This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: PWaAraf4cbirueBFkxNaPxA+Ny/PxpE5GvuAyU03138= Subject key identifier: 38:38:4E:BD:DA:A9:79:9A:7F:73:39:8C:51:9F:6D:C9:90:AB:73:7A Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 060F Signing time: Sat 24 Jan 2026 22:08:46 +0000 Manifest this update: Sat 24 Jan 2026 22:08:45 +0000 Manifest next update: Sat 31 Jan 2026 22:08:45 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: +Y6eO/lktPjUyvq3sBvQnUG85G1++AtDqjr9AzV80AU=) 2: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: soj+i4O+7dTLGp8Ucrvcm5QUthVqueaPz4jMTEouFXE=) 3: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: QcAPS8QVWm5MUTUMvYZdssffQY76kUoZjnPxwQExdpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Jan 24 22:08:45 2026 GMT Not After : Jan 31 22:08:45 2026 GMT Subject: CN=697542ee-29d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:cd:2c:1d:82:76:6a:ae:85:2f:45:d3:21:64: fa:85:bd:f4:54:38:2f:75:ae:ce:a3:b6:66:57:48: d4:3b:9d:fc:3e:28:34:9f:96:43:85:0d:08:c5:30: fd:67:57:46:c4:1f:11:c1:c3:83:2b:53:7c:a7:5e: 9d:31:dd:bb:f8:d1:23:2e:d8:0c:58:78:e3:51:a3: 3b:ad:0e:c4:1b:b3:2c:cf:6d:be:08:fb:02:a9:fd: 5f:25:96:06:2e:b5:2b:04:24:d4:fd:a5:e0:33:25: 5c:2f:27:66:cb:aa:4d:ec:d8:5c:f8:ed:f4:9d:3f: 96:72:86:c5:36:0c:bb:59:75:35:13:a9:83:c2:75: 3a:5e:7b:a4:51:88:49:a1:1e:c8:c8:77:ce:7e:55: f7:a7:ec:7c:7a:fe:57:49:5d:e3:10:3e:c9:78:7d: 26:9b:b5:85:3b:ad:b9:5c:86:2d:02:a4:0a:e9:9e: df:79:9f:df:37:bc:e7:05:d3:ff:c3:86:b5:88:fb: 54:09:75:7b:3c:cb:5d:5d:00:00:24:7e:43:59:e8: ec:97:44:17:6d:52:e5:c3:90:bb:86:9d:f6:d8:37: 30:96:62:83:66:6d:b8:9e:66:4f:08:c5:08:13:00: 81:8f:ac:9d:38:0b:c8:e5:2d:ec:5e:76:ee:cd:9d: 33:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:38:4E:BD:DA:A9:79:9A:7F:73:39:8C:51:9F:6D:C9:90:AB:73:7A X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a4:8e:90:ef:87:d8:60:9e:ed:35:a0:11:4d:e9:ae:cf:4a: 8d:e8:26:6a:3e:a8:dd:27:49:77:09:7b:e6:52:90:50:10:a2: 01:a8:3e:81:09:32:22:52:d8:b5:8b:e0:91:44:a4:e3:35:14: b9:76:b9:0b:a1:48:4f:a8:61:98:68:41:81:1c:d1:c5:b7:da: 10:9a:8d:9c:9d:5d:f0:9f:41:2e:25:a1:9d:10:12:0e:d1:79: 91:4b:cd:f6:19:65:61:02:cd:2f:a9:ca:e1:bd:5b:3b:40:c4: 95:34:be:0a:79:9f:1c:0b:15:b2:e2:9e:d1:5a:80:0f:69:5c: fc:26:bf:60:7c:ee:62:c8:dc:36:04:c7:93:54:26:18:05:7d: 3f:d4:c2:b1:a6:8d:c3:d4:eb:16:b7:38:e5:f3:d9:eb:a3:3e: 33:34:91:cf:7e:0f:9d:c4:df:6b:1a:b4:32:f9:33:e9:1b:84: cb:8b:1c:18:e6:b5:e5:6c:db:ee:b8:42:5f:be:7b:f9:dc:dc: 8f:4f:01:98:b5:73:1e:e6:78:74:dc:24:63:9a:8c:f2:5a:4c: b2:0c:41:be:7b:4e:eb:0b:7b:03:e1:0c:85:c6:23:a6:c6:09: 05:e3:ec:8b:35:c3:ae:57:20:af:75:76:24:c4:04:1a:08:f5: fa:75:f6:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjYwMTI0MjIwODQ1WhcNMjYwMTMxMjIwODQ1WjAYMRYwFAYD VQQDDA02OTc1NDJlZS0yOWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAis0sHYJ2aq6FL0XTIWT6hb30VDgvda7Oo7ZmV0jUO538Pig0n5ZDhQ0IxTD9 Z1dGxB8RwcODK1N8p16dMd27+NEjLtgMWHjjUaM7rQ7EG7Msz22+CPsCqf1fJZYG LrUrBCTU/aXgMyVcLydmy6pN7Nhc+O30nT+WcobFNgy7WXU1E6mDwnU6XnukUYhJ oR7IyHfOflX3p+x8ev5XSV3jED7JeH0mm7WFO625XIYtAqQK6Z7feZ/fN7znBdP/ w4a1iPtUCXV7PMtdXQAAJH5DWejsl0QXbVLlw5C7hp322DcwlmKDZm24nmZPCMUI EwCBj6ydOAvI5S3sXnbuzZ0z5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg4Tr3a qXmaf3M5jFGfbcmQq3N6MB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pI6Q74fYYJ7tNaARTemuz0qN6CZqPqjdJ0l3CXvmUpBQEKIBqD6B CTIiUti1i+CRRKTjNRS5drkLoUhPqGGYaEGBHNHFt9oQmo2cnV3wn0EuJaGdEBIO 0XmRS832GWVhAs0vqcrhvVs7QMSVNL4KeZ8cCxWy4p7RWoAPaVz8Jr9gfO5iyNw2 BMeTVCYYBX0/1MKxpo3D1OsWtzjl89nroz4zNJHPfg+dxN9rGrQy+TPpG4TLixwY 5rXlbNvuuEJfvnv53NyPTwGYtXMe5nh03CRjmozyWkyyDEG+e07rC3sD4QyFxiOm xgkF4+yLNcOuVyCvdXYkxAQaCPX6dfYc -----END CERTIFICATE-----Generated at Sun Jan 25 21:11:05 2026 by rpki-client