This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: xrA6jodYPHhIOu4+cE1ReZ0WY479gVvYYZ1Fn7lbFb4= Subject key identifier: EA:84:71:45:83:C1:24:AD:C0:71:1C:4F:FD:13:99:FB:6A:99:64:C5 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 09D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 098E Signing time: Sat 24 Jan 2026 19:35:05 +0000 Manifest this update: Sat 24 Jan 2026 19:35:05 +0000 Manifest next update: Sat 31 Jan 2026 19:35:05 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: +rEBFLGUDPWsubXBBtnDag1fMZ94MhjWmpceKRC9tnI=) 2: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) 3: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 4: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 5: 6B7D02AEB4A111F08515F713C4F9AE02.roa (hash: 8dIXmowCXPZAD2UJ+5qefOaUBnMZVuWIuv6x5mQBQWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Jan 24 19:35:05 2026 GMT Not After : Jan 31 19:35:05 2026 GMT Subject: CN=69751ee9-6e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:68:ba:fb:42:76:6f:ad:5b:47:0a:3f:87:9e: 3a:4a:ea:1f:79:24:34:46:5c:c2:74:76:7c:1d:b8: 63:1f:77:97:6a:a9:b6:71:9e:93:8b:c1:71:b6:0b: db:01:ce:77:48:7f:14:d0:7c:4e:a6:c8:40:19:92: 7c:74:fe:d7:e0:da:1c:76:d4:be:86:eb:8c:36:b9: ef:a5:10:46:4d:9b:27:f6:6a:11:2a:2a:7c:67:a6: 19:07:4f:a7:32:1e:0a:d5:1e:5e:32:71:aa:9b:44: b4:08:a0:01:fe:ea:e7:75:95:8e:f6:09:bd:14:45: c4:b6:64:e0:f4:aa:1c:e3:6f:51:e5:4a:71:12:ee: 5f:0b:5f:75:2c:71:18:93:c0:13:d2:39:65:77:d6: 99:c8:d6:87:d7:c5:9a:88:74:c8:ec:5d:55:45:e6: 1a:4d:10:a2:09:0c:5a:11:97:75:db:9f:b7:59:2a: eb:aa:1a:53:86:ad:41:53:55:dc:c1:7c:25:59:d4: 65:d9:8b:4d:37:ce:52:be:12:42:5d:d1:e6:28:7c: e9:b7:cb:d9:47:1e:8b:40:a1:0e:d5:c4:38:45:9a: 10:c0:43:3b:6d:6f:3d:49:9d:e0:53:a3:ff:33:7e: a9:d2:84:e9:81:1a:22:ab:6a:e5:8b:40:e2:9e:40: dc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:84:71:45:83:C1:24:AD:C0:71:1C:4F:FD:13:99:FB:6A:99:64:C5 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ec:64:b5:5a:9a:b7:1c:75:76:0c:c3:a0:45:fd:de:d3:30: 66:ff:99:b8:b2:d2:21:d4:4b:ec:36:e0:66:b2:a0:3b:83:79: 45:45:a5:4a:3e:96:74:9a:e1:1d:0b:26:f2:38:51:ce:4a:5f: 4c:b6:b2:9d:7c:67:0c:05:75:ff:c0:0c:29:d2:ad:1c:f5:90: 16:bb:85:13:aa:40:7c:4c:04:44:3d:ed:7d:52:8b:1a:91:7f: 0f:84:05:b1:ce:41:60:e9:c6:c5:ac:4a:b6:e2:11:9e:de:c2: 57:a0:72:28:49:da:f6:53:5b:ec:f5:40:d6:a8:bd:40:7a:28: 08:b8:ed:de:47:9f:c1:33:68:d6:28:48:13:51:3f:00:35:ab: b6:86:67:bf:97:48:f4:a1:cf:fc:82:78:56:63:61:1e:04:04: d2:3b:d1:48:64:59:1e:04:fa:f5:9a:cc:ed:29:2b:2f:d3:5f: ec:62:90:65:24:d5:7a:e3:5e:68:9f:e3:3e:cd:cb:73:39:a3: a5:91:4a:a2:2f:3f:4c:b9:ca:cf:94:bf:86:70:74:80:40:ac: 6e:ff:b5:8a:4b:52:ab:31:5d:cb:8f:75:fe:04:6a:b7:53:09: 7b:98:7c:d7:35:95:92:ef:0d:4d:8f:4d:f3:d1:26:0d:ad:06: c2:10:89:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjYwMTI0MTkzNTA1WhcNMjYwMTMxMTkzNTA1WjAYMRYwFAYD VQQDDA02OTc1MWVlOS02ZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGi6+0J2b61bRwo/h546SuofeSQ0RlzCdHZ8HbhjH3eXaqm2cZ6Ti8Fxtgvb Ac53SH8U0HxOpshAGZJ8dP7X4NocdtS+huuMNrnvpRBGTZsn9moRKip8Z6YZB0+n Mh4K1R5eMnGqm0S0CKAB/urndZWO9gm9FEXEtmTg9Koc429R5UpxEu5fC191LHEY k8AT0jlld9aZyNaH18WaiHTI7F1VReYaTRCiCQxaEZd125+3WSrrqhpThq1BU1Xc wXwlWdRl2YtNN85SvhJCXdHmKHzpt8vZRx6LQKEO1cQ4RZoQwEM7bW89SZ3gU6P/ M36p0oTpgRoiq2rli0DinkDcGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqEcUWD wSStwHEcT/0TmftqmWTFMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR7GS1Wpq3HHV2DMOgRf3e0zBm/5m4stIh1EvsNuBmsqA7g3lFRaVK PpZ0muEdCybyOFHOSl9MtrKdfGcMBXX/wAwp0q0c9ZAWu4UTqkB8TAREPe19Uosa kX8PhAWxzkFg6cbFrEq24hGe3sJXoHIoSdr2U1vs9UDWqL1AeigIuO3eR5/BM2jW KEgTUT8ANau2hme/l0j0oc/8gnhWY2EeBATSO9FIZFkeBPr1msztKSsv01/sYpBl JNV6415on+M+zctzOaOlkUqiLz9MucrPlL+GcHSAQKxu/7WKS1KrMV3Lj3X+BGq3 Uwl7mHzXNZWS7w1Nj03z0SYNrQbCEIn3 -----END CERTIFICATE-----Generated at Sun Jan 25 06:06:22 2026 by rpki-client