This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: OVzbCL2wo0nHfaf4JG3f4pwoWXbdrjm5nocZtKoomTk= Subject key identifier: BD:A7:D7:50:D2:5B:0A:5E:EC:92:FD:37:D3:84:51:14:5C:F5:48:24 Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 9D Signing time: Sun 25 Jan 2026 05:32:10 +0000 Manifest this update: Sun 25 Jan 2026 05:32:09 +0000 Manifest next update: Sun 01 Feb 2026 05:32:09 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: Ru2NLlQMw54IImD8V1jmpxDnTSrNNtts1CQt7k8/boE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Jan 25 05:32:09 2026 GMT Not After : Feb 1 05:32:09 2026 GMT Subject: CN=6975aada-ad47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d8:85:fc:13:43:da:e1:9d:22:c7:3c:cc:3e: d1:0e:cb:2f:aa:93:6d:54:79:66:fa:f9:9b:d4:d1: 2d:cf:41:fb:68:2d:ea:cc:7b:50:98:dd:36:e9:27: 30:53:b4:1b:86:c9:75:15:94:9e:85:d3:e4:ad:8b: 1e:e5:f1:2e:a1:d3:39:da:e4:c0:33:59:92:71:94: d9:6d:d3:01:48:08:c7:10:e0:d9:29:1c:5b:b3:11: 7a:98:97:7b:a6:6d:15:66:63:50:90:0c:e3:84:d9: 18:92:27:d2:b1:0b:43:20:21:35:1a:29:64:59:2b: ae:87:52:1c:b3:a6:f4:b6:c7:98:1f:1e:37:c6:8f: 9d:0b:44:b3:83:63:de:5a:4c:f0:d0:03:d3:81:80: 5f:ae:58:7d:92:51:f9:ba:59:0b:2e:86:ef:1c:d3: f8:d1:7c:72:b0:c7:6e:80:1c:da:d3:28:dd:8c:3d: 14:fd:ee:c3:9a:bf:bc:5e:b3:2e:86:09:8b:43:b9: f8:da:c7:c4:12:3a:f5:3d:ba:fe:15:c2:7b:0c:cb: 66:2d:35:51:ae:50:5b:67:e8:b7:c2:79:90:e8:25: 65:ad:8a:f7:43:76:28:be:71:af:65:c5:e8:1d:ef: 8a:46:00:d1:af:9e:d6:51:dc:ef:42:99:4a:70:14: cb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A7:D7:50:D2:5B:0A:5E:EC:92:FD:37:D3:84:51:14:5C:F5:48:24 X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:af:4c:df:a8:72:37:a0:65:1f:a6:94:f4:f7:d9:ed:a3:87: 6b:b2:53:0f:2a:a3:41:4a:7c:16:58:cd:53:a9:50:a1:e3:f5: 8c:83:75:22:a4:5e:01:9e:df:0d:f8:dd:ac:ff:f1:e9:3f:51: e3:13:54:9f:78:d6:42:40:7d:48:05:03:f0:9d:7a:99:da:a5: 8c:25:91:65:81:ec:da:cc:18:f1:db:4e:87:01:a0:57:d8:f5: 15:ac:86:43:b0:43:1f:b5:94:ca:b9:5d:98:59:d6:b8:fd:6f: b9:a8:7a:d5:2e:40:92:fa:2f:0f:7c:fb:6f:de:90:24:2c:19: 9e:2a:ce:72:cd:6f:59:53:75:4a:e4:db:cc:f8:1f:d6:20:85: 35:b2:05:9f:35:bb:86:48:b9:47:89:1b:a4:4f:fa:bb:3c:18: b4:30:ba:71:ec:02:ed:44:ea:af:ea:ab:1e:38:0b:56:89:89: aa:ac:2b:d3:50:49:1b:4f:9b:98:f9:a1:c0:66:5f:eb:8f:63: 6b:0e:87:9a:bf:d3:e0:ae:a5:64:df:96:a7:c8:64:98:f4:00: 23:d3:1e:0b:e7:02:de:d9:25:17:91:3a:f1:65:8b:26:ff:94: 95:61:12:26:e6:f0:6e:01:10:d4:4a:be:78:26:2c:9f:66:26: b3:14:53:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTIxMTAvBgNVBAUTKDQwRTRCRDM2QUUxNTA3N0ZFNTk5ODVEMTM3MEQ1RDY0 NjcwQTg4RDkwHhcNMjYwMTI1MDUzMjA5WhcNMjYwMjAxMDUzMjA5WjAYMRYwFAYD VQQDDA02OTc1YWFkYS1hZDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNiF/BND2uGdIsc8zD7RDssvqpNtVHlm+vmb1NEtz0H7aC3qzHtQmN026Scw U7Qbhsl1FZSehdPkrYse5fEuodM52uTAM1mScZTZbdMBSAjHEODZKRxbsxF6mJd7 pm0VZmNQkAzjhNkYkifSsQtDICE1GilkWSuuh1Ics6b0tseYHx43xo+dC0Szg2Pe Wkzw0APTgYBfrlh9klH5ulkLLobvHNP40XxysMdugBza0yjdjD0U/e7Dmr+8XrMu hgmLQ7n42sfEEjr1Pbr+FcJ7DMtmLTVRrlBbZ+i3wnmQ6CVlrYr3Q3YovnGvZcXo He+KRgDRr57WUdzvQplKcBTLQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2n11DS Wwpe7JL9N9OEURRc9UgkMB8GA1UdIwQYMBaAFEDkvTauFQd/5ZmF0TcNXWRnCojZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5Mi8yQzBCMzJEODA5 MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIzX2xtWVhSTncxZFpHY0tp TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5Mi8yQzBCMzJEODA5MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIz X2xtWVhSTncxZFpHY0tpTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRr0zfqHI3oGUfppT099nto4drslMPKqNBSnwWWM1TqVCh4/WMg3Ui pF4Bnt8N+N2s//HpP1HjE1SfeNZCQH1IBQPwnXqZ2qWMJZFlgezazBjx206HAaBX 2PUVrIZDsEMftZTKuV2YWda4/W+5qHrVLkCS+i8PfPtv3pAkLBmeKs5yzW9ZU3VK 5NvM+B/WIIU1sgWfNbuGSLlHiRukT/q7PBi0MLpx7ALtROqv6qseOAtWiYmqrCvT UEkbT5uY+aHAZl/rj2NrDoeav9PgrqVk35anyGSY9AAj0x4L5wLe2SUXkTrxZYsm /5SVYRIm5vBuARDUSr54JiyfZiazFFNa -----END CERTIFICATE-----Generated at Sun Jan 25 12:20:48 2026 by rpki-client