This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: +dJKUiN4tzwVEJsRGRFcczSprmm+jgXR9hI9jfEvVk4= Subject key identifier: 1F:45:DC:C0:2C:AE:08:C5:EF:0D:6B:6D:F2:05:45:CC:5A:A3:CA:6F Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 0A9A Signing time: Sat 24 Jan 2026 19:01:43 +0000 Manifest this update: Sat 24 Jan 2026 19:01:43 +0000 Manifest next update: Sat 31 Jan 2026 19:01:43 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: jS2ezq2X+M2eRA4Zm+MHn1L5JFEK0FNBdcyBqxx6p+Q=) 2: 631E45669D2511F092B08685C4F9AE02.roa (hash: 7FJFv2Mx+1Xt7OR8AiHSTaeUg0YXybdvrKVZMy3KEE4=) 3: 62B22A709D2511F092B08685C4F9AE02.roa (hash: 3Ui4cpTHHeKfz+ZmJHpf6SoxkqjlYYO57sXCMQDXSvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE, serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: Jan 24 19:01:43 2026 GMT Not After : Jan 31 19:01:43 2026 GMT Subject: CN=69751717-a9f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:f0:18:3c:ea:de:6a:5a:78:02:c3:54:4e: 34:8f:77:13:4c:14:30:e4:78:53:ca:14:e7:bd:29: b2:5e:8c:ff:fd:25:b5:24:86:e7:ca:be:54:92:39: 15:a9:86:32:1e:97:8b:c6:7c:05:ff:4e:b0:df:bc: b2:98:17:ec:01:f1:bd:13:b0:5a:bc:a0:21:8b:2a: 04:3a:df:22:7a:b4:5a:7c:62:86:f0:1a:0e:81:a6: 94:bc:72:57:55:97:61:09:d0:9c:78:1e:8a:a8:fc: 9a:7a:00:2a:d3:a1:30:5c:97:a8:de:09:fe:d3:a7: 18:ea:ff:41:a7:00:fc:b7:9b:1b:1e:54:bd:55:b1: ff:a1:aa:53:a4:cf:00:d0:dd:4c:53:65:91:1c:f9: f2:16:e4:1a:88:5d:71:0d:6c:c7:4a:9b:1e:71:44: 12:64:ba:9f:10:b1:fb:54:81:17:47:b2:65:65:c6: 82:3f:32:a2:49:fd:ea:19:68:65:88:0e:59:02:84: 54:a8:a1:7a:39:91:bc:47:9f:7b:8e:8d:5f:46:1f: 37:e2:5f:4f:44:b9:5b:e1:c3:2f:33:d5:ff:41:bc: f3:ff:93:31:c8:a9:52:ff:19:64:3f:1b:22:42:4e: 4c:c2:94:ff:7d:17:29:75:6c:c1:25:e1:fc:08:8c: d3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:45:DC:C0:2C:AE:08:C5:EF:0D:6B:6D:F2:05:45:CC:5A:A3:CA:6F X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d3:fc:c3:03:2f:05:e6:14:4a:a9:98:3f:35:e0:02:e2:7d: 8f:3f:ca:5b:19:6e:71:04:2f:48:fd:52:62:c3:76:b2:0d:05: 2b:6b:9d:d0:c8:9f:45:dc:e3:c3:fc:db:37:a6:d3:08:3d:6e: cc:43:29:bf:26:3c:17:6a:2f:d2:c3:e0:41:7f:21:50:62:1d: 38:93:c1:3f:b3:32:1b:05:b2:8e:cb:b4:75:c0:3f:88:8c:e7: 7d:68:38:33:47:dd:31:1c:f5:56:0b:6c:9d:2a:5a:06:87:88: 59:30:63:03:ad:c3:63:b4:73:9e:9b:49:b7:e6:ce:c8:55:c3: 87:87:2c:19:14:73:b0:63:24:0a:b1:d3:bc:46:86:18:c0:2d: 63:b0:d2:81:a2:2a:f5:53:c2:d1:d1:52:dc:9d:2f:6d:ae:86: bb:9e:c7:6d:20:b6:78:e5:85:49:a3:28:48:2c:9e:3c:98:ce: 15:00:c9:03:d8:b6:0d:30:3f:a9:19:24:b9:f7:06:6d:0f:84: cf:14:5e:23:91:a5:a5:98:0f:e4:9a:2b:2b:e0:85:fa:8d:d6: af:32:c4:d7:85:ef:2c:0f:ae:c7:2f:d1:5f:1e:64:74:e1:3d: e1:41:be:37:f2:27:e1:09:79:de:bf:65:59:2c:ab:ff:c5:c5: c5:25:96:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjYwMTI0MTkwMTQzWhcNMjYwMTMxMTkwMTQzWjAYMRYwFAYD VQQDDA02OTc1MTcxNy1hOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0rwGDzq3mpaeALDVE40j3cTTBQw5HhTyhTnvSmyXoz//SW1JIbnyr5UkjkV qYYyHpeLxnwF/06w37yymBfsAfG9E7BavKAhiyoEOt8ierRafGKG8BoOgaaUvHJX VZdhCdCceB6KqPyaegAq06EwXJeo3gn+06cY6v9BpwD8t5sbHlS9VbH/oapTpM8A 0N1MU2WRHPnyFuQaiF1xDWzHSpsecUQSZLqfELH7VIEXR7JlZcaCPzKiSf3qGWhl iA5ZAoRUqKF6OZG8R597jo1fRh834l9PRLlb4cMvM9X/Qbzz/5MxyKlS/xlkPxsi Qk5MwpT/fRcpdWzBJeH8CIzTkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9F3MAs rgjF7w1rbfIFRcxao8pvMB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA30/zDAy8F5hRKqZg/NeAC4n2PP8pbGW5xBC9I/VJiw3ayDQUra53Q yJ9F3OPD/Ns3ptMIPW7MQym/JjwXai/Sw+BBfyFQYh04k8E/szIbBbKOy7R1wD+I jOd9aDgzR90xHPVWC2ydKloGh4hZMGMDrcNjtHOem0m35s7IVcOHhywZFHOwYyQK sdO8RoYYwC1jsNKBoir1U8LR0VLcnS9troa7nsdtILZ45YVJoyhILJ48mM4VAMkD 2LYNMD+pGSS59wZtD4TPFF4jkaWlmA/kmisr4IX6jdavMsTXhe8sD67HL9FfHmR0 4T3hQb438ifhCXnev2VZLKv/xcXFJZba -----END CERTIFICATE-----Generated at Sun Jan 25 18:52:53 2026 by rpki-client