This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: cEQw90A5NuahvmTXl8SEIo+VlTRM9MOgwQTrCH7lI9Q= Subject key identifier: 77:94:39:5C:AF:5C:AE:FA:C9:92:11:22:BC:B2:8B:09:19:61:E5:15 Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0D17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0CE8 Signing time: Sat 24 Jan 2026 17:51:34 +0000 Manifest this update: Sat 24 Jan 2026 17:51:34 +0000 Manifest next update: Sat 31 Jan 2026 17:51:34 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: 1TLGvavRt9L1flx9c6zI6xOyPXcb/i3u1xq5TQZgQ00=) 2: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: coEgjngsR/Ce6vFWSBZaZ5rCfdvEVYlwbgZyFrxHv0s=) 3: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +t2OsFQRgFf0c7jNBR5fu1U2IpPKMIuwM5iZNaY//qo=) 4: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: 5MqZOZoSVhwobP4LcJgxINFesjcjTvuIMp43rKBprmw=) 5: 5B47C2265D8411F0BBB04858C4F9AE02.roa (hash: Uur2jCKI44RTppdHPrBOV4rDdME7NfVW8X3JWQwRDe0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3351 (0xd17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: Jan 24 17:51:34 2026 GMT Not After : Jan 31 17:51:34 2026 GMT Subject: CN=697506a6-eb4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:aa:99:14:67:e6:65:a9:fe:09:77:a1:e6:ad: 6d:e2:85:11:b1:df:a4:ea:0e:2b:19:51:43:28:aa: aa:34:88:72:9b:09:1a:6f:2b:ee:26:4f:08:95:7c: be:f0:94:18:6a:7f:8c:05:d2:fe:aa:71:88:87:89: 97:48:32:a0:be:ce:b8:3f:b7:40:05:c1:77:05:47: 0a:ee:4b:22:6e:c0:97:46:f1:74:95:ab:c4:1d:af: a3:6c:53:13:36:69:68:f5:c2:e3:0b:27:b9:ff:e0: d1:59:2e:e2:2a:96:95:d0:47:b7:1b:a1:42:19:92: f4:cd:bb:7a:d3:10:7b:22:d3:36:48:b4:6e:c5:87: 1d:91:b6:45:99:8b:fc:43:67:d6:4d:7d:92:b6:94: 7f:96:08:e4:8d:67:27:30:98:84:7f:f9:4b:a7:95: 7d:2c:2a:91:fe:0d:1f:e7:a9:3b:23:b9:2d:a0:5f: 6b:56:8b:6d:05:2f:c1:3c:8e:8b:3e:f3:f1:16:e9: 24:ad:34:b2:9e:4c:51:11:6f:4a:91:56:d8:46:15: f4:ad:72:9f:87:b7:04:d2:44:88:9b:b5:7b:81:c5: 20:4b:df:2a:33:6b:a4:39:0d:5f:31:18:eb:ad:05: 2b:e0:e5:1d:dc:2b:f3:58:f8:2d:9c:ec:37:43:f3: 08:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:94:39:5C:AF:5C:AE:FA:C9:92:11:22:BC:B2:8B:09:19:61:E5:15 X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9c:87:3d:ea:7d:99:fd:1c:9b:b3:ab:d8:e9:5b:b8:d7:76: 66:6f:da:14:bd:60:ff:67:94:de:02:7b:65:c1:6c:df:5b:99: dd:12:c9:68:4a:25:54:06:98:f5:35:62:e9:9c:31:23:0a:76: d5:3a:25:61:95:24:46:d6:db:83:68:49:4d:3b:7d:48:9a:07: 62:4a:4f:57:29:0e:36:f1:ce:79:38:7b:96:b4:03:2f:77:81: 70:f8:e1:c6:93:0d:dd:f0:62:b4:c5:ca:c5:32:c4:62:60:75: b6:b2:49:c8:07:e6:4a:f6:fd:8f:93:fc:31:6b:81:95:82:02: 5b:f5:a4:f0:bd:16:2f:d0:11:3e:21:7c:5b:ad:6e:4a:98:3c: 2a:51:4c:ea:7c:28:ed:2e:e9:12:d2:6b:44:76:b4:6e:14:ff: 3a:1a:5e:ad:37:d8:a7:56:b2:bf:d8:b9:22:c3:be:3e:b6:2d: b2:24:5e:e0:0a:72:06:79:39:69:71:44:67:01:d8:96:c7:71: 6e:96:87:8e:7a:09:95:dc:c0:8e:46:9a:d8:6f:67:c8:7a:c5: ff:c2:31:54:58:6f:4b:73:21:3f:f4:cd:f8:f0:50:53:ed:54: b6:68:c7:17:1e:53:78:1d:2c:9f:12:16:93:52:5f:78:f6:38: 23:4b:e7:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjYwMTI0MTc1MTM0WhcNMjYwMTMxMTc1MTM0WjAYMRYwFAYD VQQDDA02OTc1MDZhNi1lYjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aqZFGfmZan+CXeh5q1t4oURsd+k6g4rGVFDKKqqNIhymwkabyvuJk8IlXy+ 8JQYan+MBdL+qnGIh4mXSDKgvs64P7dABcF3BUcK7ksibsCXRvF0lavEHa+jbFMT Nmlo9cLjCye5/+DRWS7iKpaV0Ee3G6FCGZL0zbt60xB7ItM2SLRuxYcdkbZFmYv8 Q2fWTX2StpR/lgjkjWcnMJiEf/lLp5V9LCqR/g0f56k7I7ktoF9rVottBS/BPI6L PvPxFukkrTSynkxREW9KkVbYRhX0rXKfh7cE0kSIm7V7gcUgS98qM2ukOQ1fMRjr rQUr4OUd3CvzWPgtnOw3Q/MIYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeUOVyv XK76yZIRIryyiwkZYeUVMB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBunIc96n2Z/Rybs6vY6Vu413Zmb9oUvWD/Z5TeAntlwWzfW5ndEslo SiVUBpj1NWLpnDEjCnbVOiVhlSRG1tuDaElNO31ImgdiSk9XKQ428c55OHuWtAMv d4Fw+OHGkw3d8GK0xcrFMsRiYHW2sknIB+ZK9v2Pk/wxa4GVggJb9aTwvRYv0BE+ IXxbrW5KmDwqUUzqfCjtLukS0mtEdrRuFP86Gl6tN9inVrK/2Lkiw74+ti2yJF7g CnIGeTlpcURnAdiWx3FuloeOegmV3MCORprYb2fIesX/wjFUWG9LcyE/9M348FBT 7VS2aMcXHlN4HSyfEhaTUl949jgjS+d6 -----END CERTIFICATE-----Generated at Sun Jan 25 06:19:52 2026 by rpki-client