This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: 2ebyzLjiK2FnuoC8D67CruhvWSCgZz7vKS11wL85fuE= Subject key identifier: BF:64:80:55:68:8B:60:FC:C1:35:78:F3:48:F2:89:1B:53:40:BE:AE Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 0848 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 0830 Signing time: Sat 24 Jan 2026 20:20:56 +0000 Manifest this update: Sat 24 Jan 2026 20:20:55 +0000 Manifest next update: Sat 31 Jan 2026 20:20:55 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: +E3mmkSPq5olilnpuG5ZrqfmxGcYMxlfWM4ghBzsoFY=) 2: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: U1bQn0cREbDCYE8np1FOgxq7ZLPbZTRmflBcUUu8DFM=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: 5YYK0YKoDCpaklYir4k5rIBA5wPjwgrEAbtRskRmQT8=) 4: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: Rw6zEr6DY5Vp9Hj5tF7TI5Kq9ScA3GH+aMoga9/kLfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:20:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2120 (0x848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Jan 24 20:20:55 2026 GMT Not After : Jan 31 20:20:55 2026 GMT Subject: CN=697529a8-cd5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:3e:67:cf:80:52:bf:39:12:8a:60:4b:90:c1: 7e:85:78:c1:9d:a8:7c:fe:75:6d:17:e3:5b:ba:c5: 32:05:18:e2:04:16:81:5c:63:ae:0e:39:ea:8c:b8: 9f:77:c5:5d:c3:81:c9:3e:ad:f4:ba:90:55:87:b1: 5e:5b:71:20:ef:b1:61:76:55:c4:50:5e:11:5a:8f: c5:dd:62:ce:74:67:12:6a:72:35:20:54:db:9b:32: ef:b6:a9:21:6f:b6:6d:eb:89:d0:56:f9:ff:d5:44: e7:f9:1b:a2:2e:3d:49:91:d5:1e:17:ad:32:55:9e: 77:96:d6:b1:c1:4e:62:0d:50:6b:ad:5d:98:58:b9: 68:36:9e:3d:84:09:ac:ba:09:ed:11:4a:65:59:71: 20:b8:45:14:cc:08:89:2a:cb:38:34:ab:c5:3c:dc: 16:ed:2a:06:31:12:a6:76:79:66:a9:5c:b5:00:8b: d6:35:eb:25:4e:66:fd:2f:71:4f:85:46:6b:12:cc: eb:ac:71:ac:7d:9b:ff:25:c8:60:fb:57:9e:58:72: 7a:57:71:91:58:81:a4:bb:11:c9:02:32:c0:81:94: 93:49:bf:39:7e:ea:05:60:93:14:fe:39:f7:2b:17: 7c:27:8c:96:00:c8:0c:ad:4a:27:8a:07:b8:44:9b: 0c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:64:80:55:68:8B:60:FC:C1:35:78:F3:48:F2:89:1B:53:40:BE:AE X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:eb:9b:e5:57:3c:fe:93:56:96:58:a7:35:3c:52:e2:a8:cb: b4:79:c0:aa:43:ea:60:17:10:88:d4:ea:f8:e9:b0:c3:df:e3: 5e:29:98:63:de:c1:f7:45:5e:8b:ae:09:b2:77:9f:59:c6:f4: e3:98:8c:80:83:ac:55:8a:f9:85:99:83:28:d8:b3:73:a9:83: 15:27:a0:c1:6c:36:59:c9:96:a8:df:87:4e:23:2a:47:fd:60: 23:4b:3c:27:ee:53:cf:fa:99:89:c5:16:39:00:93:d3:5a:78: 27:cf:2a:76:b0:13:25:bc:e9:95:ba:48:32:80:f8:46:69:4d: 60:93:89:a5:65:0e:26:db:19:cf:8a:04:4f:e4:87:e0:4c:d6: db:4f:3d:7a:5c:e6:63:01:c1:f7:20:26:e5:3b:74:99:a5:41: f3:94:28:e4:79:82:fc:22:4a:1c:27:c8:5f:8c:ec:79:73:5c: 0f:38:0a:cb:43:db:c7:10:33:f4:bf:c5:4f:10:54:fd:27:b3: 93:b4:0f:32:83:42:06:6f:bd:26:56:3f:9d:0a:1c:a7:b6:fb: 5a:dd:40:62:7f:80:30:59:01:60:fd:5e:d2:ba:84:e6:2c:b4: 12:1f:31:83:d8:97:21:8c:fa:44:f2:71:01:35:c3:ee:1e:35: 0a:16:d0:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjYwMTI0MjAyMDU1WhcNMjYwMTMxMjAyMDU1WjAYMRYwFAYD VQQDDA02OTc1MjlhOC1jZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkj5nz4BSvzkSimBLkMF+hXjBnah8/nVtF+NbusUyBRjiBBaBXGOuDjnqjLif d8Vdw4HJPq30upBVh7FeW3Eg77FhdlXEUF4RWo/F3WLOdGcSanI1IFTbmzLvtqkh b7Zt64nQVvn/1UTn+RuiLj1JkdUeF60yVZ53ltaxwU5iDVBrrV2YWLloNp49hAms ugntEUplWXEguEUUzAiJKss4NKvFPNwW7SoGMRKmdnlmqVy1AIvWNeslTmb9L3FP hUZrEszrrHGsfZv/Jchg+1eeWHJ6V3GRWIGkuxHJAjLAgZSTSb85fuoFYJMU/jn3 Kxd8J4yWAMgMrUonige4RJsMaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9kgFVo i2D8wTV480jyiRtTQL6uMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK65vlVzz+k1aWWKc1PFLiqMu0ecCqQ+pgFxCI1Or46bDD3+NeKZhj 3sH3RV6Lrgmyd59ZxvTjmIyAg6xVivmFmYMo2LNzqYMVJ6DBbDZZyZao34dOIypH /WAjSzwn7lPP+pmJxRY5AJPTWngnzyp2sBMlvOmVukgygPhGaU1gk4mlZQ4m2xnP igRP5IfgTNbbTz16XOZjAcH3ICblO3SZpUHzlCjkeYL8IkocJ8hfjOx5c1wPOArL Q9vHEDP0v8VPEFT9J7OTtA8yg0IGb70mVj+dChyntvta3UBif4AwWQFg/V7SuoTm LLQSHzGD2JchjPpE8nEBNcPuHjUKFtCN -----END CERTIFICATE-----Generated at Sun Jan 25 09:36:59 2026 by rpki-client