This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: 2hNhWMjxHt4QD+pZs+dvwMRD3B6yLA7t/oNpCPH2DTs= Subject key identifier: 53:5C:5B:C3:8D:C6:60:2A:FB:F8:D5:0A:D5:CC:D6:7F:35:F1:2B:BF Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 0531 Signing time: Sat 24 Jan 2026 22:48:31 +0000 Manifest this update: Sat 24 Jan 2026 22:48:31 +0000 Manifest next update: Sat 31 Jan 2026 22:48:31 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: OiGzk1ZunQiAxdExYU3qGLR4m2dyPn054xI09TWH144=) 2: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: ffe9csoIa+aK1Zbhj8RuxgnC6GGLQDbgoCQkHm0MFNA=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: USbezzx4u+HcyowHtZXvIGxC9833a2cIPADsDabhgHE=) 4: EFFA034837D111EC9337B812C4F9AE02.roa (hash: eOzDGtd2FPhdJliCdckHnz758nq276hv9KBB5yuJrEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Jan 24 22:48:31 2026 GMT Not After : Jan 31 22:48:31 2026 GMT Subject: CN=69754c3f-90dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:df:1b:35:98:1f:1c:af:33:1a:8b:e6:68:74: 0a:ea:be:3a:9d:ad:4f:7e:e0:7c:ba:27:69:10:75: 56:28:36:18:4d:a0:23:ae:23:e3:1b:3b:7a:c4:89: e1:76:2b:5f:f8:01:7c:3e:7e:9b:c9:55:4c:72:72: 74:90:98:85:76:b8:76:16:34:9b:b8:28:81:29:72: c6:06:42:e9:1a:88:77:e4:f3:6c:78:4c:be:ea:5b: 36:9e:0e:22:4a:11:41:65:74:d3:ed:e4:50:b4:55: 13:21:8b:8b:3b:64:fe:5f:a8:36:22:94:8c:4e:f2: b8:e8:9f:4c:43:f4:47:0f:01:eb:a4:8f:b2:19:9b: 3b:0a:d2:68:73:2a:9e:5c:81:81:1e:50:d7:38:ba: d0:d9:cb:f4:e8:8a:8a:cc:13:72:98:60:66:14:e6: a4:39:05:1f:08:2f:fc:d8:08:aa:e0:26:e1:68:72: da:21:78:4e:93:4f:fd:28:09:ea:44:9f:b6:cc:a3: d1:56:f9:6c:2a:2f:2f:21:ab:07:44:19:c7:26:1a: 9a:92:50:f9:15:8b:dd:bb:70:7b:96:b0:d4:a7:97: 92:49:13:60:a4:e4:48:c9:64:b2:f7:7f:39:e7:49: 3e:23:61:d9:89:dd:d3:d6:74:51:aa:90:15:71:51: 15:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:5C:5B:C3:8D:C6:60:2A:FB:F8:D5:0A:D5:CC:D6:7F:35:F1:2B:BF X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:a5:94:c9:7d:b4:8a:cf:f9:97:6a:da:9e:33:f3:68:23:92: 65:29:07:a2:13:16:9b:88:0f:df:12:eb:6a:0f:be:72:b4:59: 18:8c:80:79:68:64:34:2e:90:89:62:c2:08:e7:de:e7:b7:dc: d2:66:6f:03:e5:e7:9a:77:74:54:ff:da:b9:d5:a3:e1:5d:5b: 5d:08:62:1b:2b:f9:ff:c5:70:81:6e:1f:a8:22:52:56:8e:bc: 78:66:25:ba:01:30:d1:5e:dc:37:57:b6:69:46:9a:46:14:74: 0e:2d:91:3d:32:cc:73:a9:b2:8a:40:5f:1b:7e:b5:c8:18:94: 24:42:06:8b:d1:f3:90:0e:d1:96:c6:13:82:8d:3c:33:9b:6f: 7b:a6:6b:ff:37:ea:2c:a6:05:f5:40:8b:fc:fe:3c:f5:b6:82: 27:ae:2e:0d:4c:0d:53:ae:8e:e2:e5:08:03:69:96:fb:7c:c3: ca:6c:fa:c1:66:e1:18:80:8b:5f:f5:9d:c0:7b:c1:4d:16:2c: 22:00:ac:59:58:89:d5:f8:02:6b:ae:80:0d:ae:ce:c5:1c:95: ae:61:e4:c3:f1:86:19:2b:fe:02:a6:8d:6e:6c:2e:14:5d:7d: ab:71:50:40:67:b9:d2:c5:7a:07:05:0c:a5:22:2b:58:8a:d5: f9:bf:27:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjYwMTI0MjI0ODMxWhcNMjYwMTMxMjI0ODMxWjAYMRYwFAYD VQQDDA02OTc1NGMzZi05MGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr98bNZgfHK8zGovmaHQK6r46na1PfuB8uidpEHVWKDYYTaAjriPjGzt6xInh ditf+AF8Pn6byVVMcnJ0kJiFdrh2FjSbuCiBKXLGBkLpGoh35PNseEy+6ls2ng4i ShFBZXTT7eRQtFUTIYuLO2T+X6g2IpSMTvK46J9MQ/RHDwHrpI+yGZs7CtJocyqe XIGBHlDXOLrQ2cv06IqKzBNymGBmFOakOQUfCC/82Aiq4CbhaHLaIXhOk0/9KAnq RJ+2zKPRVvlsKi8vIasHRBnHJhqaklD5FYvdu3B7lrDUp5eSSRNgpORIyWSy9385 50k+I2HZid3T1nRRqpAVcVEVEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNcW8ON xmAq+/jVCtXM1n818Su/MB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBipZTJfbSKz/mXatqeM/NoI5JlKQeiExabiA/fEutqD75ytFkYjIB5 aGQ0LpCJYsII597nt9zSZm8D5eead3RU/9q51aPhXVtdCGIbK/n/xXCBbh+oIlJW jrx4ZiW6ATDRXtw3V7ZpRppGFHQOLZE9MsxzqbKKQF8bfrXIGJQkQgaL0fOQDtGW xhOCjTwzm297pmv/N+ospgX1QIv8/jz1toInri4NTA1Tro7i5QgDaZb7fMPKbPrB ZuEYgItf9Z3Ae8FNFiwiAKxZWInV+AJrroANrs7FHJWuYeTD8YYZK/4Cpo1ubC4U XX2rcVBAZ7nSxXoHBQylIitYitX5vyco -----END CERTIFICATE-----Generated at Sun Jan 25 10:55:13 2026 by rpki-client