This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: Sd/vAEWDOd1DA7zHmBMUzOnx+v0oqDjh5Uwfti7e228= Subject key identifier: C8:70:27:2E:89:80:FC:17:F7:17:15:92:40:30:F7:64:BE:42:CD:FA Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 04AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 04A7 Signing time: Sat 24 Jan 2026 23:12:28 +0000 Manifest this update: Sat 24 Jan 2026 23:12:28 +0000 Manifest next update: Sat 31 Jan 2026 23:12:28 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: 2oLvRZY5QB9zohozGZFej7O+9SXyaLuk+65KOR1rA/Y=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: d0J88SK5w417X1yK7QAViqe9ZfM9K8T6FnLHWkQvyP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Jan 24 23:12:28 2026 GMT Not After : Jan 31 23:12:28 2026 GMT Subject: CN=697551dc-b523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a0:de:71:10:b8:6b:b3:b5:c3:5a:f7:27:02: 4b:0e:9e:38:f1:69:92:f3:11:5a:3c:1e:03:42:6a: 62:79:b6:f9:2c:46:84:2d:9b:09:10:2d:71:75:17: e0:f1:40:74:f7:0a:19:6a:07:41:a1:69:f9:9b:07: 93:22:91:b1:82:38:a1:32:1a:d0:29:f3:74:5d:59: 6d:b1:48:fb:51:47:21:f9:98:1a:5c:42:08:c2:53: e8:9a:91:2e:59:d9:4a:94:dd:11:f9:1a:3b:e8:01: a0:1e:9d:5e:bb:d4:84:03:4c:02:1d:19:40:15:1b: 21:ff:d6:92:25:d8:62:cc:1c:02:0e:df:39:a8:3f: 7e:a8:33:cb:64:56:8b:13:5f:83:fc:8e:a1:c6:9f: ec:e9:b2:00:f1:c8:d7:5f:e5:78:35:2d:2b:5a:b1: 55:66:9b:93:4b:12:8d:92:00:54:d8:90:85:36:80: e4:21:0e:a7:fb:ae:a7:4f:10:ad:61:90:61:22:3a: 16:ab:1b:5b:f5:82:5f:63:71:01:08:ad:50:e5:37: fa:59:0e:09:ed:6a:27:46:dc:e4:25:56:11:61:6b: b8:5e:46:db:01:4b:a1:a4:af:8e:c7:2c:5a:f6:f2: 00:44:c0:91:6c:ee:49:c6:08:95:b8:e6:15:ee:39: 3a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:70:27:2E:89:80:FC:17:F7:17:15:92:40:30:F7:64:BE:42:CD:FA X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:6d:e8:96:a7:c4:4b:29:4a:06:e1:85:d6:a4:8d:82:4c:fb: bf:8f:1e:a8:f0:2d:ea:59:c1:34:b1:65:4d:97:fa:f6:41:5b: 97:b9:62:3b:f4:81:af:21:2e:f8:dc:7d:b1:8b:e0:04:41:98: f9:fd:7c:06:5f:9e:ce:9f:90:39:c1:52:42:25:42:07:12:e0: b7:c9:fc:87:a0:0e:00:36:09:ef:90:40:ea:bb:ca:0f:10:aa: ae:dd:0b:d8:18:d6:aa:aa:19:af:96:8f:3c:95:89:9c:90:5a: d8:27:0b:1f:5d:fb:db:32:c5:73:f3:e3:f2:b9:2c:e3:57:9a: 1f:84:89:bf:6c:c6:ca:96:83:be:16:02:fa:0f:0f:98:a8:5a: 5c:28:fb:15:52:77:2a:70:14:d5:6e:1e:9d:77:c4:9b:32:95: 44:51:23:80:36:e2:28:25:15:e1:b3:c2:2c:50:2c:2b:9a:2c: 12:de:70:a7:ab:7f:17:5b:30:a0:de:83:e6:29:fe:7f:bb:5d: b6:0f:31:a9:0c:6c:40:f7:b2:a9:c3:91:08:f5:09:71:ce:67: 80:d6:fe:d7:29:d9:73:33:e0:31:a4:bd:d8:a5:80:2f:d6:bf: 82:0e:83:8f:e6:72:60:5a:36:f0:05:9c:c3:4a:41:f8:44:54: 47:bb:b6:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjYwMTI0MjMxMjI4WhcNMjYwMTMxMjMxMjI4WjAYMRYwFAYD VQQDDA02OTc1NTFkYy1iNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KDecRC4a7O1w1r3JwJLDp448WmS8xFaPB4DQmpiebb5LEaELZsJEC1xdRfg 8UB09woZagdBoWn5mweTIpGxgjihMhrQKfN0XVltsUj7UUch+ZgaXEIIwlPompEu WdlKlN0R+Ro76AGgHp1eu9SEA0wCHRlAFRsh/9aSJdhizBwCDt85qD9+qDPLZFaL E1+D/I6hxp/s6bIA8cjXX+V4NS0rWrFVZpuTSxKNkgBU2JCFNoDkIQ6n+66nTxCt YZBhIjoWqxtb9YJfY3EBCK1Q5Tf6WQ4J7WonRtzkJVYRYWu4XkbbAUuhpK+Oxyxa 9vIARMCRbO5JxgiVuOYV7jk6ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhwJy6J gPwX9xcVkkAw92S+Qs36MB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApbeiWp8RLKUoG4YXWpI2CTPu/jx6o8C3qWcE0sWVNl/r2QVuXuWI7 9IGvIS743H2xi+AEQZj5/XwGX57On5A5wVJCJUIHEuC3yfyHoA4ANgnvkEDqu8oP EKqu3QvYGNaqqhmvlo88lYmckFrYJwsfXfvbMsVz8+PyuSzjV5ofhIm/bMbKloO+ FgL6Dw+YqFpcKPsVUncqcBTVbh6dd8SbMpVEUSOANuIoJRXhs8IsUCwrmiwS3nCn q38XWzCg3oPmKf5/u122DzGpDGxA97Kpw5EI9QlxzmeA1v7XKdlzM+AxpL3YpYAv 1r+CDoOP5nJgWjbwBZzDSkH4RFRHu7aQ -----END CERTIFICATE-----Generated at Mon Jan 26 01:47:23 2026 by rpki-client