This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: EZkvfaOJhsJ3lGaHd8HeituPSYcotEEivRONYZfnr/Q= Subject key identifier: 97:3A:A7:07:EB:A7:2F:F7:C3:71:A4:41:6F:B7:D0:5F:21:EE:FF:C9 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0833 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 082D Signing time: Sat 24 Jan 2026 20:15:23 +0000 Manifest this update: Sat 24 Jan 2026 20:15:23 +0000 Manifest next update: Sat 31 Jan 2026 20:15:23 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: 0eKVm8HY3h4t9H2y+kALmjdnpolOnCfiK/IQxiDJrQc=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2099 (0x833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Jan 24 20:15:23 2026 GMT Not After : Jan 31 20:15:23 2026 GMT Subject: CN=6975285b-0b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3b:c1:83:58:40:65:ab:fa:98:cd:1c:3a:bf: 4c:b2:d0:6a:c8:32:9f:fd:59:0f:89:73:82:81:f9: 72:e4:b5:cb:96:82:35:ae:da:79:17:54:b3:00:5e: 99:95:ad:66:c5:7e:0f:4d:aa:3d:0c:5a:7a:a9:43: f3:12:cb:90:42:af:56:3c:01:c4:b6:ae:46:ca:a0: 3f:b8:78:ef:44:25:98:51:c6:e8:0f:d3:33:97:2a: aa:5f:a5:82:fb:84:3a:de:83:f4:67:46:9a:a2:30: 4d:b8:cc:d7:99:1d:cf:f5:1f:13:f3:7c:1d:d0:83: 92:b0:68:68:10:e5:15:66:80:26:d1:56:98:86:b9: 9e:f7:81:3a:8b:7d:c2:d1:7d:f5:26:a4:d5:02:e8: 57:9c:8e:a4:7e:29:97:22:e9:fe:17:5f:4e:33:68: 7c:ed:b2:f4:45:3c:95:26:c6:53:b5:6f:24:07:bf: 71:09:e7:78:8a:dd:81:44:07:79:c6:ef:e8:d2:4b: 26:7a:2e:ba:c9:a2:a9:28:69:ff:43:17:83:11:73: 47:b6:29:cc:e1:d4:9d:65:34:67:f2:d6:4b:f5:73: 7a:c6:79:1b:81:49:7d:7d:26:16:0c:c6:2e:08:80: f4:9e:16:f4:63:7a:2d:01:03:e8:bc:8c:22:8a:45: 2c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3A:A7:07:EB:A7:2F:F7:C3:71:A4:41:6F:B7:D0:5F:21:EE:FF:C9 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:e1:fc:a7:d6:56:b6:b1:2a:a9:53:8a:f2:9e:5d:97:f1:b0: aa:97:b2:4a:77:39:3c:68:50:02:20:34:25:fb:ec:2b:9f:4b: 2e:9a:96:b3:39:20:d6:bc:1d:d0:ec:5c:56:97:27:ae:94:93: 9a:cb:53:c6:e2:2e:ad:b2:69:ab:b4:e4:5e:d2:e6:6d:0f:4f: af:da:06:0b:4f:6c:cb:58:59:46:4e:23:15:b2:49:43:79:30: 21:9b:f2:f4:c6:ad:3c:64:db:8e:4f:6e:8c:c5:17:07:f3:33: 37:75:e4:7a:4d:1f:1e:fd:ac:e1:ae:43:59:35:ef:1d:26:6b: 82:d7:76:38:bb:e4:fe:2d:8a:a7:4c:f0:f2:46:0b:5e:0b:0b: 3f:94:f3:17:d9:2d:e9:00:cf:91:45:8a:82:5e:32:53:1f:ae: 6e:23:ba:9d:69:49:3f:eb:e0:cd:59:62:5c:ba:bc:c8:9e:44: 00:49:80:ca:0f:b7:49:67:b0:e7:15:1b:76:8c:8b:3d:1b:19: 12:da:68:be:bb:f1:10:73:36:47:60:8b:10:58:62:8b:3d:5f: bf:49:ab:81:1d:ff:e0:35:0d:cf:52:c4:2a:03:72:17:e5:a7: 5f:f9:2a:46:25:91:a1:9f:83:b8:53:0f:e1:2e:24:63:28:c7: ea:ed:9b:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjYwMTI0MjAxNTIzWhcNMjYwMTMxMjAxNTIzWjAYMRYwFAYD VQQDDA02OTc1Mjg1Yi0wYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDvBg1hAZav6mM0cOr9MstBqyDKf/VkPiXOCgfly5LXLloI1rtp5F1SzAF6Z la1mxX4PTao9DFp6qUPzEsuQQq9WPAHEtq5GyqA/uHjvRCWYUcboD9MzlyqqX6WC +4Q63oP0Z0aaojBNuMzXmR3P9R8T83wd0IOSsGhoEOUVZoAm0VaYhrme94E6i33C 0X31JqTVAuhXnI6kfimXIun+F19OM2h87bL0RTyVJsZTtW8kB79xCed4it2BRAd5 xu/o0ksmei66yaKpKGn/QxeDEXNHtinM4dSdZTRn8tZL9XN6xnkbgUl9fSYWDMYu CID0nhb0Y3otAQPovIwiikUsmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJc6pwfr py/3w3GkQW+30F8h7v/JMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA44fyn1la2sSqpU4rynl2X8bCql7JKdzk8aFACIDQl++wrn0sumpaz OSDWvB3Q7FxWlyeulJOay1PG4i6tsmmrtORe0uZtD0+v2gYLT2zLWFlGTiMVsklD eTAhm/L0xq08ZNuOT26MxRcH8zM3deR6TR8e/azhrkNZNe8dJmuC13Y4u+T+LYqn TPDyRgteCws/lPMX2S3pAM+RRYqCXjJTH65uI7qdaUk/6+DNWWJcurzInkQASYDK D7dJZ7DnFRt2jIs9GxkS2mi+u/EQczZHYIsQWGKLPV+/SauBHf/gNQ3PUsQqA3IX 5adf+SpGJZGhn4O4Uw/hLiRjKMfq7Zsu -----END CERTIFICATE-----Generated at Sun Jan 25 10:40:49 2026 by rpki-client