This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: 5aGfkpVXM/OPUHrQPh+kjMU5Y00/WTB/UlCRSU3Mi34= Subject key identifier: 09:C2:3C:8B:70:5C:AD:C8:E0:FD:FD:5D:C0:1F:04:56:79:48:36:4A Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 03DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 03D7 Signing time: Sat 24 Jan 2026 23:46:15 +0000 Manifest this update: Sat 24 Jan 2026 23:46:15 +0000 Manifest next update: Sat 31 Jan 2026 23:46:15 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: 1HQJwhptw0Dwl7XhSqS7re4GDKNolI862Nc066RsAyc=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: 3vUZjFTkW2synuvsfLkZE7Uj9BWq6GQxB8oRjg8f8YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 988 (0x3dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Jan 24 23:46:15 2026 GMT Not After : Jan 31 23:46:15 2026 GMT Subject: CN=697559c7-d2e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:40:d3:1a:fd:7a:8f:3c:ca:dd:2d:4c:7c:22: f8:f2:2f:48:16:70:e5:10:d0:83:f0:64:ae:81:1b: b0:3f:cc:a0:9d:d8:e2:f5:a9:44:f4:57:09:4a:9e: 52:57:fd:a5:92:e0:56:91:8a:36:70:6b:c3:49:46: 10:57:28:f0:42:09:9c:dd:c2:d8:cf:78:d6:c1:f5: 5d:cb:4a:1d:02:b4:2a:d4:2f:a0:52:4b:1a:4b:ed: 24:b5:97:4c:50:52:82:8a:91:ea:b3:01:82:96:11: c8:ec:a1:65:5c:7e:0b:60:54:cf:47:ed:1e:70:3c: 89:6d:c3:f5:9d:00:19:7f:71:de:23:c5:44:bb:ea: 55:6e:a7:a5:ca:b1:23:da:40:5e:75:ec:b8:3d:c3: 6c:18:8c:8f:47:c6:33:ad:0d:e8:79:c4:6d:b4:f1: c6:34:55:0a:e7:94:c2:e6:4a:b9:17:5e:30:f1:78: 4e:3c:8f:cc:c1:43:97:b5:05:bd:22:e6:d9:3c:84: 3b:d9:31:97:5e:db:6c:c6:09:45:90:f0:ac:da:6f: aa:41:c0:6b:e4:b2:0e:01:57:18:f8:22:3d:bd:72: 3f:c4:11:c9:62:c4:3d:1a:15:3d:9b:d9:fa:ac:41: 81:35:fe:ba:e3:a6:77:e4:17:d0:3c:4d:73:3b:f8: e3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C2:3C:8B:70:5C:AD:C8:E0:FD:FD:5D:C0:1F:04:56:79:48:36:4A X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:75:40:a0:94:20:30:ba:a5:8f:89:b0:79:1a:c6:8d:19:86: fc:a5:5b:58:fa:7e:c5:d6:fb:43:37:c4:c7:49:32:1d:68:48: b6:57:9c:2c:80:ea:af:51:2e:5a:f5:87:83:a2:72:f8:44:46: 1f:de:43:ae:09:68:1c:79:d7:09:68:a0:ad:bd:0c:10:5b:dd: 89:a5:fb:0d:2b:c6:bd:c7:43:db:0d:ad:df:6b:6e:b4:ad:d4: fe:b5:f6:65:0d:fa:f1:86:5c:1e:f3:7b:1b:82:4e:d4:88:bd: 95:a3:1e:ba:9e:2e:24:e5:2b:e3:24:3f:41:49:d8:96:10:2c: f3:73:7d:16:44:aa:96:ad:f2:4d:c9:58:7d:52:48:00:0c:48: 85:4e:ae:ec:c3:98:55:20:33:a3:2f:e0:00:be:3d:12:81:09: c3:af:0e:fd:f1:88:ab:4f:f4:6b:53:2d:69:df:d3:b3:34:64: b8:c5:a3:83:60:25:03:aa:4f:40:54:97:91:04:e9:f2:78:48: 6e:06:05:26:11:f9:21:06:f2:90:ef:79:2c:48:b3:00:b2:30: bf:89:77:ac:f8:ea:43:ad:25:f7:03:e3:a7:3a:8b:8d:54:ee: ee:5e:54:0c:46:ff:44:65:1c:62:cb:40:5e:a3:e5:2c:7a:b9: fe:06:ca:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjYwMTI0MjM0NjE1WhcNMjYwMTMxMjM0NjE1WjAYMRYwFAYD VQQDDA02OTc1NTljNy1kMmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10DTGv16jzzK3S1MfCL48i9IFnDlENCD8GSugRuwP8ygndji9alE9FcJSp5S V/2lkuBWkYo2cGvDSUYQVyjwQgmc3cLYz3jWwfVdy0odArQq1C+gUksaS+0ktZdM UFKCipHqswGClhHI7KFlXH4LYFTPR+0ecDyJbcP1nQAZf3HeI8VEu+pVbqelyrEj 2kBedey4PcNsGIyPR8YzrQ3oecRttPHGNFUK55TC5kq5F14w8XhOPI/MwUOXtQW9 IubZPIQ72TGXXttsxglFkPCs2m+qQcBr5LIOAVcY+CI9vXI/xBHJYsQ9GhU9m9n6 rEGBNf6646Z35BfQPE1zO/jjVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnCPItw XK3I4P39XcAfBFZ5SDZKMB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfdUCglCAwuqWPibB5GsaNGYb8pVtY+n7F1vtDN8THSTIdaEi2V5ws gOqvUS5a9YeDonL4REYf3kOuCWgcedcJaKCtvQwQW92JpfsNK8a9x0PbDa3fa260 rdT+tfZlDfrxhlwe83sbgk7UiL2Vox66ni4k5SvjJD9BSdiWECzzc30WRKqWrfJN yVh9UkgADEiFTq7sw5hVIDOjL+AAvj0SgQnDrw798YirT/RrUy1p39OzNGS4xaOD YCUDqk9AVJeRBOnyeEhuBgUmEfkhBvKQ73ksSLMAsjC/iXes+OpDrSX3A+OnOouN VO7uXlQMRv9EZRxiy0Beo+Usern+Bsro -----END CERTIFICATE-----Generated at Sun Jan 25 10:41:49 2026 by rpki-client