This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBF47/0DFAEE48F28B11F0B3FDFE426B6F56BC/Cd0OotIDEfeT5HQ_CGXISgJHP9s.mft File: Cd0OotIDEfeT5HQ_CGXISgJHP9s.mft (raw, json) Hash identifier: YHRFUNRTIk8CZJuIBBDjVJYdMv64xA0duMlYckyXv80= Subject key identifier: 57:79:6F:D7:0D:7D:B5:EE:DE:D3:E8:C4:BA:80:62:57:F8:D4:97:24 Authority key identifier: 09:DD:0E:A2:D2:03:11:F7:93:E4:74:3F:08:65:C8:4A:02:47:3F:DB Certificate issuer: /CN=A91CBF47/serialNumber=09DD0EA2D20311F793E4743F0865C84A02473FDB Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Cd0OotIDEfeT5HQ_CGXISgJHP9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBF47/0DFAEE48F28B11F0B3FDFE426B6F56BC/Cd0OotIDEfeT5HQ_CGXISgJHP9s.mft Manifest number: 08 Signing time: Sat 24 Jan 2026 14:30:55 +0000 Manifest this update: Sat 24 Jan 2026 14:30:55 +0000 Manifest next update: Sat 31 Jan 2026 14:30:55 +0000 Files and hashes: 1: Cd0OotIDEfeT5HQ_CGXISgJHP9s.crl (hash: 1bq83qQ9R4lkWvN02euaW1t7jnbD5xMtlWy7MFCeIyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBF47/0DFAEE48F28B11F0B3FDFE426B6F56BC/Cd0OotIDEfeT5HQ_CGXISgJHP9s.crl rsync://rpki.apnic.net/member_repository/A91CBF47/0DFAEE48F28B11F0B3FDFE426B6F56BC/Cd0OotIDEfeT5HQ_CGXISgJHP9s.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Cd0OotIDEfeT5HQ_CGXISgJHP9s.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBF47, serialNumber=09DD0EA2D20311F793E4743F0865C84A02473FDB Validity Not Before: Jan 24 14:30:55 2026 GMT Not After : Jan 31 14:30:55 2026 GMT Subject: CN=6974d79f-484b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b9:10:75:25:0e:11:23:24:9b:93:48:6e:19: 3a:54:d9:3a:a8:fb:b0:cc:70:c1:4d:25:f8:53:a5: e6:8c:ae:ef:4f:14:e1:18:c7:70:b5:68:76:b0:68: 6f:b2:03:0f:39:4a:a6:b3:5c:b5:79:60:36:0f:c3: ee:48:57:dc:17:bd:d7:20:35:38:48:28:e8:3f:6e: 71:4c:78:a7:83:e7:f6:ef:99:ca:4d:75:d5:1b:7b: c8:82:a4:22:f9:c0:55:76:d8:48:63:8f:09:8f:9d: a4:d8:a8:76:a5:c6:bc:55:1f:68:d8:67:5d:8a:2b: fa:20:ac:61:eb:a5:a0:ab:a5:3c:68:63:7e:64:f4: bf:c4:38:d0:f2:91:8a:60:dd:df:a0:f1:e6:c8:d3: bc:03:88:b3:b3:ef:23:21:16:8e:23:75:c8:32:50: 98:1f:98:2e:61:07:fd:82:5d:59:a3:a4:a5:aa:28: 1e:d9:01:85:50:13:5e:a0:97:e4:3f:36:92:42:a8: 66:72:a3:81:31:90:d3:f5:40:73:57:63:82:a9:ca: 5f:95:ef:36:df:27:ce:6d:48:c1:a0:8f:36:52:6d: c3:83:63:23:ef:3f:27:6e:5a:89:bf:82:8e:5d:0a: 0d:0f:93:72:e8:54:08:a8:38:c5:eb:ed:8e:4b:11: 9e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:79:6F:D7:0D:7D:B5:EE:DE:D3:E8:C4:BA:80:62:57:F8:D4:97:24 X509v3 Authority Key Identifier: