This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: nbCoIQJZmVdPOwS4zocQ2aLMAFNesOL1Uhc4/iiS4gw= Subject key identifier: 8D:C7:E4:1F:3E:70:F8:67:63:28:A3:13:9F:B8:43:0D:A5:B8:1E:63 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 08E3 Signing time: Sat 24 Jan 2026 19:47:23 +0000 Manifest this update: Sat 24 Jan 2026 19:47:22 +0000 Manifest next update: Sat 31 Jan 2026 19:47:22 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: biFBDFPwDwtdRmpS0QWDg5wsBJkTimMCEvRrrOwjSN0=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2281 (0x8e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Jan 24 19:47:22 2026 GMT Not After : Jan 31 19:47:22 2026 GMT Subject: CN=697521cb-d5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d7:70:8e:95:7a:1d:33:0d:eb:cd:5c:41:bd: de:00:87:1a:2d:e8:91:7e:d3:59:34:5e:61:0c:a1: 1d:54:f9:15:f1:15:7e:81:74:21:f0:a0:1a:9e:d0: 79:25:63:62:fd:4a:a2:34:bf:de:09:e4:58:4a:e6: eb:a0:c2:a6:c4:52:2c:2c:78:a7:d1:83:f7:e4:c8: 87:d7:b7:ed:14:c0:33:07:15:fb:d1:9f:08:0e:0f: e5:79:b3:f6:13:ed:5c:c3:65:46:7c:c7:4e:38:6d: 49:0d:81:cc:f2:b2:27:ae:9d:bb:f7:fa:63:d4:f0: e6:7f:42:ef:04:f2:ec:9b:df:48:b5:3b:1e:d1:b9: aa:2a:a9:45:15:11:a7:bf:37:12:47:db:9f:a2:2c: 9d:f9:c1:2d:d7:2a:04:59:ff:42:d5:e8:c4:83:83: 83:92:f3:e6:d0:7a:b5:bc:b4:30:80:70:01:e1:2b: ed:d8:f8:b3:fe:4f:55:36:a0:03:35:f9:55:ab:2c: b2:48:27:9d:9b:38:59:ff:49:97:a6:c3:81:15:df: 30:55:a7:a5:67:6b:c4:72:a2:d9:72:cd:a8:f2:e4: f3:95:8d:52:75:b7:54:2c:1e:a6:b0:9f:b3:5d:f3: c7:86:31:cd:80:0a:5e:a3:25:29:7e:7c:a6:d7:10: 16:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C7:E4:1F:3E:70:F8:67:63:28:A3:13:9F:B8:43:0D:A5:B8:1E:63 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:90:57:dd:af:b0:a3:57:a4:c0:e8:88:71:4d:ef:30:69:30: 8b:43:fa:56:08:32:f2:c7:bd:48:6c:10:eb:4d:7c:5f:d9:9b: 61:14:a9:2d:cd:8e:26:19:62:ad:a1:8e:73:4a:cb:ae:6f:d0: b8:f8:6a:9a:53:d5:2c:c6:85:a9:9a:d1:89:eb:e0:24:14:bb: 2e:ab:79:75:36:e0:64:ac:a7:4e:c7:5b:20:0d:39:8d:8e:70: 71:04:ec:0e:75:04:32:79:ab:f0:05:13:c5:60:9f:da:87:77: 64:a1:90:36:27:d2:42:3e:48:a0:8e:cc:77:a8:47:9c:49:47: b7:ef:f3:ec:2c:96:4f:72:a2:ff:5f:8c:7f:0b:71:3f:6a:02: 1f:88:ac:67:c0:d9:6a:a9:65:a4:2c:8c:7f:f5:66:8f:bb:de: 79:48:81:b2:bc:80:d0:c9:57:f0:69:e7:ef:c6:06:ea:55:d6: 32:b2:ac:c4:68:c2:25:32:02:2b:41:08:c3:63:ce:4b:7a:40: 0c:81:0e:9d:6a:22:8d:9b:6b:36:2d:8e:42:39:07:14:bd:17: 84:b8:da:e1:0a:f2:31:df:dc:51:39:da:f7:be:fb:54:cf:a7: 26:94:a5:3e:81:f7:ce:32:af:40:1c:28:4e:f8:3f:ec:45:47: e6:b2:60:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjYwMTI0MTk0NzIyWhcNMjYwMTMxMTk0NzIyWjAYMRYwFAYD VQQDDA02OTc1MjFjYi1kNWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NdwjpV6HTMN681cQb3eAIcaLeiRftNZNF5hDKEdVPkV8RV+gXQh8KAantB5 JWNi/UqiNL/eCeRYSubroMKmxFIsLHin0YP35MiH17ftFMAzBxX70Z8IDg/lebP2 E+1cw2VGfMdOOG1JDYHM8rInrp279/pj1PDmf0LvBPLsm99ItTse0bmqKqlFFRGn vzcSR9ufoiyd+cEt1yoEWf9C1ejEg4ODkvPm0Hq1vLQwgHAB4Svt2Piz/k9VNqAD NflVqyyySCedmzhZ/0mXpsOBFd8wVaelZ2vEcqLZcs2o8uTzlY1SdbdULB6msJ+z XfPHhjHNgApeoyUpfnym1xAWFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3H5B8+ cPhnYyijE5+4Qw2luB5jMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANkFfdr7CjV6TA6IhxTe8waTCLQ/pWCDLyx71IbBDrTXxf2ZthFKkt zY4mGWKtoY5zSsuub9C4+GqaU9UsxoWpmtGJ6+AkFLsuq3l1NuBkrKdOx1sgDTmN jnBxBOwOdQQyeavwBRPFYJ/ah3dkoZA2J9JCPkigjsx3qEecSUe37/PsLJZPcqL/ X4x/C3E/agIfiKxnwNlqqWWkLIx/9WaPu955SIGyvIDQyVfwaefvxgbqVdYysqzE aMIlMgIrQQjDY85LekAMgQ6daiKNm2s2LY5COQcUvReEuNrhCvIx39xROdr3vvtU z6cmlKU+gffOMq9AHChO+D/sRUfmsmDr -----END CERTIFICATE-----Generated at Sun Jan 25 11:53:04 2026 by rpki-client