This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: 30YDPDh1UOagOV36eQEV29JqcITY62Qj0V5el7PHUUI= Subject key identifier: 6B:96:CF:DF:9C:F0:01:B4:BF:A2:85:1E:A2:FC:A9:06:CD:6D:07:4A Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B9A Signing time: Sat 24 Jan 2026 18:34:28 +0000 Manifest this update: Sat 24 Jan 2026 18:34:27 +0000 Manifest next update: Sat 31 Jan 2026 18:34:27 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: X5Or4MJ2Fq43iHxoZfEWhfnZXAqzgUBlVQSF4Qn+LfA=) 2: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) 3: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Jan 24 18:34:27 2026 GMT Not After : Jan 31 18:34:27 2026 GMT Subject: CN=697510b3-6e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e4:96:bd:67:54:ce:64:f0:a4:ff:c9:66:2e: 99:d1:88:36:3b:52:b1:1b:ff:21:4c:e2:b1:a0:c1: ce:7f:98:ea:c1:b3:88:c4:18:9a:2a:16:1d:05:21: b9:b7:e5:f7:89:17:6e:4b:8f:34:1f:85:e9:30:85: 00:b0:c2:26:cc:17:ac:e3:34:76:49:d4:79:28:3c: 1c:cb:3c:f2:d0:6a:83:c9:e7:fd:bb:63:ae:4b:24: fa:da:7c:38:a2:df:15:aa:76:1e:fa:d3:59:46:5f: 35:82:43:8c:6f:d0:cd:73:4d:fb:b3:07:3d:4e:75: 8d:56:6c:52:6c:5d:b4:cd:c8:f1:12:2f:02:01:fe: d0:9d:79:7f:c4:ab:03:52:6d:af:82:5e:16:91:76: af:83:10:da:86:66:a9:e5:7b:51:ec:a6:02:cc:54: 4b:06:be:04:47:41:f3:cc:78:09:6f:e6:51:03:8b: 71:df:54:17:e2:af:17:2d:cf:d2:aa:62:af:e3:2b: 7b:a6:bf:72:7f:1e:a4:e9:50:d7:83:30:84:b9:e6: f3:51:2f:5e:64:8d:6c:ad:92:7a:78:04:5d:ae:1b: 64:34:95:bb:5b:af:cb:dd:52:ed:d3:58:a6:b2:0e: a5:17:3a:bc:c3:f6:67:d4:5f:1b:e6:86:7a:41:ba: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:96:CF:DF:9C:F0:01:B4:BF:A2:85:1E:A2:FC:A9:06:CD:6D:07:4A X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cd:64:30:8e:29:ab:9f:45:fd:ba:af:95:ed:cd:7e:bf:11: f8:f3:74:18:b9:e7:a9:37:0e:a4:93:a9:c8:69:39:21:c7:aa: ec:f4:48:57:a6:6e:c7:68:b8:2f:51:11:b7:cd:62:eb:1c:5d: 54:1a:60:a8:05:77:ab:3f:be:d3:51:9c:b2:50:3e:b6:c8:7d: f9:90:d9:b8:c1:9e:43:85:cb:5a:fa:a6:80:3f:77:a8:4c:4a: 65:54:73:59:2e:df:3b:34:cf:ff:0e:b3:0a:09:7f:42:83:40: 3a:a6:a0:d6:77:25:69:e1:d5:a6:54:3e:bf:af:b0:67:9c:f3: 2f:fe:ef:2a:0d:6e:2d:f9:c5:f6:81:98:0e:5d:ea:25:73:21: 25:5d:39:8f:ba:25:7b:24:49:8b:31:f7:f1:24:2e:03:e6:6b: c5:c7:98:c5:a9:87:57:01:8c:b0:57:ac:82:5b:47:a3:cd:8d: c8:66:27:06:a1:a5:b4:17:c6:0f:e2:c4:55:b3:8c:58:29:37: 3f:69:9b:97:85:4c:f6:8a:e0:af:f2:11:b1:4c:53:64:57:a3: 39:a3:78:a8:00:dc:42:e1:5e:de:bb:7d:a9:26:c3:ed:5c:20: 7a:e9:80:a0:7f:6e:92:fe:94:fb:4d:5d:5c:fb:3c:5b:d5:09: af:d8:6d:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjYwMTI0MTgzNDI3WhcNMjYwMTMxMTgzNDI3WjAYMRYwFAYD VQQDDA02OTc1MTBiMy02ZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOSWvWdUzmTwpP/JZi6Z0Yg2O1KxG/8hTOKxoMHOf5jqwbOIxBiaKhYdBSG5 t+X3iRduS480H4XpMIUAsMImzBes4zR2SdR5KDwcyzzy0GqDyef9u2OuSyT62nw4 ot8VqnYe+tNZRl81gkOMb9DNc037swc9TnWNVmxSbF20zcjxEi8CAf7QnXl/xKsD Um2vgl4WkXavgxDahmap5XtR7KYCzFRLBr4ER0HzzHgJb+ZRA4tx31QX4q8XLc/S qmKv4yt7pr9yfx6k6VDXgzCEuebzUS9eZI1srZJ6eARdrhtkNJW7W6/L3VLt01im sg6lFzq8w/Zn1F8b5oZ6QbpRQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuWz9+c 8AG0v6KFHqL8qQbNbQdKMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbzWQwjimrn0X9uq+V7c1+vxH483QYueepNw6kk6nIaTkhx6rs9EhX pm7HaLgvURG3zWLrHF1UGmCoBXerP77TUZyyUD62yH35kNm4wZ5Dhcta+qaAP3eo TEplVHNZLt87NM//DrMKCX9Cg0A6pqDWdyVp4dWmVD6/r7BnnPMv/u8qDW4t+cX2 gZgOXeolcyElXTmPuiV7JEmLMffxJC4D5mvFx5jFqYdXAYywV6yCW0ejzY3IZicG oaW0F8YP4sRVs4xYKTc/aZuXhUz2iuCv8hGxTFNkV6M5o3ioANxC4V7eu32pJsPt XCB66YCgf26S/pT7TV1c+zxb1Qmv2G1G -----END CERTIFICATE-----Generated at Sun Jan 25 09:36:30 2026 by rpki-client