This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: zFRnza6pfInmtcJ1rfH3p4Zf4safvEHmELE7MWpzTMw= Subject key identifier: BA:2D:88:81:EA:F3:D0:4F:D7:82:2B:4F:0F:9C:7E:03:18:1A:BA:69 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 0803 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 07FA Signing time: Sat 24 Jan 2026 20:29:10 +0000 Manifest this update: Sat 24 Jan 2026 20:29:10 +0000 Manifest next update: Sat 31 Jan 2026 20:29:10 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: kfxvbsz1Z7H/Xn45S/XYEGCp2IW6TdB5J5fY6Xv2St8=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Jan 24 20:29:10 2026 GMT Not After : Jan 31 20:29:10 2026 GMT Subject: CN=69752b96-66dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:39:6b:21:8a:b5:9b:23:02:e8:af:ea:37:6a: a2:cb:3b:a4:d2:e0:3c:6c:db:65:2f:b2:09:49:8f: b6:3f:b4:86:65:70:b6:8e:df:cf:57:d0:4b:a4:83: e6:e9:ff:ab:b2:21:94:ab:12:c2:f3:a5:8f:6c:b3: a2:59:18:87:07:48:5b:8d:e0:fa:87:b5:70:11:f0: 8e:60:cf:ef:d5:5e:2e:7a:c8:ae:da:de:4d:65:ef: 57:26:f4:77:05:b2:17:ac:8b:32:37:b2:ec:8c:64: c9:c2:dc:ba:15:b5:9a:e0:a4:0f:34:91:8f:db:b4: 9a:26:66:c2:e7:fb:d5:ad:ee:07:ad:1d:cf:d8:bc: 16:c9:51:e0:a0:ae:28:33:f6:66:26:ad:f9:32:dc: 2c:35:8f:30:0c:b9:24:b2:18:da:4e:32:08:6e:f8: d0:12:f2:8d:65:60:e9:9f:9e:48:de:4e:7d:99:72: 13:78:cb:50:d4:b0:1e:45:60:7c:a8:88:89:87:77: da:ad:e3:62:fb:ac:c9:b0:e5:4d:20:ce:fe:e2:9d: ef:8f:ac:c7:c8:5e:5b:56:42:04:0d:ec:55:8c:17: eb:fc:0c:8d:05:af:86:cc:f7:0f:9d:59:d2:a3:33: 04:0e:2e:82:fc:18:b3:23:af:95:98:33:b2:72:cb: dc:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2D:88:81:EA:F3:D0:4F:D7:82:2B:4F:0F:9C:7E:03:18:1A:BA:69 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ed:c8:26:13:94:53:9a:a8:5c:a6:94:5d:ad:32:46:66:13: d9:df:bc:ea:d8:17:44:ee:f5:08:e6:89:75:49:ff:ac:16:0e: 93:87:ee:41:e3:c4:20:97:1e:fb:64:6d:f7:cb:01:de:7f:14: 24:e0:51:83:0e:24:6e:a5:cb:c6:1e:6c:47:6b:cd:bf:92:c5: da:65:57:87:98:d3:81:8d:0a:3c:6b:ad:b4:69:0a:d3:55:e2: 3d:c1:89:b1:55:65:13:c8:5d:97:6d:98:ae:9c:5c:1b:4c:36: cb:42:20:ab:51:d1:22:1d:eb:3c:7a:81:b2:1a:45:07:7d:aa: c9:c4:fc:51:9f:1f:10:f5:d4:a2:56:6d:8f:97:a9:43:57:84: fd:63:92:05:17:41:41:10:20:c4:8d:2b:0e:9c:04:25:f3:10: f7:b2:5d:af:3a:30:f0:81:a3:9c:26:1e:43:4f:57:c3:ff:2f: b1:b0:87:3d:5d:97:54:e8:7b:56:6a:10:17:a7:be:ab:36:21: f8:c9:53:9a:83:02:8f:46:f5:6a:4b:3a:b1:61:37:c9:36:0e: 98:ca:43:cc:c1:5b:8e:fa:dc:8b:f3:5d:7c:27:b9:a1:2c:a1: 27:6c:21:14:26:6e:9b:0d:2b:d3:85:aa:17:92:52:52:eb:27: 14:17:6c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjYwMTI0MjAyOTEwWhcNMjYwMTMxMjAyOTEwWjAYMRYwFAYD VQQDDA02OTc1MmI5Ni02NmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TlrIYq1myMC6K/qN2qiyzuk0uA8bNtlL7IJSY+2P7SGZXC2jt/PV9BLpIPm 6f+rsiGUqxLC86WPbLOiWRiHB0hbjeD6h7VwEfCOYM/v1V4uesiu2t5NZe9XJvR3 BbIXrIsyN7LsjGTJwty6FbWa4KQPNJGP27SaJmbC5/vVre4HrR3P2LwWyVHgoK4o M/ZmJq35MtwsNY8wDLkkshjaTjIIbvjQEvKNZWDpn55I3k59mXITeMtQ1LAeRWB8 qIiJh3fareNi+6zJsOVNIM7+4p3vj6zHyF5bVkIEDexVjBfr/AyNBa+GzPcPnVnS ozMEDi6C/BizI6+VmDOycsvcsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLotiIHq 89BP14IrTw+cfgMYGrppMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk7cgmE5RTmqhcppRdrTJGZhPZ37zq2BdE7vUI5ol1Sf+sFg6Th+5B 48Qglx77ZG33ywHefxQk4FGDDiRupcvGHmxHa82/ksXaZVeHmNOBjQo8a620aQrT VeI9wYmxVWUTyF2XbZiunFwbTDbLQiCrUdEiHes8eoGyGkUHfarJxPxRnx8Q9dSi Vm2Pl6lDV4T9Y5IFF0FBECDEjSsOnAQl8xD3sl2vOjDwgaOcJh5DT1fD/y+xsIc9 XZdU6HtWahAXp76rNiH4yVOagwKPRvVqSzqxYTfJNg6YykPMwVuO+tyL8118J7mh LKEnbCEUJm6bDSvThaoXklJS6ycUF2yB -----END CERTIFICATE-----Generated at Sun Jan 25 14:12:43 2026 by rpki-client