This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft File: 7w5JMvxot1LjQokiqT5mq-MfNDE.mft (raw, json) Hash identifier: 3L/AEqLuwU3u5+NJV+z7512EMwMSJ2gM3sgGOXFdV+g= Subject key identifier: 04:A9:49:F1:2F:CC:5E:F3:02:79:97:89:D1:B2:75:4E:9D:F1:E6:7A Authority key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 Certificate issuer: /CN=A91B4B33/serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft Manifest number: 0133 Signing time: Sun 25 Jan 2026 03:44:54 +0000 Manifest this update: Sun 25 Jan 2026 03:44:54 +0000 Manifest next update: Sun 01 Feb 2026 03:44:54 +0000 Files and hashes: 1: 7w5JMvxot1LjQokiqT5mq-MfNDE.crl (hash: Ra7SHB1Vc1lgcePQFSvBboT8CvJOxMfCdFAsaXUvjms=) 2: 80741B04221F11EF92A42E1AC4F9AE02.roa (hash: tCXmsiS2pZhfyBR2w7/CD7l4+Sf7uzGB1XazUIv4/b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Validity Not Before: Jan 25 03:44:54 2026 GMT Not After : Feb 1 03:44:54 2026 GMT Subject: CN=697591b6-bd1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:68:6f:0d:ef:73:d4:3f:d3:d6:1b:00:bd: b1:7b:a0:23:f1:0c:c0:99:2f:08:60:18:ac:a9:4d: d2:86:14:f8:5d:65:96:5b:39:25:a6:03:56:2d:eb: 9c:dc:ad:b3:21:16:79:c0:8a:9c:9b:a5:0c:34:96: e3:ba:89:be:70:c0:5e:59:d6:8e:f8:4d:a4:67:d4: e0:9c:e8:61:d6:c0:de:0a:ef:8d:d6:dc:e7:88:63: 8c:00:b5:93:b5:46:db:d1:e8:26:62:98:a8:ce:c8: bf:55:10:28:b4:73:af:10:74:70:7c:cd:5b:6d:f7: 51:f1:71:c7:54:37:7b:f3:0c:04:2d:14:69:8a:72: db:10:ca:c1:4a:82:2d:ce:5d:15:10:97:35:96:dd: a5:e2:5f:e5:6c:5c:b9:13:15:bf:91:07:78:d7:7e: d1:ad:6b:59:74:56:48:51:33:21:8a:ef:5e:93:57: b2:9c:5b:63:50:79:3b:71:ee:69:3c:95:86:17:7b: 90:31:2d:ab:51:ba:37:66:03:d8:c6:7b:d6:94:0e: 8f:0e:e0:c8:8d:e6:83:1d:ce:30:78:28:7e:21:3e: 83:96:e0:91:51:13:5e:f7:5e:73:f2:90:e3:6e:8a: 93:4d:b5:48:1e:25:fc:81:2a:d0:90:7b:e7:d4:a6: 9d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A9:49:F1:2F:CC:5E:F3:02:79:97:89:D1:B2:75:4E:9D:F1:E6:7A X509v3 Authority Key Identifier: keyid:EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:32:8a:e3:01:87:b1:60:9e:d7:d9:98:67:67:4f:3e:69:fc: 49:a9:a7:c2:1d:11:84:11:cd:5e:91:c1:ea:a0:34:62:5c:1c: ee:1a:4c:15:56:c5:9c:03:8f:e5:47:f4:31:e0:15:c0:64:64: 6f:06:ee:53:25:fa:52:24:e7:af:fe:86:c6:5d:28:7b:cf:d3: 5e:fe:3d:36:26:bb:14:eb:48:eb:99:f9:b1:0c:a3:bd:e9:f9: 10:2e:a2:8e:07:9d:bb:e8:1c:e8:da:58:c2:5a:80:c2:d6:62: 43:88:39:f4:3d:c8:4a:df:6b:26:75:bc:ae:98:fe:93:a1:30: 47:c2:2a:0c:94:07:93:53:e4:96:2e:5f:e3:e8:de:a0:fd:36: 60:73:0a:b0:8c:72:ff:3c:23:2d:7f:bb:5b:be:1f:26:53:00: f8:fd:c8:af:66:49:df:da:7f:ae:a5:ff:a2:ee:d4:71:50:e4: 6f:dd:4d:5f:b2:6f:b0:87:ca:ec:65:5b:28:c6:04:e1:8f:a7: 9a:41:28:9a:20:69:1f:37:0a:3e:40:9f:d5:da:14:77:42:be: ee:1d:8d:cf:b1:49:63:81:d1:08:57:c6:90:13:e1:53:7c:6b: e3:e1:46:a1:99:82:b0:fb:c0:9d:e4:84:b4:0e:99:61:6b:a8: bf:c7:29:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEVGMEU0OTMyRkM2OEI3NTJFMzQyODkyMkE5M0U2NkFC RTMxRjM0MzEwHhcNMjYwMTI1MDM0NDU0WhcNMjYwMjAxMDM0NDU0WjAYMRYwFAYD VQQDDA02OTc1OTFiNi1iZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrJobw3vc9Q/09YbAL2xe6Aj8QzAmS8IYBisqU3ShhT4XWWWWzklpgNWLeuc 3K2zIRZ5wIqcm6UMNJbjuom+cMBeWdaO+E2kZ9TgnOhh1sDeCu+N1tzniGOMALWT tUbb0egmYpiozsi/VRAotHOvEHRwfM1bbfdR8XHHVDd78wwELRRpinLbEMrBSoIt zl0VEJc1lt2l4l/lbFy5ExW/kQd4137RrWtZdFZIUTMhiu9ek1eynFtjUHk7ce5p PJWGF3uQMS2rUbo3ZgPYxnvWlA6PDuDIjeaDHc4weCh+IT6DluCRURNe915z8pDj boqTTbVIHiX8gSrQkHvn1KaduQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASpSfEv zF7zAnmXidGydU6d8eZ6MB8GA1UdIwQYMBaAFO8OSTL8aLdS40KJIqk+ZqvjHzQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8xQUNFN0QwNDIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3QxTGpRb2tpcVQ1bXEtTWZO REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzd3NUpNdnhvdDFMalFva2lxVDVtcS1NZk5ERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8xQUNFN0QwNDIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3Qx TGpRb2tpcVQ1bXEtTWZOREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiMorjAYexYJ7X2ZhnZ08+afxJqafCHRGEEc1ekcHqoDRiXBzuGkwV VsWcA4/lR/Qx4BXAZGRvBu5TJfpSJOev/obGXSh7z9Ne/j02JrsU60jrmfmxDKO9 6fkQLqKOB5276Bzo2ljCWoDC1mJDiDn0PchK32smdbyumP6ToTBHwioMlAeTU+SW Ll/j6N6g/TZgcwqwjHL/PCMtf7tbvh8mUwD4/civZknf2n+upf+i7tRxUORv3U1f sm+wh8rsZVsoxgThj6eaQSiaIGkfNwo+QJ/V2hR3Qr7uHY3PsUljgdEIV8aQE+FT fGvj4UahmYKw+8Cd5IS0Dplha6i/xyn9 -----END CERTIFICATE-----Generated at Sun Jan 25 17:04:26 2026 by rpki-client