This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft File: 0VLfcuXWwcb-QrZCN3w7CIEobec.mft (raw, json) Hash identifier: 4myDs0U/L57c2bGAmWqE5yI08B1OzlmBu6oxjgk916Y= Subject key identifier: 35:0F:C9:0E:59:E2:03:96:B2:4B:FE:5C:05:A4:82:90:57:19:DF:B3 Authority key identifier: D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 Certificate issuer: /CN=A91C0FAC/serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Certificate serial: 0596 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft Manifest number: 0591 Signing time: Sat 24 Jan 2026 22:28:36 +0000 Manifest this update: Sat 24 Jan 2026 22:28:35 +0000 Manifest next update: Sat 31 Jan 2026 22:28:35 +0000 Files and hashes: 1: 0VLfcuXWwcb-QrZCN3w7CIEobec.crl (hash: PmcSsVrD6E3Kmpl2rO5QUJ0RZaWOQK9wUUZCp4wIgF8=) 2: 4C2E7A3C049B11ECAC7E5D0DC4F9AE02.roa (hash: JNxs4L4e1ceFr4b8NRWrFPbylob6Fmj/cL16X1jkyEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FAC, serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Validity Not Before: Jan 24 22:28:35 2026 GMT Not After : Jan 31 22:28:35 2026 GMT Subject: CN=69754793-cb4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f4:29:e0:3b:9d:ba:7a:f9:35:23:a6:af:fc: fb:df:1d:c0:72:29:59:30:d5:06:89:86:93:be:f4: 70:68:fc:31:d8:14:8e:e4:61:24:bc:b1:6a:d1:2e: 0d:3c:58:78:70:e8:ec:35:02:f8:55:a4:07:4a:c4: 2e:8f:0b:4b:50:b7:e6:d4:53:47:6a:30:54:3b:98: 2f:cf:67:e4:c7:82:40:79:3c:1f:f8:a8:b6:77:b7: fd:af:c3:d7:e0:41:1d:69:70:cd:ab:25:c0:e7:ea: f5:ff:8e:b7:b6:5e:45:74:36:29:56:0c:dc:ee:fe: e6:78:18:e7:c9:01:f7:e5:dc:d3:7c:04:1a:03:7e: 05:84:6a:1b:f2:8e:d9:6b:7e:16:0d:48:cc:42:d1: ba:7a:96:b8:4d:38:37:f3:4f:7e:97:8a:2f:25:4c: 5a:bd:f5:fd:f7:a1:74:81:5d:73:c6:e6:3a:88:55: fd:80:4b:3d:73:82:19:57:c4:f9:8d:4f:54:41:64: 6d:17:df:ab:ff:33:6f:f4:90:3e:23:0b:d7:f7:e2: 63:c3:32:79:db:c4:a8:dc:88:63:b5:36:39:86:8d: 77:f8:4b:5c:22:c2:34:d3:b5:f3:f9:2f:af:b8:b6: bf:6c:62:d9:b7:43:2a:11:f2:df:15:09:ad:38:c2: eb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:0F:C9:0E:59:E2:03:96:B2:4B:FE:5C:05:A4:82:90:57:19:DF:B3 X509v3 Authority Key Identifier: keyid:D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a0:b6:8d:9b:c0:f3:56:6a:51:64:e9:13:bb:43:2a:33:d1: 6f:e2:77:01:62:c3:2d:a1:8c:5a:13:1b:c7:7d:07:d6:5c:f5: 54:86:89:41:1b:8f:52:4f:48:2a:de:76:58:19:93:bd:a2:92: 9e:16:bd:66:6a:42:4e:d5:0a:a9:a8:25:46:b2:ab:0a:75:8a: d6:b2:a3:3d:2f:ea:ef:00:9e:f2:a9:0a:df:46:bb:61:2c:c7: 57:62:5a:89:6f:58:e8:f8:13:f4:e0:27:b9:0b:b9:08:ad:e8: b9:7b:c2:ba:e1:ec:2e:d7:38:a2:25:ec:97:03:f0:27:e1:5d: da:f6:5a:13:e0:c0:d8:9d:33:6a:22:84:56:ec:b5:95:a2:e6: a2:24:6a:70:8a:19:28:bb:c1:97:9c:6e:48:a7:f7:64:36:de: 1a:74:1c:b8:1b:31:0c:55:1c:77:44:08:8e:26:b0:25:22:7e: 0b:80:7c:8c:2b:12:8f:90:24:6f:de:22:b1:8f:60:d9:a2:02: 97:55:da:8f:e0:a0:0e:bd:e0:d1:b3:3e:59:6a:5e:2f:f6:7a: 69:7b:f7:b2:04:37:12:65:e8:10:f2:5c:2d:84:40:31:c0:f6: 4f:50:52:22:14:0c:47:fe:e3:76:ca:0b:eb:99:d8:67:d6:de: 9b:86:eb:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGQUMxMTAvBgNVBAUTKEQxNTJERjcyRTVENkMxQzZGRTQyQjY0MjM3N0MzQjA4 ODEyODZERTcwHhcNMjYwMTI0MjIyODM1WhcNMjYwMTMxMjIyODM1WjAYMRYwFAYD VQQDDA02OTc1NDc5My1jYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvQp4Dudunr5NSOmr/z73x3AcilZMNUGiYaTvvRwaPwx2BSO5GEkvLFq0S4N PFh4cOjsNQL4VaQHSsQujwtLULfm1FNHajBUO5gvz2fkx4JAeTwf+Ki2d7f9r8PX 4EEdaXDNqyXA5+r1/463tl5FdDYpVgzc7v7meBjnyQH35dzTfAQaA34FhGob8o7Z a34WDUjMQtG6epa4TTg3809+l4ovJUxavfX996F0gV1zxuY6iFX9gEs9c4IZV8T5 jU9UQWRtF9+r/zNv9JA+IwvX9+JjwzJ528So3IhjtTY5ho13+EtcIsI007Xz+S+v uLa/bGLZt0MqEfLfFQmtOMLrGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUPyQ5Z 4gOWskv+XAWkgpBXGd+zMB8GA1UdIwQYMBaAFNFS33Ll1sHG/kK2Qjd8OwiBKG3n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZBQy8zQ0Y3OThFMDA0 OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3djYi1RclpDTjN3N0NJRW9i ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWTGZjdVhXd2NiLVFyWkNOM3c3Q0lFb2JlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZBQy8zQ0Y3OThFMDA0OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3dj Yi1RclpDTjN3N0NJRW9iZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2oLaNm8DzVmpRZOkTu0MqM9Fv4ncBYsMtoYxaExvHfQfWXPVUholB G49ST0gq3nZYGZO9opKeFr1makJO1QqpqCVGsqsKdYrWsqM9L+rvAJ7yqQrfRrth LMdXYlqJb1jo+BP04Ce5C7kIrei5e8K64ewu1ziiJeyXA/An4V3a9loT4MDYnTNq IoRW7LWVouaiJGpwihkou8GXnG5Ip/dkNt4adBy4GzEMVRx3RAiOJrAlIn4LgHyM KxKPkCRv3iKxj2DZogKXVdqP4KAOveDRsz5Zal4v9nppe/eyBDcSZegQ8lwthEAx wPZPUFIiFAxH/uN2ygvrmdhn1t6bhuvT -----END CERTIFICATE-----Generated at Sun Jan 25 09:24:31 2026 by rpki-client