This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft File: SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft (raw, json) Hash identifier: E8kWO4qyYFVDgrmryRvNdmoy6/mTQZGfa8H9lAe6sBA= Subject key identifier: E3:31:61:83:99:CD:0C:36:F1:93:04:FA:19:9E:13:14:79:6C:FA:89 Authority key identifier: 49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00 Certificate issuer: /CN=A91D2B9A/serialNumber=499D691B0F732D9006E9513C60B7366B4E690400 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft Manifest number: 07 Signing time: Fri 23 Jan 2026 07:09:17 +0000 Manifest this update: Fri 23 Jan 2026 07:09:17 +0000 Manifest next update: Fri 30 Jan 2026 07:09:17 +0000 Files and hashes: 1: SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl (hash: UZ/2gOjnesXsMH69ZCyyJ33GZIGuaMh+4I8KqP8jsA8=) 2: 75BE67B2F12311F09E054F8D4F6F56BC.roa (hash: 0WZLBOrY5orE7S2WGRqVxm0407d+k7g1SOw//pvprUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 07:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B9A, serialNumber=499D691B0F732D9006E9513C60B7366B4E690400 Validity Not Before: Jan 23 07:09:17 2026 GMT Not After : Jan 30 07:09:17 2026 GMT Subject: CN=69731e9d-1d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d7:7e:8c:72:eb:3c:5a:aa:6c:0a:2f:99:59: 9e:68:6d:fa:c6:d9:5a:12:c7:a1:33:f7:a4:ab:1b: 9f:15:be:66:fa:2b:ae:e3:b8:28:79:89:b2:cb:0b: ba:6b:dc:dd:f1:d4:30:22:a4:b9:a1:d8:f5:8f:21: 9f:7e:01:d1:e0:81:52:cd:02:07:57:bf:47:18:89: e4:85:bc:c1:5f:29:28:88:db:e8:8e:cb:fb:a0:aa: 36:32:9f:75:4c:e0:ed:85:63:7d:6f:49:22:06:ae: 92:9a:53:bb:9f:a7:bc:4f:33:41:22:2c:11:44:ba: 18:b1:ff:65:70:b5:f4:a3:9e:c6:9a:6f:c3:55:50: 98:13:a3:0c:03:4d:03:ca:1a:f2:9a:75:26:20:2f: 10:11:7e:48:3a:72:d0:ab:92:45:ba:6b:4c:4d:f9: 66:89:d8:df:ae:fd:d2:23:3a:ba:7d:4c:18:20:74: 57:23:81:ad:23:fd:31:d0:3d:ad:42:8c:6f:d8:1d: 0c:99:ac:a6:0b:5e:29:1d:d0:2f:78:04:c6:03:f7: 9f:34:06:21:16:39:cb:0a:a7:39:89:ef:54:db:71: 3f:3d:a6:ed:09:d4:16:9b:4e:e8:02:36:c7:37:ae: 85:d0:a5:5e:66:47:ed:9e:85:c9:20:87:54:de:3a: c3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:31:61:83:99:CD:0C:36:F1:93:04:FA:19:9E:13:14:79:6C:FA:89 X509v3 Authority Key Identifier: keyid:49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:99:fb:2f:c4:df:c4:79:1c:0f:8d:78:2f:a0:ef:e5:0e:c8: a3:aa:89:0b:5e:5b:ed:bd:fa:eb:f7:db:d8:38:2b:42:cd:ce: 9d:ae:2b:5b:53:f9:2b:f4:57:06:72:cf:fb:9b:ff:ee:6c:62: 3f:d8:15:6a:ed:38:c2:61:0f:fd:0d:cd:6b:0b:9d:4a:a3:2f: 46:ba:9e:94:21:a6:60:73:60:30:17:7c:13:ba:04:7e:62:b4: ee:97:7f:5e:95:e7:5c:3f:a1:c2:31:63:c9:f9:32:b0:c4:47: d5:af:33:f8:11:86:59:72:87:12:5e:21:f7:2a:56:16:30:fd: 22:63:cb:0d:be:0b:bf:fc:cf:aa:45:52:19:5f:26:32:3d:87: a3:88:96:d5:3b:ce:88:12:d1:c1:62:16:e2:9e:ce:9d:fc:5d: 42:a1:7a:ef:06:2d:ac:43:b6:ff:fe:83:cb:62:34:f1:ea:79: b3:6e:95:2f:2e:c2:79:e7:93:36:45:4f:c9:ef:9b:c4:2f:8b: 0f:c7:a9:4b:4c:5a:e1:9b:6c:e0:92:c7:4c:91:1e:a1:fc:32: 27:7d:a2:9c:f7:da:5c:90:a4:85:54:ae:89:5c:48:8f:1b:90: 05:4e:2a:1a:b7:da:1d:22:e3:8c:a2:03:22:f1:ff:c2:03:da: c5:8f:84:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFE MkI5QTExMC8GA1UEBRMoNDk5RDY5MUIwRjczMkQ5MDA2RTk1MTNDNjBCNzM2NkI0 RTY5MDQwMDAeFw0yNjAxMjMwNzA5MTdaFw0yNjAxMzAwNzA5MTdaMBgxFjAUBgNV BAMMDTY5NzMxZTlkLTFkNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM136Mcus8WqpsCi+ZWZ5obfrG2VoSx6Ez96SrG58Vvmb6K67juCh5ibLLC7pr 3N3x1DAipLmh2PWPIZ9+AdHggVLNAgdXv0cYieSFvMFfKSiI2+iOy/ugqjYyn3VM 4O2FY31vSSIGrpKaU7ufp7xPM0EiLBFEuhix/2VwtfSjnsaab8NVUJgTowwDTQPK GvKadSYgLxARfkg6ctCrkkW6a0xN+WaJ2N+u/dIjOrp9TBggdFcjga0j/THQPa1C jG/YHQyZrKYLXikd0C94BMYD9580BiEWOcsKpzmJ71TbcT89pu0J1BabTugCNsc3 roXQpV5mR+2ehckgh1TeOsO1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4zFhg5nN DDbxkwT6GZ4TFHls+okwHwYDVR0jBBgwFoAUSZ1pGw9zLZAG6VE8YLc2a05pBAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjlBLzc3OTY5QjhDRjEy MjExRjBBQzVDREE3RTRFNkY1NkJDL1NaMXBHdzl6TFpBRzZWRThZTGMyYTA1cEJB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvU1oxcEd3OXpMWkFHNlZFOFlMYzJhMDVwQkFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QjlBLzc3OTY5QjhDRjEyMjExRjBBQzVDREE3RTRFNkY1NkJDL1NaMXBHdzl6TFpB RzZWRThZTGMyYTA1cEJBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEiZ+y/E38R5HA+NeC+g7+UOyKOqiQteW+29+uv329g4K0LNzp2uK1tT +Sv0VwZyz/ub/+5sYj/YFWrtOMJhD/0NzWsLnUqjL0a6npQhpmBzYDAXfBO6BH5i tO6Xf16V51w/ocIxY8n5MrDER9WvM/gRhllyhxJeIfcqVhYw/SJjyw2+C7/8z6pF UhlfJjI9h6OIltU7zogS0cFiFuKezp38XUKheu8GLaxDtv/+g8tiNPHqebNulS8u wnnnkzZFT8nvm8Qviw/HqUtMWuGbbOCSx0yRHqH8Mid9opz32lyQpIVUrolcSI8b kAVOKhq32h0i44yiAyLx/8ID2sWPhBA= -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:09 2026 by rpki-client