This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: RMEIj6l9iwD6rQpDIWTO57CuhQXMl4nuEH+IE5AVr3w= Subject key identifier: 21:CE:0E:D4:C8:05:FA:DD:C9:1C:BF:49:88:52:5A:D0:01:A1:41:8D Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1DA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D98 Signing time: Sat 24 Jan 2026 15:55:27 +0000 Manifest this update: Sat 24 Jan 2026 15:55:26 +0000 Manifest next update: Sat 31 Jan 2026 15:55:26 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: i9/gsQzsoPjLq/Y1Oq52lZCjQEqVlMQ16GglCYMRgJg=) 2: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: KJtFM/La7mL3fu5dlcMqDcraRcAtERap2FuVwdqAgkc=) 3: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: k8TIUAQe/uhiGTZr6cgQAthXD90vdh6WA7DCNugyFL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7591 (0x1da7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Jan 24 15:55:26 2026 GMT Not After : Jan 31 15:55:26 2026 GMT Subject: CN=6974eb6f-671d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9e:8f:ae:82:f7:2e:1a:d9:ef:86:a4:5c:f4: b5:79:5f:f8:e4:60:0c:bb:ef:16:10:cf:2e:c1:1f: 17:1c:78:6f:a4:7c:1d:6d:8c:4e:66:fc:46:30:0d: a2:41:85:ed:3e:43:f6:4f:cd:ea:bd:36:bd:77:8a: bb:17:21:58:e0:3a:09:69:9a:37:86:fb:9a:35:69: c2:3b:da:c5:5b:7c:c3:8d:c3:5c:8b:a0:cb:b2:5a: 99:b6:95:fc:e5:96:a2:37:74:b1:32:fc:40:d1:83: 04:28:c4:b0:7a:93:41:33:41:ae:e4:5c:81:5c:f1: 53:1d:3d:0e:96:76:e9:f1:9c:80:dc:87:2f:a5:e3: 78:13:81:dc:95:25:0e:65:3e:14:d0:ca:9a:c3:12: 8f:19:91:7d:cd:62:eb:2b:ef:94:b7:c7:c1:cd:5f: c1:27:20:ad:61:60:b3:6b:f0:84:78:f5:a8:ce:ad: 84:7f:a1:d0:b7:c9:71:b9:3a:fe:26:13:8d:c6:db: 56:42:23:3e:9d:f4:45:f4:74:74:b5:6a:22:cc:de: 2d:f7:86:c0:1c:3c:cc:5c:4c:29:6a:06:ff:22:1b: 8a:89:15:62:ca:36:ad:08:31:5a:c9:ad:69:95:0c: 49:f6:37:19:b6:a7:b9:0a:90:7a:7a:69:af:f2:b9: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CE:0E:D4:C8:05:FA:DD:C9:1C:BF:49:88:52:5A:D0:01:A1:41:8D X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:08:b5:2c:52:bb:0a:8b:f2:ce:bc:f2:e7:2e:fd:e7:c6:dd: fe:a4:24:91:e9:75:0f:03:f3:b9:e8:14:7f:a2:ea:e9:9e:30: e9:37:f3:09:e5:5f:a9:4d:99:a4:87:fd:a1:2a:0b:d3:70:a3: 4b:73:47:3e:5c:d6:e1:bf:e6:ba:a1:33:29:55:11:c7:64:23: 71:37:7c:3a:7f:ca:43:17:64:99:ba:45:ce:90:5b:40:5b:99: 9c:4b:fd:44:4e:21:ca:a7:9f:41:08:90:c9:cb:59:5d:8a:27: e9:0e:1c:6a:61:53:3b:f8:38:72:1b:3e:06:9e:8b:bb:2d:58: 8c:d2:af:a0:7a:32:48:2c:be:b5:3e:48:51:74:85:83:5e:aa: 54:1e:fa:ef:8e:6f:2c:3c:50:b1:ea:91:43:94:d2:d8:ec:61: af:5a:68:ec:04:0f:c5:7d:cd:bc:f3:30:e1:3d:f8:0c:df:75: 1c:67:9a:c4:dc:81:7f:aa:01:1f:7b:70:87:ba:48:ae:89:5b: a1:9a:48:c3:f0:f6:ba:a3:fb:76:9c:57:4b:3f:f9:3e:26:fc: d3:83:59:fb:1a:dc:4d:d7:dc:b3:a5:20:17:8a:8e:9a:10:91: a6:1d:4b:4a:6f:b4:7b:11:cf:b5:17:ef:ad:b5:6d:ca:a4:2e: 61:d5:79:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjYwMTI0MTU1NTI2WhcNMjYwMTMxMTU1NTI2WjAYMRYwFAYD VQQDDA02OTc0ZWI2Zi02NzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ6ProL3LhrZ74akXPS1eV/45GAMu+8WEM8uwR8XHHhvpHwdbYxOZvxGMA2i QYXtPkP2T83qvTa9d4q7FyFY4DoJaZo3hvuaNWnCO9rFW3zDjcNci6DLslqZtpX8 5ZaiN3SxMvxA0YMEKMSwepNBM0Gu5FyBXPFTHT0Olnbp8ZyA3IcvpeN4E4HclSUO ZT4U0MqawxKPGZF9zWLrK++Ut8fBzV/BJyCtYWCza/CEePWozq2Ef6HQt8lxuTr+ JhONxttWQiM+nfRF9HR0tWoizN4t94bAHDzMXEwpagb/IhuKiRViyjatCDFaya1p lQxJ9jcZtqe5CpB6emmv8rl5NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHODtTI BfrdyRy/SYhSWtABoUGNMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3CLUsUrsKi/LOvPLnLv3nxt3+pCSR6XUPA/O56BR/ourpnjDpN/MJ 5V+pTZmkh/2hKgvTcKNLc0c+XNbhv+a6oTMpVRHHZCNxN3w6f8pDF2SZukXOkFtA W5mcS/1ETiHKp59BCJDJy1ldiifpDhxqYVM7+DhyGz4Gnou7LViM0q+gejJILL61 PkhRdIWDXqpUHvrvjm8sPFCx6pFDlNLY7GGvWmjsBA/Ffc288zDhPfgM33UcZ5rE 3IF/qgEfe3CHukiuiVuhmkjD8Pa6o/t2nFdLP/k+JvzTg1n7GtxN19yzpSAXio6a EJGmHUtKb7R7Ec+1F++ttW3KpC5h1Xmj -----END CERTIFICATE-----Generated at Sun Jan 25 08:15:29 2026 by rpki-client