This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft File: 09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json) Hash identifier: BCpVypk1fKMyDjk1Az2WcghJGSqogyPNC7xdy3Rwtk8= Subject key identifier: 8E:D1:25:58:97:51:71:34:B0:38:93:AF:FC:C5:12:19:C3:DE:E4:48 Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A Certificate issuer: /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft Manifest number: FA Signing time: Sun 25 Jan 2026 00:23:09 +0000 Manifest this update: Sun 25 Jan 2026 00:23:09 +0000 Manifest next update: Sun 01 Feb 2026 00:23:09 +0000 Files and hashes: 1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: UyZi9cynQ79XmiZa1NUpQPYMlm8IGJOX/UhVc3L3tWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77, serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Validity Not Before: Jan 25 00:23:09 2026 GMT Not After : Feb 1 00:23:09 2026 GMT Subject: CN=6975626d-bbef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a4:ae:0d:17:80:12:2e:32:14:99:11:a0:a0: a3:14:97:68:bc:e5:6e:a0:da:e0:95:4a:c9:5a:e2: 8a:51:f2:e4:4e:ae:74:9e:4a:ba:49:94:d1:d0:1d: 28:df:b3:f5:3b:57:ce:33:0d:8b:d5:c7:87:a5:d3: 3d:6b:25:7a:bf:29:bf:1b:77:54:6a:7b:24:6c:1d: 47:e0:c8:b7:e7:00:f0:ce:9a:9c:7f:94:fd:ea:ae: 54:48:2f:76:6a:b4:55:e6:59:c2:6e:9b:e7:2d:f1: ea:60:25:f0:2a:06:f8:3c:64:97:f2:e9:8d:13:90: bf:0b:7a:b6:6b:a6:80:08:cd:60:00:9a:18:06:15: de:fd:88:26:27:20:c5:73:6c:94:a0:9f:bf:76:37: 8b:07:a4:92:ec:02:6c:16:79:b1:4c:e8:1d:e4:93: 2f:c5:3a:4d:85:a6:bb:40:e1:3d:04:7d:2f:bb:92: 02:a2:c7:57:3f:78:46:7d:2f:94:46:5c:26:a7:e4: b1:21:6a:6a:0f:40:6f:21:99:3e:bb:66:76:07:75: d1:46:41:f9:c0:dd:60:9a:f3:25:b6:f2:f1:83:eb: a7:6c:76:8e:7d:7f:5c:8b:4b:0e:25:bc:85:4f:8d: c3:ea:5d:0f:1e:85:8e:b5:b9:47:9d:e1:28:35:05: d7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D1:25:58:97:51:71:34:B0:38:93:AF:FC:C5:12:19:C3:DE:E4:48 X509v3 Authority Key Identifier: keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c1:5b:27:59:d8:c9:ff:81:1b:0c:c1:95:96:5c:c6:03:7a: d6:97:67:22:48:6d:8f:2f:62:31:25:12:aa:87:12:3f:38:df: 07:3f:e2:f1:11:4a:fe:df:b3:5c:0d:16:63:b4:21:ba:d1:30: 95:85:1b:e3:89:01:2a:c7:2a:f0:92:39:79:f0:f0:7c:31:dd: be:24:23:d5:7a:91:2e:3d:85:99:b9:e0:86:88:69:0c:4e:fa: 31:a1:15:cb:f2:f6:14:53:5e:90:74:9d:81:17:13:b9:b3:b1: ed:49:6a:39:35:45:80:4e:5a:4e:f7:3e:24:9a:86:cf:90:cc: b0:fa:f1:9e:60:a0:3b:92:43:51:50:6f:3c:3c:c7:8a:d5:ed: aa:15:d9:d8:58:32:40:bc:da:56:58:a9:17:87:63:f5:66:3e: fe:e7:9c:46:57:83:5a:94:76:63:36:62:66:53:4e:c7:09:5c: 47:5e:da:0e:a5:63:7f:d9:e6:e5:45:4f:25:1d:c2:ef:c2:96: ba:49:d5:c0:33:87:9f:35:f5:28:a4:0a:5e:aa:18:7e:11:54: 8e:6b:21:8d:20:d2:4d:9b:59:ba:e1:6a:e1:ee:4c:da:f2:d0: ed:cc:93:48:b2:48:33:f7:b9:a7:b7:71:02:24:2e:71:d1:0a: 44:86:0f:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKEQzRDc4M0VFNEM2OUJCNTA2M0ZCNUNGNUIyNjI4QkM3 QkVDMzc0OEEwHhcNMjYwMTI1MDAyMzA5WhcNMjYwMjAxMDAyMzA5WjAYMRYwFAYD VQQDDA02OTc1NjI2ZC1iYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36SuDReAEi4yFJkRoKCjFJdovOVuoNrglUrJWuKKUfLkTq50nkq6SZTR0B0o 37P1O1fOMw2L1ceHpdM9ayV6vym/G3dUanskbB1H4Mi35wDwzpqcf5T96q5USC92 arRV5lnCbpvnLfHqYCXwKgb4PGSX8umNE5C/C3q2a6aACM1gAJoYBhXe/YgmJyDF c2yUoJ+/djeLB6SS7AJsFnmxTOgd5JMvxTpNhaa7QOE9BH0vu5ICosdXP3hGfS+U Rlwmp+SxIWpqD0BvIZk+u2Z2B3XRRkH5wN1gmvMltvLxg+unbHaOfX9ci0sOJbyF T43D6l0PHoWOtblHneEoNQXXUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7RJViX UXE0sDiTr/zFEhnD3uRIMB8GA1UdIwQYMBaAFNPXg+5MabtQY/tc9bJii8e+w3SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9BQjg1MzQ0MDdB M0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUxQmotMXoxc21LTHg3N0Rk SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA5ZUQ3a3hwdTFCai0xejFzbUtMeDc3RGRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUE3Ny9BQjg1MzQ0MDdBM0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUx QmotMXoxc21LTHg3N0RkSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcwVsnWdjJ/4EbDMGVllzGA3rWl2ciSG2PL2IxJRKqhxI/ON8HP+Lx EUr+37NcDRZjtCG60TCVhRvjiQEqxyrwkjl58PB8Md2+JCPVepEuPYWZueCGiGkM TvoxoRXL8vYUU16QdJ2BFxO5s7HtSWo5NUWATlpO9z4kmobPkMyw+vGeYKA7kkNR UG88PMeK1e2qFdnYWDJAvNpWWKkXh2P1Zj7+55xGV4NalHZjNmJmU07HCVxHXtoO pWN/2eblRU8lHcLvwpa6SdXAM4efNfUopApeqhh+EVSOayGNINJNm1m64Wrh7kza 8tDtzJNIskgz97mnt3ECJC5x0QpEhg/k -----END CERTIFICATE-----Generated at Sun Jan 25 20:10:40 2026 by rpki-client