrxmjVEEQW2Dghyws zXcgL5pg/32JlNPgLyCkilaFx29x/+tEbz8zw30vpz6ruTXffONZiPIbS+Kne2Ea I1ET5CS1gTG/xqZz5PjIsRtE0XHhBa8smdbSCKOq8F9QcW2dFCD7hT88w2VjzmOg L1wAhPJPvjhM1CH1ZYfHq/bikuCsRbIXNNngTnKarqlmn8Id5VEOpDjnofU8FTiy B9Dw5rCg83GlKY9wuGjFNZLxsFTy8g5r3fcUHOHfa+Of2XH0T0X4nVcv+/hWqEPt G0NusxPxdtDhunbPZRcVd+s1Q5Rzb69y -----END CERTIFICATE-----Generated at Sun Jan 25 21:50:13 2026 by rpki-client