This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft File: jNGQoUOqLh5IcwOxPcBT7Re86x4.mft (raw, json) Hash identifier: dML52tPHjZkpEjvOLQ8CeNvZeShIVgETqVpDovv7R3g= Subject key identifier: 87:11:1C:43:F9:89:7F:ED:AD:9E:9D:7A:8D:87:08:03:AF:69:5B:32 Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft Manifest number: 7A Signing time: Sun 25 Jan 2026 05:54:32 +0000 Manifest this update: Sun 25 Jan 2026 05:54:31 +0000 Manifest next update: Sun 01 Feb 2026 05:54:31 +0000 Files and hashes: 1: jNGQoUOqLh5IcwOxPcBT7Re86x4.crl (hash: RcYkl2F+TJYF0oyhlQeDThrjNiVODGHi42+nRLZf6Ts=) 2: 653C22F441C311F0999A9935C4F9AE02.roa (hash: Lf3alCeyUDstgnP7x5+oblCm0tv/uJ2YmuuNF6Xn0z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Jan 25 05:54:31 2026 GMT Not After : Feb 1 05:54:31 2026 GMT Subject: CN=6975b018-2c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:56:d8:14:25:04:dc:54:a9:6c:08:ee:71: 06:4d:46:a2:83:7a:42:3c:31:a3:6d:d4:16:17:4a: 60:cc:48:cb:a3:24:f1:d0:55:11:34:29:2d:ee:1b: eb:96:56:24:91:0c:00:37:9a:5f:5b:90:46:4c:03: 2e:90:6a:4a:d1:78:0d:a4:c9:b3:62:11:1f:07:8a: 3a:3b:d0:82:9c:94:75:16:f4:55:b1:d3:38:3a:80: de:bd:04:24:fa:8c:4b:5c:b9:da:72:fd:be:79:c9: dd:cc:7a:41:ca:01:8a:2a:74:5b:cd:1b:a7:33:ba: 23:48:c2:5e:04:f9:f9:fb:42:b8:84:2b:b6:ca:16: 68:42:d1:d1:87:ad:68:21:10:41:f9:af:b0:5c:52: 3a:df:42:a7:b7:eb:b2:df:ae:00:dd:37:52:a2:40: 17:ee:b6:d2:ea:13:1a:e3:fc:3e:7b:9e:b5:52:9c: 8c:f8:b0:9a:a8:b4:d4:23:8f:48:eb:06:4b:b1:28: 7a:ad:af:b9:aa:d1:d2:59:2f:f2:18:3a:4d:37:9e: 5a:76:5b:78:c7:1a:0e:bc:2e:34:bd:aa:b5:9a:42: 2e:94:76:65:e8:60:03:dc:55:51:87:27:9c:59:7e: eb:44:68:90:fd:d7:a7:1f:4d:4c:38:fe:66:0d:2b: da:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:11:1C:43:F9:89:7F:ED:AD:9E:9D:7A:8D:87:08:03:AF:69:5B:32 X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e6:88:de:01:74:99:2c:d8:7d:f2:36:e4:de:1b:4f:65:0b: 58:62:95:6c:80:96:87:48:fe:fa:65:30:48:d1:74:99:87:d6: af:bd:cf:e2:e3:32:12:67:d7:63:9c:4b:8c:68:08:93:eb:70: 19:c4:1e:af:55:bd:52:65:ce:5e:6c:10:8e:7a:05:97:20:b2: 4d:9a:f0:a7:ef:7c:45:51:82:fa:66:53:50:7e:3a:d5:e3:2d: e1:5e:21:b2:88:8d:e4:5b:32:6f:b4:5f:92:2b:95:dd:c9:3d: 6c:b8:37:97:65:22:ea:a7:ae:d6:ae:02:ba:34:51:74:9b:42: f8:44:5b:7e:e4:26:4d:6f:53:11:c3:2d:cb:e1:58:3f:37:b7: 58:bd:76:1c:02:dd:73:35:27:6a:6d:2e:fc:b9:f4:70:47:ee: e6:56:e0:0e:a1:82:7d:96:82:fe:38:56:25:f9:5c:27:8c:25: a3:46:e8:ba:4e:e8:ac:b5:81:5a:a7:c4:a1:6b:38:f7:7f:c7: 72:28:43:c0:c3:71:83:3e:43:28:6f:90:30:7b:06:dd:f6:69: 18:22:e4:49:93:0d:9d:cd:91:2e:12:9b:23:92:6c:26:c8:8e: cb:d6:3d:94:55:95:a0:99:12:6c:52:6d:a6:3c:68:04:8c:ad: 46:a3:6c:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REYyQjExMC8GA1UEBRMoOENEMTkwQTE0M0FBMkUxRTQ4NzMwM0IxM0RDMDUzRUQx N0JDRUIxRTAeFw0yNjAxMjUwNTU0MzFaFw0yNjAyMDEwNTU0MzFaMBgxFjAUBgNV BAMMDTY5NzViMDE4LTJjNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCswFbYFCUE3FSpbAjucQZNRqKDekI8MaNt1BYXSmDMSMujJPHQVRE0KS3uG+uW ViSRDAA3ml9bkEZMAy6QakrReA2kybNiER8Hijo70IKclHUW9FWx0zg6gN69BCT6 jEtcudpy/b55yd3MekHKAYoqdFvNG6czuiNIwl4E+fn7QriEK7bKFmhC0dGHrWgh EEH5r7BcUjrfQqe367LfrgDdN1KiQBfuttLqExrj/D57nrVSnIz4sJqotNQjj0jr BkuxKHqtr7mq0dJZL/IYOk03nlp2W3jHGg68LjS9qrWaQi6UdmXoYAPcVVGHJ5xZ futEaJD916cfTUw4/mYNK9pJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhxEcQ/mJ f+2tnp16jYcIA69pWzIwHwYDVR0jBBgwFoAUjNGQoUOqLh5IcwOxPcBT7Re86x4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERjJCLzZDMkI3QjFDNDFC QjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak5HUW9VT3FMaDVJY3dPeFBjQlQ3UmU4Nng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RjJCLzZDMkI3QjFDNDFCQjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1 SWN3T3hQY0JUN1JlODZ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG7miN4BdJks2H3yNuTeG09lC1hilWyAlodI/vplMEjRdJmH1q+9z+Lj MhJn12OcS4xoCJPrcBnEHq9VvVJlzl5sEI56BZcgsk2a8KfvfEVRgvpmU1B+OtXj LeFeIbKIjeRbMm+0X5Irld3JPWy4N5dlIuqnrtauAro0UXSbQvhEW37kJk1vUxHD LcvhWD83t1i9dhwC3XM1J2ptLvy59HBH7uZW4A6hgn2Wgv44ViX5XCeMJaNG6LpO 6Ky1gVqnxKFrOPd/x3IoQ8DDcYM+QyhvkDB7Bt32aRgi5EmTDZ3NkS4SmyOSbCbI jsvWPZRVlaCZEmxSbaY8aASMrUajbBk= -----END CERTIFICATE-----Generated at Sun Jan 25 18:56:44 2026 by rpki-client