This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft File: o5mhLEjADkJh0o4MV_1OPkcNLrc.mft (raw, json) Hash identifier: H7FTlGyRg/6B30x02IBuAV+reifJZAGW315ZmCy/tf4= Subject key identifier: 43:53:2E:63:B1:7E:8B:A7:2A:4E:4C:ED:71:82:42:EC:92:AA:94:8E Authority key identifier: A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 Certificate issuer: /CN=A91C4401/serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft Manifest number: 34 Signing time: Fri 23 Jan 2026 06:32:59 +0000 Manifest this update: Fri 23 Jan 2026 06:32:58 +0000 Manifest next update: Fri 30 Jan 2026 06:32:58 +0000 Files and hashes: 1: o5mhLEjADkJh0o4MV_1OPkcNLrc.crl (hash: MXDOlRfH3+pNPLaBJ7l4YFwALZKW2c5Rgo2wgWWCp6M=) 2: C0FD1FF0AA7111F0B4546269C4F9AE02.roa (hash: tb9Z/1utdPuZydG4QyPURJ2Dph5uJmmV+jlmkscDXF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4401, serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Validity Not Before: Jan 23 06:32:58 2026 GMT Not After : Jan 30 06:32:58 2026 GMT Subject: CN=6973161b-3cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f3:e0:1f:e6:62:a4:a1:38:6e:b2:fa:97:a6: de:3b:d7:ef:c2:8a:22:fa:df:81:56:bd:dd:a0:ee: 8c:ff:93:15:1a:6e:9a:88:4c:4f:a8:a4:97:e9:79: 19:d6:b7:e7:4f:50:fe:4d:a0:68:70:fc:78:35:73: ff:ba:4c:0f:57:af:36:6d:16:eb:0b:e5:26:8d:8d: 42:4c:38:fb:80:9d:c6:8d:af:84:f8:b5:a3:11:d8: 3c:9a:f3:c4:29:af:04:1f:e6:90:e2:8f:a1:9b:18: 4d:7f:19:47:cf:86:9a:df:34:df:67:27:f2:78:73: 84:94:aa:2b:61:d2:cd:5e:d1:10:25:dc:57:7c:53: 87:a2:d6:83:9d:dc:ad:50:41:b8:4e:72:f5:2f:0e: 30:57:b6:39:30:a3:11:7b:09:72:89:3c:ce:f7:be: 89:4a:e4:13:1e:17:92:e1:1e:0b:11:8a:ed:ed:c9: fa:4a:fc:f9:a9:b0:e2:f6:ed:ea:01:a3:f5:9b:2d: 7b:5a:54:8a:7f:8e:6f:76:73:78:96:18:07:5d:a1: 53:bc:cb:c0:d2:5b:33:b1:b7:c1:95:92:48:f2:0b: bb:4a:d7:54:06:f9:1c:0f:37:58:4f:58:be:62:b1: 91:dc:fa:22:92:f6:9a:e2:62:09:97:96:97:b8:4e: 69:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:53:2E:63:B1:7E:8B:A7:2A:4E:4C:ED:71:82:42:EC:92:AA:94:8E X509v3 Authority Key Identifier: keyid:A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:df:80:a4:30:c5:00:26:31:73:b4:c4:f9:ae:cb:5f:8a:19: 8f:7c:c9:67:10:00:87:f8:00:53:cb:de:e5:cd:be:6c:f0:d6: 12:5f:d3:20:4d:b3:06:38:ca:0e:39:0c:11:fc:9a:f4:21:90: af:c0:2e:a5:25:f8:1f:af:de:33:36:2e:d5:d4:96:1c:79:83: 33:70:1d:df:83:ac:06:e6:df:f0:0a:dd:be:ec:27:32:a9:bd: a5:1a:35:9a:9b:46:c3:c8:68:26:5b:bb:af:9f:28:7b:b4:d8: aa:0b:40:21:16:c2:d6:5e:0d:7f:5e:42:cc:e4:8c:a8:13:74: 2d:58:85:b6:12:b5:67:f0:1d:7f:64:64:86:fd:cb:14:0d:62: 00:e5:8b:08:d0:ab:d9:da:d7:04:54:61:4a:dc:94:3f:ab:c1: 25:3e:89:f5:b9:bf:50:5f:06:82:2f:22:89:81:e7:69:fb:58: c8:8e:98:e0:e7:b3:85:59:1b:14:2f:36:b6:26:01:d0:74:76: e4:9a:40:b7:82:9c:e9:9a:cc:69:21:fe:55:4a:87:01:c2:ac: 2a:e6:c5:a2:a7:0d:d5:93:52:a0:ff:05:2f:64:0e:95:cf:86: cb:03:45:b6:3b:72:a1:a4:c1:b2:67:f9:e8:3a:b9:c5:79:f4: 37:e2:dc:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDQwMTExMC8GA1UEBRMoQTM5OUExMkM0OEMwMEU0MjYxRDI4RTBDNTdGRDRFM0U0 NzBEMkVCNzAeFw0yNjAxMjMwNjMyNThaFw0yNjAxMzAwNjMyNThaMBgxFjAUBgNV BAMMDTY5NzMxNjFiLTNjYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCc8+Af5mKkoThusvqXpt471+/CiiL634FWvd2g7oz/kxUabpqITE+opJfpeRnW t+dPUP5NoGhw/Hg1c/+6TA9XrzZtFusL5SaNjUJMOPuAncaNr4T4taMR2Dya88Qp rwQf5pDij6GbGE1/GUfPhprfNN9nJ/J4c4SUqith0s1e0RAl3Fd8U4ei1oOd3K1Q QbhOcvUvDjBXtjkwoxF7CXKJPM73volK5BMeF5LhHgsRiu3tyfpK/PmpsOL27eoB o/WbLXtaVIp/jm92c3iWGAddoVO8y8DSWzOxt8GVkkjyC7tK11QG+RwPN1hPWL5i sZHc+iKS9priYgmXlpe4TmmxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ1MuY7F+ i6cqTkztcYJC7JKqlI4wHwYDVR0jBBgwFoAUo5mhLEjADkJh0o4MV/1OPkcNLrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0NDAxLzFCODgyMTYwQUE3 MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtKaDBvNE1WXzFPUGtjTkxy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzVtaExFakFEa0poMG80TVZfMU9Qa2NOTHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 NDAxLzFCODgyMTYwQUE3MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtK aDBvNE1WXzFPUGtjTkxyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALffgKQwxQAmMXO0xPmuy1+KGY98yWcQAIf4AFPL3uXNvmzw1hJf0yBN swY4yg45DBH8mvQhkK/ALqUl+B+v3jM2LtXUlhx5gzNwHd+DrAbm3/AK3b7sJzKp vaUaNZqbRsPIaCZbu6+fKHu02KoLQCEWwtZeDX9eQszkjKgTdC1YhbYStWfwHX9k ZIb9yxQNYgDliwjQq9na1wRUYUrclD+rwSU+ifW5v1BfBoIvIomB52n7WMiOmODn s4VZGxQvNrYmAdB0duSaQLeCnOmazGkh/lVKhwHCrCrmxaKnDdWTUqD/BS9kDpXP hssDRbY7cqGkwbJn+eg6ucV59Dfi3N4= -----END CERTIFICATE-----Generated at Sun Jan 25 06:14:54 2026 by rpki-client