This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: AjodAzZ9O3nU8LSb3yPh9SDzTJevs58zNS/pH2slO8Q= Subject key identifier: E4:09:10:DC:34:89:09:39:0F:2F:78:0D:FD:6B:A3:C1:97:CF:A7:FF Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: A4 Signing time: Sun 25 Jan 2026 05:27:59 +0000 Manifest this update: Sun 25 Jan 2026 05:27:58 +0000 Manifest next update: Sun 01 Feb 2026 05:27:58 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: W7Ro6KnFECa/RCq799+dNsztTIEC7Ttwj/Jq2X4msQ4=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: lmcfypgvF/mtoKjvnXLn6HPlmTzNJ54zQXihVqd1hIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Jan 25 05:27:58 2026 GMT Not After : Feb 1 05:27:58 2026 GMT Subject: CN=6975a9df-683e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:2b:a6:dc:f2:c0:d4:b0:51:d0:8f:3f:ba: eb:81:63:62:90:e0:2d:a0:c3:4c:19:8a:1a:3a:40: eb:07:7b:0c:35:62:9e:6a:5a:f8:1f:fa:f9:4d:3d: 22:85:7d:42:5f:7d:c5:aa:ea:3a:e6:fc:7b:e8:c7: ed:0a:34:22:f0:42:57:81:6d:2d:ec:82:dd:35:36: 46:be:e1:63:33:6e:df:64:15:80:aa:17:e7:75:43: 80:2b:64:2c:6e:e8:e6:6d:70:92:f7:07:ee:2c:ef: 53:ce:50:fe:6b:78:1f:51:2b:c1:3d:4c:d0:13:65: 15:7e:cf:9a:99:1a:46:c9:19:1e:6e:25:a5:3e:d9: d4:bc:0c:a3:cb:15:15:73:5a:01:fc:60:15:99:d2: 8f:98:ce:2c:5f:b0:61:fb:88:6f:e6:82:d2:db:6d: 21:7f:b8:36:f7:9c:a1:c1:1a:ab:3f:68:0e:61:3e: 5f:cd:44:0e:f1:2b:ca:9c:47:6d:f4:be:58:85:07: 57:f1:2e:49:53:18:e7:72:54:b8:8f:16:34:65:19: e3:dd:19:8d:b5:73:dd:79:ed:d9:05:f2:93:1e:d8: 3d:63:0a:99:43:b0:37:b8:bc:11:35:3b:a0:21:7f: 52:97:dd:5a:56:05:ac:97:d9:53:a0:02:28:f0:7e: af:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:09:10:DC:34:89:09:39:0F:2F:78:0D:FD:6B:A3:C1:97:CF:A7:FF X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:27:d2:4c:c0:5c:ce:6f:6e:7f:34:0d:19:41:7b:a7:4e:49: d3:d9:57:41:71:0a:9c:f3:47:8a:c2:14:d9:99:85:0e:fb:23: f6:0c:31:c5:be:9f:f2:9e:be:c2:1e:af:7c:79:9e:ef:dd:88: dd:aa:c4:94:42:c0:6a:13:54:e1:e6:fd:48:f3:b6:a7:26:2d: 5c:d2:e0:78:26:c3:36:97:84:7b:0c:d6:ff:cc:fe:9e:5a:01: 4f:46:c2:57:31:57:43:8b:25:aa:35:87:6e:0b:a0:ab:59:c1: e3:a1:17:30:cb:bf:49:1f:4c:00:91:04:6d:bb:5c:36:b2:84: 7a:e0:9c:87:ab:9f:ac:57:30:77:b2:0b:7e:73:d9:31:16:4d: b2:5f:8a:cf:d6:09:c3:9f:78:64:86:1b:79:a5:4d:0a:85:6e: 08:cf:33:33:4d:83:62:03:4d:cc:0e:e3:57:01:57:b0:09:7a: ee:3f:a6:59:ce:5f:36:43:bb:0c:30:50:9e:dd:52:01:75:f0: 8f:3f:0a:92:a0:58:07:e8:31:15:1c:49:b6:6f:fe:02:97:87: f6:ac:46:fc:b8:e8:6e:01:73:e3:65:d3:f6:60:d2:35:8b:b0: 15:83:c0:bf:aa:eb:a6:25:9b:f4:40:ef:5b:d4:77:fb:68:78: 80:7a:00:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE4QzIxMTAvBgNVBAUTKEQyNEZDQ0FEM0FDRTdGRkU1QkYwMkE2QThGNjhDMDYw MkUxQzFCNTEwHhcNMjYwMTI1MDUyNzU4WhcNMjYwMjAxMDUyNzU4WjAYMRYwFAYD VQQDDA02OTc1YTlkZi02ODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2srptzywNSwUdCPP7rrgWNikOAtoMNMGYoaOkDrB3sMNWKealr4H/r5TT0i hX1CX33Fquo65vx76MftCjQi8EJXgW0t7ILdNTZGvuFjM27fZBWAqhfndUOAK2Qs bujmbXCS9wfuLO9TzlD+a3gfUSvBPUzQE2UVfs+amRpGyRkebiWlPtnUvAyjyxUV c1oB/GAVmdKPmM4sX7Bh+4hv5oLS220hf7g295yhwRqrP2gOYT5fzUQO8SvKnEdt 9L5YhQdX8S5JUxjnclS4jxY0ZRnj3RmNtXPdee3ZBfKTHtg9YwqZQ7A3uLwRNTug IX9Sl91aVgWsl9lToAIo8H6v0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQJENw0 iQk5Dy94Df1ro8GXz6f/MB8GA1UdIwQYMBaAFNJPzK06zn/+W/Aqao9owGAuHBtR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQThDMi85NUE2OUJFMjAw NTMxMUYwOEU3M0UxNEFDNEY5QUUwMi8wa19NclRyT2ZfNWI4Q3BxajJqQVlDNGNH MUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QThDMi85NUE2OUJFMjAwNTMxMUYwOEU3M0UxNEFDNEY5QUUwMi8wa19NclRyT2Zf NWI4Q3BxajJqQVlDNGNHMUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCJ9JMwFzOb25/NA0ZQXunTknT2VdBcQqc80eKwhTZmYUO+yP2DDHF vp/ynr7CHq98eZ7v3YjdqsSUQsBqE1Th5v1I87anJi1c0uB4JsM2l4R7DNb/zP6e WgFPRsJXMVdDiyWqNYduC6CrWcHjoRcwy79JH0wAkQRtu1w2soR64JyHq5+sVzB3 sgt+c9kxFk2yX4rP1gnDn3hkhht5pU0KhW4IzzMzTYNiA03MDuNXAVewCXruP6ZZ zl82Q7sMMFCe3VIBdfCPPwqSoFgH6DEVHEm2b/4Cl4f2rEb8uOhuAXPjZdP2YNI1 i7AVg8C/quumJZv0QO9b1Hf7aHiAegDg -----END CERTIFICATE-----Generated at Sun Jan 25 16:23:16 2026 by rpki-client