This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: fsPX9/LyR00N3Y4b0JWbXpyRrFmXitdtDGR8PEUSt+U= Subject key identifier: 5E:AC:67:E1:BC:FD:F5:59:35:21:37:04:A9:20:8B:55:76:BD:7F:66 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 0981 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 0965 Signing time: Sat 24 Jan 2026 19:34:36 +0000 Manifest this update: Sat 24 Jan 2026 19:34:36 +0000 Manifest next update: Sat 31 Jan 2026 19:34:36 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: Dx2o3kRYH7odWY3a75EbAZxoMcW/a7cGcHsDiqbJM6g=) 2: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: PnqDvM4vjQdsVy80UhznbWoKhp/dlqh33E+GG+RU+dk=) 3: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: Ci305f1V47fRIRqmqjLy+EIi8DLnLoGCGpVVZ48v10E=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: qKXv165pzdK/WBxXfxqKy/V+953i+G1rFbe37yvanHk=) 5: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: EzZJxF7ZrXqvRiGypY3gfcMIXSDFoU1zHAEwKcXQMu4=) 6: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: lvX9qWs0U9FJpaiKhdFBFudNcs3mWD37dbOmEs33Njk=) 7: 2BFE357EF06211F08763644E5C6F56BC.roa (hash: Xmf0MRh/MXBc+iFvfoflK2eHN9mE4CmoCd4WG2aslcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2433 (0x981) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Jan 24 19:34:36 2026 GMT Not After : Jan 31 19:34:36 2026 GMT Subject: CN=69751ecc-948b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5d:29:de:d4:26:5a:fd:5c:5d:ec:9e:80:fc: 5a:8f:dd:db:3b:a5:1e:b4:9f:16:20:5f:a3:aa:27: 69:65:7f:01:43:48:b8:55:eb:e4:4d:b1:e0:3c:30: 49:29:c7:a4:19:48:eb:d5:d1:8a:46:11:a2:47:f9: 89:4c:d3:34:45:ea:a9:3a:59:03:6f:ff:7d:b7:b0: 11:71:79:ce:b4:0b:0e:e0:32:08:b1:70:f3:54:61: 57:a9:43:69:3e:60:b0:c1:ae:13:f1:b5:17:7a:46: b8:49:d8:88:e9:8c:9e:3e:98:71:1a:fa:5f:d8:19: 32:ab:0d:af:f2:77:e0:ce:c7:ef:76:53:d6:7d:8e: f3:d3:a8:bd:37:c6:ee:1c:c8:d9:91:c7:d8:6a:19: 9c:83:86:f8:f8:4e:00:90:89:40:15:10:6a:3c:8f: 10:a4:2f:c2:df:cd:17:5a:c4:84:2f:e8:96:95:4a: dc:c9:74:d9:9c:8b:ec:03:0b:e6:d4:1d:e0:1b:16: d7:4b:f2:56:4c:d9:fa:90:e2:49:7c:b2:d4:cd:98: 47:c7:f6:2f:53:a9:4a:c7:f3:6e:99:e1:cd:0e:6b: 9a:c7:4b:ce:e7:e6:34:dd:64:e8:dd:20:49:f4:d3: 60:13:c4:c1:50:4c:f4:c9:5e:f2:2c:8d:98:65:6a: 7c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AC:67:E1:BC:FD:F5:59:35:21:37:04:A9:20:8B:55:76:BD:7F:66 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:0c:0a:db:f7:51:fe:b0:f5:64:fc:d4:b9:34:65:3f:4c:d8: 18:f9:46:4d:2c:54:86:cd:8b:18:4f:02:13:80:02:06:6e:b5: f9:b6:fc:63:06:bd:91:68:2d:80:29:a0:1d:17:06:23:2e:9c: 0c:22:6d:13:3c:0b:23:3d:80:14:55:e2:17:44:11:60:98:e3: 99:82:3b:d9:db:b0:4b:08:df:60:eb:29:e5:e3:9c:f6:77:e8: 97:a3:5a:ba:28:24:3c:cd:13:8f:69:4e:c1:5d:3f:7a:f0:ac: 41:5c:fa:ea:f0:f3:17:97:b9:ad:ea:01:db:be:e0:3b:3c:68: 71:59:37:68:c5:b6:cb:c1:a0:8f:70:df:ba:18:c4:a7:93:f2: 59:ad:72:7c:b5:2e:7a:76:4c:ed:0b:d1:d1:55:6d:09:86:f1: 10:3e:e5:76:54:c3:94:65:c4:0d:48:98:87:fb:ae:f0:24:f6: 8c:69:7c:dc:f2:b0:63:2c:1a:70:34:00:39:7f:f1:8e:a7:25: 60:08:44:6b:b9:77:8a:9f:18:5a:d8:6f:3b:da:94:cc:e0:93: ad:27:ee:31:02:d1:ec:ed:fe:61:fd:23:69:a0:1c:ee:1b:ea: 02:6e:05:41:d6:9d:fc:74:25:ad:c0:8e:60:e1:a9:24:e9:64: c0:d4:92:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjYwMTI0MTkzNDM2WhcNMjYwMTMxMTkzNDM2WjAYMRYwFAYD VQQDDA02OTc1MWVjYy05NDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyF0p3tQmWv1cXeyegPxaj93bO6UetJ8WIF+jqidpZX8BQ0i4VevkTbHgPDBJ KcekGUjr1dGKRhGiR/mJTNM0ReqpOlkDb/99t7ARcXnOtAsO4DIIsXDzVGFXqUNp PmCwwa4T8bUXeka4SdiI6YyePphxGvpf2Bkyqw2v8nfgzsfvdlPWfY7z06i9N8bu HMjZkcfYahmcg4b4+E4AkIlAFRBqPI8QpC/C380XWsSEL+iWlUrcyXTZnIvsAwvm 1B3gGxbXS/JWTNn6kOJJfLLUzZhHx/YvU6lKx/NumeHNDmuax0vO5+Y03WTo3SBJ 9NNgE8TBUEz0yV7yLI2YZWp8OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6sZ+G8 /fVZNSE3BKkgi1V2vX9mMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEDArb91H+sPVk/NS5NGU/TNgY+UZNLFSGzYsYTwITgAIGbrX5tvxj Br2RaC2AKaAdFwYjLpwMIm0TPAsjPYAUVeIXRBFgmOOZgjvZ27BLCN9g6ynl45z2 d+iXo1q6KCQ8zROPaU7BXT968KxBXPrq8PMXl7mt6gHbvuA7PGhxWTdoxbbLwaCP cN+6GMSnk/JZrXJ8tS56dkztC9HRVW0JhvEQPuV2VMOUZcQNSJiH+67wJPaMaXzc 8rBjLBpwNAA5f/GOpyVgCERruXeKnxha2G872pTM4JOtJ+4xAtHs7f5h/SNpoBzu G+oCbgVB1p38dCWtwI5g4akk6WTA1JKY -----END CERTIFICATE-----Generated at Sun Jan 25 06:14:50 2026 by rpki-client