This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft File: df43qD7agAphAmCFh-30CJ2CQOA.mft (raw, json) Hash identifier: 7gNS4rYXR2pLij8CJgwT/8+rF77MhG97fayjBlgd/NE= Subject key identifier: D8:DB:51:A4:89:60:F2:A4:A9:B3:14:C9:60:42:81:12:12:6C:A2:84 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft Manifest number: 8B Signing time: Fri 23 Jan 2026 05:42:06 +0000 Manifest this update: Fri 23 Jan 2026 05:42:06 +0000 Manifest next update: Fri 30 Jan 2026 05:42:06 +0000 Files and hashes: 1: df43qD7agAphAmCFh-30CJ2CQOA.crl (hash: 6SuHnH3RmyKJfXi8txP4aQU8taqR4z6L5mMz4Mc9tOo=) 2: A7C7EF962A8911F09526D35BC4F9AE02.roa (hash: t0RTmg56JthvruW6/lKLjUx4XzWAwdY96H4SSM4fLcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Jan 23 05:42:06 2026 GMT Not After : Jan 30 05:42:06 2026 GMT Subject: CN=69730a2e-70d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e9:cf:2c:21:02:3f:d9:1b:5f:35:72:e0:35: 9c:34:43:4a:39:f6:6e:5d:4d:cc:14:1e:d4:bc:79: 89:50:90:2a:a8:cb:fe:0e:db:61:55:e7:67:17:90: c4:49:78:bb:38:83:40:a2:fb:be:62:fa:7e:f4:db: 10:70:b2:83:99:75:76:29:a7:d6:8f:f4:19:a8:27: 80:9f:69:4a:f5:02:52:6a:bf:c3:b1:53:59:43:17: 06:84:a1:1a:30:2d:dc:11:2c:6a:76:fc:44:e0:4c: 13:a4:50:87:3d:2b:78:07:e3:0a:16:8d:63:f1:bf: dc:21:ea:4f:92:2c:c4:fa:46:b7:b3:4b:f5:04:fb: 1b:c5:9b:0c:f8:8d:3d:64:b9:0e:48:e4:f7:e9:35: 07:d5:18:86:e6:a2:82:de:cb:6f:ad:16:a5:fe:c6: 85:07:7c:95:2a:1c:45:ef:e4:e9:44:a7:63:21:af: fc:0e:b9:3b:ff:f2:35:08:8f:d7:38:5a:be:b5:de: 95:d5:69:c0:7a:e3:2e:55:36:36:e7:fb:ad:dc:87: c7:65:16:50:7b:33:cc:bd:88:c6:a3:45:9c:7f:21: 59:6e:db:c7:3b:4c:81:79:8d:43:8d:2c:97:4d:df: 7b:69:9d:cc:35:bc:5a:56:31:f7:9e:bd:c9:ff:5a: e7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:DB:51:A4:89:60:F2:A4:A9:B3:14:C9:60:42:81:12:12:6C:A2:84 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:c2:a5:9c:f9:dc:5a:37:60:af:cb:f1:0d:2e:6c:1e:1e:13: d8:ab:3e:7b:7b:c7:9d:d3:83:2d:7a:e3:7d:87:14:b8:60:77: e4:95:99:ec:d4:6c:78:f7:36:55:a4:93:ae:1e:e6:cd:19:74: 60:e4:87:10:76:3f:4f:81:b1:4c:53:18:f8:17:a8:9e:b6:77: eb:62:7c:1b:53:9f:87:dc:d6:2f:55:9d:f1:c9:9b:81:d6:88: 99:d8:fb:79:ae:9f:d3:93:ae:d8:c7:dd:f9:9c:e4:66:89:4e: 92:e3:1f:ca:ea:bc:16:0f:e4:d1:a5:3e:1f:ae:56:16:f5:e8: cc:b2:53:24:3c:81:79:ae:79:c5:57:c2:31:8f:f1:5d:1e:69: d1:f0:8f:e5:fa:54:dc:40:51:cd:d2:1c:15:6a:7f:cf:f8:8e: b3:76:65:ea:1d:80:47:f6:58:e1:eb:26:74:02:c0:8d:b8:95: ef:fd:ce:57:2d:87:aa:e4:91:55:fe:1b:51:4e:48:15:69:94: 4d:9e:22:81:04:6a:43:8d:c1:70:e5:63:bc:31:ef:35:56:91: 7d:32:61:48:6e:81:1a:32:9b:98:09:31:c9:0b:8e:a9:b2:7f: a4:c0:5f:a5:38:31:78:4c:0f:50:57:90:f0:8c:b6:85:6a:f0: 9e:ca:d8:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3QUExMTAvBgNVBAUTKDc1RkUzN0E4M0VEQTgwMEE2MTAyNjA4NTg3RURGNDA4 OUQ4MjQwRTAwHhcNMjYwMTIzMDU0MjA2WhcNMjYwMTMwMDU0MjA2WjAYMRYwFAYD VQQDDA02OTczMGEyZS03MGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+nPLCECP9kbXzVy4DWcNENKOfZuXU3MFB7UvHmJUJAqqMv+DtthVednF5DE SXi7OINAovu+Yvp+9NsQcLKDmXV2KafWj/QZqCeAn2lK9QJSar/DsVNZQxcGhKEa MC3cESxqdvxE4EwTpFCHPSt4B+MKFo1j8b/cIepPkizE+ka3s0v1BPsbxZsM+I09 ZLkOSOT36TUH1RiG5qKC3stvrRal/saFB3yVKhxF7+TpRKdjIa/8Drk7//I1CI/X OFq+td6V1WnAeuMuVTY25/ut3IfHZRZQezPMvYjGo0WcfyFZbtvHO0yBeY1DjSyX Td97aZ3MNbxaVjH3nr3J/1rn0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjbUaSJ YPKkqbMUyWBCgRISbKKEMB8GA1UdIwQYMBaAFHX+N6g+2oAKYQJghYft9AidgkDg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzdBQS9EMjJFREEzNDJB ODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdBcGhBbUNGaC0zMENKMkNR T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzdBQS9EMjJFREEzNDJBODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdB cGhBbUNGaC0zMENKMkNRT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHwqWc+dxaN2Cvy/ENLmweHhPYqz57e8ed04MteuN9hxS4YHfklZns 1Gx49zZVpJOuHubNGXRg5IcQdj9PgbFMUxj4F6ietnfrYnwbU5+H3NYvVZ3xyZuB 1oiZ2Pt5rp/Tk67Yx935nORmiU6S4x/K6rwWD+TRpT4frlYW9ejMslMkPIF5rnnF V8Ixj/FdHmnR8I/l+lTcQFHN0hwVan/P+I6zdmXqHYBH9ljh6yZ0AsCNuJXv/c5X LYeq5JFV/htRTkgVaZRNniKBBGpDjcFw5WO8Me81VpF9MmFIboEaMpuYCTHJC46p sn+kwF+lODF4TA9QV5DwjLaFavCeytgt -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:09 2026 by rpki-client