keyid:09:DD:0E:A2:D2:03:11:F7:93:E4:74:3F:08:65:C8:4A:02:47:3F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBF47/0DFAEE48F28B11F0B3FDFE426B6F56BC/Cd0OotIDEfeT5HQ_CGXISgJHP9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Cd0OotIDEfeT5HQ_CGXISgJHP9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBF47/0DFAEE48F28B11F0B3FDFE426B6F56BC/Cd0OotIDEfeT5HQ_CGXISgJHP9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:1b:a3:b3:5e:72:6f:37:1d:30:18:ab:5a:ac:d8:b7:79:7d: cc:3e:e8:8d:ab:22:25:be:8b:8c:bb:78:01:b8:16:42:f6:65: e5:74:cf:6a:3d:1e:74:28:ba:a0:fe:45:8c:ff:3e:b7:b4:b8: 49:fd:54:c5:0a:f9:29:44:f8:d3:eb:27:16:cd:88:f3:c4:37: 18:62:5c:e9:bf:2c:80:69:f7:bc:bc:de:d7:7d:c1:7f:f0:ab: c7:1b:27:4d:0d:7d:9b:b1:24:e4:9f:96:e2:c7:e5:f7:c6:90: 62:47:8e:06:1b:56:1d:fc:7d:ac:57:59:8b:c5:fc:63:a4:24: 51:3f:d5:b5:df:c6:e6:fe:a5:79:ee:d6:27:da:18:01:70:ea: 85:18:24:70:59:1d:95:30:6d:79:37:59:50:b0:70:e1:e6:78: 43:31:4f:8f:ec:8d:70:db:52:23:f7:8f:91:be:f2:cf:b4:81: 12:ce:9e:40:50:b5:4b:bb:a4:2c:81:ec:ad:e8:40:c0:c4:59: f3:56:ee:f2:43:9e:24:e1:86:5a:5a:55:a5:6c:95:94:02:b6: 88:ff:c3:3f:5c:22:43:f5:89:02:c1:e6:3b:a0:68:d4:e2:da: 1b:d5:f0:7f:29:17:06:d3:d1:cc:b4:4b:35:1e:fd:40:4d:bc: c3:5a:f3:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFD QkY0NzExMC8GA1UEBRMoMDlERDBFQTJEMjAzMTFGNzkzRTQ3NDNGMDg2NUM4NEEw MjQ3M0ZEQjAeFw0yNjAxMjQxNDMwNTVaFw0yNjAxMzExNDMwNTVaMBgxFjAUBgNV BAMMDTY5NzRkNzlmLTQ4NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyuRB1JQ4RIySbk0huGTpU2Tqo+7DMcMFNJfhTpeaMru9PFOEYx3C1aHawaG+y Aw85SqazXLV5YDYPw+5IV9wXvdcgNThIKOg/bnFMeKeD5/bvmcpNddUbe8iCpCL5 wFV22EhjjwmPnaTYqHalxrxVH2jYZ12KK/ogrGHrpaCrpTxoY35k9L/EONDykYpg 3d+g8ebI07wDiLOz7yMhFo4jdcgyUJgfmC5hB/2CXVmjpKWqKB7ZAYVQE16gl+Q/ NpJCqGZyo4ExkNP1QHNXY4Kpyl+V7zbfJ85tSMGgjzZSbcODYyPvPyduWom/go5d Cg0Pk3LoVAioOMXr7Y5LEZ4vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV3lv1w19 te7e0+jEuoBiV/jUlyQwHwYDVR0jBBgwFoAUCd0OotIDEfeT5HQ/CGXISgJHP9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCRjQ3LzBERkFFRTQ4RjI4 QjExRjBCM0ZERkU0MjZCNkY1NkJDL0NkME9vdElERWZlVDVIUV9DR1hJU2dKSFA5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvQ2QwT290SURFZmVUNUhRX0NHWElTZ0pIUDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC RjQ3LzBERkFFRTQ4RjI4QjExRjBCM0ZERkU0MjZCNkY1NkJDL0NkME9vdElERWZl VDVIUV9DR1hJU2dKSFA5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABcbo7Necm83HTAYq1qs2Ld5fcw+6I2rIiW+i4y7eAG4FkL2ZeV0z2o9 HnQouqD+RYz/Pre0uEn9VMUK+SlE+NPrJxbNiPPENxhiXOm/LIBp97y83td9wX/w q8cbJ00NfZuxJOSfluLH5ffGkGJHjgYbVh38faxXWYvF/GOkJFE/1bXfxub+pXnu 1ifaGAFw6oUYJHBZHZUwbXk3WVCwcOHmeEMxT4/sjXDbUiP3j5G+8s+0gRLOnkBQ tUu7pCyB7K3oQMDEWfNW7vJDniThhlpaVaVslZQCtoj/wz9cIkP1iQLB5jugaNTi 2hvV8H8pFwbT0cy0SzUe/UBNvMNa81w= -----END CERTIFICATE-----Generated at Sun Jan 25 14:59:48 2026 by rpki-client