This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: sjZZ3+1ZRn9tmbM44GpgyZmOZ7Jg7knD+8KRaNjj2CY= Subject key identifier: AD:F9:B2:C5:FF:1A:16:DF:9C:CE:10:1B:FC:4F:8D:85:88:B4:A8:61 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DD3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0DAD Signing time: Sat 24 Jan 2026 17:34:45 +0000 Manifest this update: Sat 24 Jan 2026 17:34:45 +0000 Manifest next update: Sat 31 Jan 2026 17:34:45 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: xMlpdr3xihCxnxN/nwxDUCJTP9OkM3IMjhpAF5U4Ock=) 2: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: X9dYZT14+8XQBWHYnwgdDdZRJRcUzKustmbcROTHObQ=) 3: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: q0g05GgKYjCwgrzaPkpBrbZSSk5mmMAzTCuEcNwRvwI=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: NT8qFscQ8we+UCxbUkdye1gWb4WsWj8G0bdraYAJJjo=) 5: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: FzGRi5LQaRpVvBdZEYGORMu24wIc9n/2XfQjymU7CyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Jan 24 17:34:45 2026 GMT Not After : Jan 31 17:34:45 2026 GMT Subject: CN=697502b5-326e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:1f:c7:95:d4:e9:06:c0:b2:d0:ef:93:21: 6c:00:4e:76:01:bb:02:9a:f1:bf:b0:b8:7c:91:26: 43:36:90:3e:a2:93:de:a8:2f:c0:b2:1b:26:9d:e6: fd:10:f3:c9:30:6e:df:c3:44:6f:ad:65:6f:6a:b4: 64:34:b0:f5:3d:35:8e:c8:6a:4b:1c:90:90:6e:6f: 87:d2:4d:75:fd:67:9d:c7:0e:a7:02:0b:cd:e3:95: 87:48:95:9b:8f:31:f9:cf:79:a7:40:21:1f:0c:1b: 98:d8:d1:52:49:cf:31:7a:b7:95:1c:3e:d9:d6:78: 00:93:3f:1e:1d:7a:36:60:13:f5:2d:94:a4:03:d2: 9b:b3:94:63:05:f5:a5:76:32:9d:fd:40:88:c0:45: 4c:3f:5f:08:cc:3b:74:7a:03:cc:e6:e8:9c:27:0d: 6e:ab:b3:f9:ae:32:3f:3c:3a:fb:1f:39:78:4c:36: b7:be:4b:7b:6e:a7:7b:e6:fb:ed:46:3d:35:81:5a: d3:d6:64:8e:e9:a4:4c:c7:b8:c0:58:04:cc:9a:ac: 6d:b8:67:5b:6f:44:70:4b:15:a2:7a:6d:c9:d5:5b: 0b:e2:bc:93:0a:c9:15:0f:6a:ea:3c:76:1f:29:c0: 65:57:4c:24:d2:be:08:f9:55:19:1a:dc:28:c3:8c: 5e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F9:B2:C5:FF:1A:16:DF:9C:CE:10:1B:FC:4F:8D:85:88:B4:A8:61 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:59:8e:25:d0:7e:5c:9a:be:a0:9b:a4:9f:91:71:17:46:b3: 9d:60:c3:6b:58:45:57:b8:c8:07:43:e8:ed:bf:db:f2:b9:ba: 65:d1:5e:8f:28:fd:40:cb:4f:09:13:64:7e:27:d8:68:0b:c8: 52:95:c5:d4:0b:ed:32:0b:5c:b9:74:34:6c:61:32:54:9e:0d: a5:e7:dc:4e:7e:f3:46:28:4b:fd:56:fc:21:d2:be:18:30:11: f2:2f:3b:7c:8d:8c:81:10:71:4c:34:55:2b:e2:90:d6:7b:e3: ff:df:15:2d:0f:0b:28:d4:b9:72:9d:06:8a:03:61:26:27:5c: 1b:1c:3a:b3:0b:e1:a5:92:3f:1f:a8:3d:2f:a8:07:e8:c7:40: d6:9c:79:d2:b9:45:ff:5d:bd:62:96:2a:38:42:43:b9:4a:2b: 8d:ed:0f:6c:b9:4c:4d:95:fb:95:fe:ca:eb:57:6a:5c:6f:aa: 1a:87:38:67:8b:19:42:fe:15:2d:04:23:12:67:ed:2b:5b:fe: f0:65:41:dd:9b:95:46:2c:99:b5:26:fb:01:89:96:58:c5:55: c7:59:ef:0c:66:be:08:36:3b:53:1f:6e:62:a5:02:15:46:fc: 91:9b:48:36:a0:0a:fb:f6:cb:9d:e8:0e:c3:48:42:ca:7c:8a: 64:a5:e3:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjYwMTI0MTczNDQ1WhcNMjYwMTMxMTczNDQ1WjAYMRYwFAYD VQQDDA02OTc1MDJiNS0zMjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5Afx5XU6QbAstDvkyFsAE52AbsCmvG/sLh8kSZDNpA+opPeqC/Ashsmneb9 EPPJMG7fw0RvrWVvarRkNLD1PTWOyGpLHJCQbm+H0k11/Wedxw6nAgvN45WHSJWb jzH5z3mnQCEfDBuY2NFSSc8xereVHD7Z1ngAkz8eHXo2YBP1LZSkA9Kbs5RjBfWl djKd/UCIwEVMP18IzDt0egPM5uicJw1uq7P5rjI/PDr7Hzl4TDa3vkt7bqd75vvt Rj01gVrT1mSO6aRMx7jAWATMmqxtuGdbb0RwSxWiem3J1VsL4ryTCskVD2rqPHYf KcBlV0wk0r4I+VUZGtwow4xeJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK35ssX/ GhbfnM4QG/xPjYWItKhhMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBWY4l0H5cmr6gm6SfkXEXRrOdYMNrWEVXuMgHQ+jtv9vyubpl0V6P KP1Ay08JE2R+J9hoC8hSlcXUC+0yC1y5dDRsYTJUng2l59xOfvNGKEv9Vvwh0r4Y MBHyLzt8jYyBEHFMNFUr4pDWe+P/3xUtDwso1LlynQaKA2EmJ1wbHDqzC+Glkj8f qD0vqAfox0DWnHnSuUX/Xb1ilio4QkO5SiuN7Q9suUxNlfuV/srrV2pcb6oahzhn ixlC/hUtBCMSZ+0rW/7wZUHdm5VGLJm1JvsBiZZYxVXHWe8MZr4INjtTH25ipQIV RvyRm0g2oAr79sud6A7DSELKfIpkpeMw -----END CERTIFICATE-----Generated at Sun Jan 25 15:58:33 2026 by rpki-client