This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: thnLQ6DECIwlFmdl3jAP3SFQzh5hhNTOhMJs6hZp5pQ= Subject key identifier: 8E:90:0A:2F:07:AB:1D:31:2A:F3:7D:1E:1E:C5:94:9E:7A:C6:01:AD Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: ED Signing time: Sun 25 Jan 2026 04:35:47 +0000 Manifest this update: Sun 25 Jan 2026 04:35:47 +0000 Manifest next update: Sun 01 Feb 2026 04:35:47 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: CQjGSOAln/vVRZJc3ek447A0eD6swLzL289G2lUwjfY=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: iA472Qc8jmcAQSQWONhwLi8d73fir6sYTg+zRw+sbrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Jan 25 04:35:47 2026 GMT Not After : Feb 1 04:35:47 2026 GMT Subject: CN=69759da3-493b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:83:2a:86:5b:db:2a:e7:88:d1:c9:67:53:b5: 38:9e:17:ca:4f:99:a4:8a:ae:5f:d5:b2:5d:5e:9d: 62:fe:64:bd:6e:93:40:3f:86:73:25:10:83:bb:43: 74:88:0b:4f:9f:df:4f:ef:31:99:59:7c:7d:b4:ad: e0:c3:5c:b1:81:7b:4c:32:f0:3e:5d:72:62:be:86: a5:ea:47:2c:8e:a4:cb:a8:17:af:3a:e8:56:1d:cc: 57:c6:46:e7:7a:70:21:96:8a:8b:c5:ac:a9:59:ed: a3:ef:ec:a0:e1:df:4f:f3:4f:f6:3e:c6:ac:72:e4: de:d3:40:f0:9e:7d:4c:ab:3e:9b:0b:bc:af:fd:cb: 6a:52:28:50:fd:e6:5d:07:fc:4d:fd:01:d0:e8:7f: 9c:e8:a2:91:0f:4f:cb:b5:7d:4c:63:1b:e1:4e:67: 13:e6:0e:62:8b:7f:44:da:6c:40:24:7f:ab:e4:b3: 8b:4b:b1:57:50:b5:0d:ac:f3:b5:f8:71:5d:b0:37: 78:4a:f3:0d:7b:91:35:d9:68:56:2f:9a:88:22:6f: 51:5d:20:96:84:d8:42:24:ec:80:ba:67:76:6b:92: c9:fd:b7:8d:4f:ab:35:df:58:b3:ed:71:b5:c2:e7: c9:33:56:71:93:83:31:21:b7:5e:a8:0a:07:b8:2e: 9d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:90:0A:2F:07:AB:1D:31:2A:F3:7D:1E:1E:C5:94:9E:7A:C6:01:AD X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ac:15:f4:59:ee:9c:a2:fc:cf:fe:4b:1a:6f:ac:88:31:92: 8f:69:79:95:5d:51:a1:f7:c2:10:8b:05:04:fc:e4:7c:f4:12: 1c:bd:e7:ee:d1:de:71:7a:4e:01:3f:7b:95:75:43:ed:4e:ed: 7a:d6:b7:7c:a9:03:1f:b9:dc:7a:2e:5f:69:45:9b:db:75:e0: 57:f6:d4:cc:a9:7c:9d:a8:ca:3c:c9:55:11:fe:c5:7e:62:27: eb:50:ee:01:11:d7:cd:89:e4:87:c1:87:24:f4:6c:19:7f:81: 27:4f:c4:68:bb:f1:47:28:2a:65:00:b7:3e:d6:25:e7:35:52: b5:47:16:80:d7:23:63:36:23:8b:ea:f2:46:ad:61:e7:7e:5e: 73:c8:61:7b:f0:c8:8c:16:37:52:76:82:0e:98:93:16:d1:23: af:10:2a:f7:9c:f0:ca:66:6c:3a:04:5e:4b:0a:4b:07:69:55: c3:96:d7:bb:1e:8b:17:70:9a:d6:8b:e6:2a:bd:aa:21:f4:3d: c0:aa:07:9f:fe:d5:5e:ae:c0:9c:41:4f:1b:41:97:0b:0a:0d: 68:3e:79:02:ad:62:0e:2b:20:1c:6c:db:e6:1e:05:55:32:ff: 5d:c4:82:cd:e9:35:5e:e3:b7:39:23:b7:1a:3d:50:ac:bb:1f: 56:20:0e:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjYwMTI1MDQzNTQ3WhcNMjYwMjAxMDQzNTQ3WjAYMRYwFAYD VQQDDA02OTc1OWRhMy00OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoMqhlvbKueI0clnU7U4nhfKT5mkiq5f1bJdXp1i/mS9bpNAP4ZzJRCDu0N0 iAtPn99P7zGZWXx9tK3gw1yxgXtMMvA+XXJivoal6kcsjqTLqBevOuhWHcxXxkbn enAhloqLxaypWe2j7+yg4d9P80/2PsascuTe00Dwnn1Mqz6bC7yv/ctqUihQ/eZd B/xN/QHQ6H+c6KKRD0/LtX1MYxvhTmcT5g5ii39E2mxAJH+r5LOLS7FXULUNrPO1 +HFdsDd4SvMNe5E12WhWL5qIIm9RXSCWhNhCJOyAumd2a5LJ/beNT6s131iz7XG1 wufJM1Zxk4MxIbdeqAoHuC6dKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6QCi8H qx0xKvN9Hh7FlJ56xgGtMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqrBX0We6covzP/ksab6yIMZKPaXmVXVGh98IQiwUE/OR89BIcvefu 0d5xek4BP3uVdUPtTu161rd8qQMfudx6Ll9pRZvbdeBX9tTMqXydqMo8yVUR/sV+ YifrUO4BEdfNieSHwYck9GwZf4EnT8Rou/FHKCplALc+1iXnNVK1RxaA1yNjNiOL 6vJGrWHnfl5zyGF78MiMFjdSdoIOmJMW0SOvECr3nPDKZmw6BF5LCksHaVXDlte7 HosXcJrWi+Yqvaoh9D3Aqgef/tVersCcQU8bQZcLCg1oPnkCrWIOKyAcbNvmHgVV Mv9dxILN6TVe47c5I7caPVCsux9WIA40 -----END CERTIFICATE-----Generated at Sun Jan 25 10:45:58 2026 by rpki-client