This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: m42LU/9NJD8rtJjbZ3CZ0hq79jXZNGO0B7wlJ/+vttQ= Subject key identifier: 07:F8:B4:0B:1A:B8:E5:2F:8C:0E:6D:BC:6B:02:74:5E:56:F9:C5:2E Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3465 Signing time: Sat 24 Jan 2026 15:12:14 +0000 Manifest this update: Sat 24 Jan 2026 15:12:13 +0000 Manifest next update: Sat 31 Jan 2026 15:12:13 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: y3AzCFNTikdSwEEEGqSztRgv3alIHDLuu5xndoI9vxM=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: KFzwKVGHqz/eEAAY4EllhHzq4fAD/nzbhtnp7oLyN5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Jan 24 15:12:13 2026 GMT Not After : Jan 31 15:12:13 2026 GMT Subject: CN=6974e14d-a854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:b7:84:9c:81:7a:37:47:90:81:a6:99:f0:77: 67:4e:fd:77:5d:42:01:b3:88:00:ca:0d:e4:d0:9b: ce:d6:7f:e2:d7:b2:65:bc:fb:2b:08:0e:68:18:ec: a2:db:d5:d6:ec:2a:24:43:49:a9:91:06:42:ed:92: 96:0e:52:9b:9c:20:e2:04:1f:80:c2:2b:67:2b:8a: 83:32:d9:4b:70:0d:5b:7e:6e:d9:3b:73:e8:b1:5b: 42:0b:ea:e2:0b:80:35:48:3d:5b:08:00:dd:4f:40: 9d:cc:7b:b2:9b:82:87:cc:7d:ee:ae:a3:39:09:ac: c0:a5:50:3e:b2:35:12:36:bc:56:a5:0b:e2:74:28: 64:b8:fd:d6:e6:3c:e5:74:70:14:37:55:20:ef:69: 77:de:d8:c4:74:4d:8c:76:4d:0b:ae:71:7e:20:8a: 5b:16:ea:6e:d0:7c:6c:35:64:f8:37:ce:d9:a8:cc: cb:c9:5b:7f:99:71:52:d9:e6:db:3a:67:45:de:93: 8c:60:30:b0:72:35:7f:d1:bf:fe:55:50:25:b6:0e: 90:82:d8:66:e1:50:6a:4d:d6:52:d7:17:eb:9e:0e: c3:bf:05:d4:02:75:99:f1:42:76:9c:9f:56:af:77: f8:f8:57:aa:ff:91:9b:9b:b3:7c:1f:bb:fc:e7:8d: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F8:B4:0B:1A:B8:E5:2F:8C:0E:6D:BC:6B:02:74:5E:56:F9:C5:2E X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:cc:da:60:fc:cc:14:d7:35:fa:58:54:ec:7c:c7:ce:dd:5a: 56:be:6c:18:03:38:98:b7:56:21:8c:46:03:af:e6:67:f5:e3: d8:ea:41:a6:b5:49:8e:6b:13:db:4a:c5:60:01:61:48:df:64: 67:86:8f:b7:a4:a4:8b:dc:49:42:a9:03:3c:be:28:1c:e2:b6: 9d:76:da:e8:37:4d:09:f2:a8:4e:aa:85:f9:15:73:d5:36:e5: 36:62:6d:00:29:55:05:23:ca:af:a1:ca:5c:e5:3b:b1:7c:1a: b0:29:2f:a3:a2:9a:cc:8d:ca:a1:02:29:5a:19:53:f4:a4:1c: 0b:70:15:0d:a9:cd:30:35:68:8c:5a:16:a2:d4:fc:14:39:5b: 8d:b7:21:61:19:f3:09:fb:8c:72:63:fd:0a:60:be:25:60:7b: a6:0b:70:cf:60:25:29:03:77:66:fa:07:84:0a:de:22:58:f0: 2e:34:20:13:28:3b:a8:4d:38:70:ea:d3:dc:66:19:b2:72:b1: 14:e2:f8:23:a0:2d:f1:14:fe:ac:55:be:b7:e7:9b:0f:e2:32: 36:25:95:65:2c:d2:b2:6c:23:cb:a4:e2:dd:6f:23:af:78:67: c2:f2:86:24:01:74:08:e6:10:b5:65:5e:14:62:ab:9b:17:1d: 10:e5:58:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjYwMTI0MTUxMjEzWhcNMjYwMTMxMTUxMjEzWjAYMRYwFAYD VQQDDA02OTc0ZTE0ZC1hODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgreEnIF6N0eQgaaZ8HdnTv13XUIBs4gAyg3k0JvO1n/i17JlvPsrCA5oGOyi 29XW7CokQ0mpkQZC7ZKWDlKbnCDiBB+AwitnK4qDMtlLcA1bfm7ZO3PosVtCC+ri C4A1SD1bCADdT0CdzHuym4KHzH3urqM5CazApVA+sjUSNrxWpQvidChkuP3W5jzl dHAUN1Ug72l33tjEdE2Mdk0LrnF+IIpbFupu0HxsNWT4N87ZqMzLyVt/mXFS2ebb OmdF3pOMYDCwcjV/0b/+VVAltg6Qgthm4VBqTdZS1xfrng7DvwXUAnWZ8UJ2nJ9W r3f4+Feq/5Gbm7N8H7v85410ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAf4tAsa uOUvjA5tvGsCdF5W+cUuMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGzNpg/MwU1zX6WFTsfMfO3VpWvmwYAziYt1YhjEYDr+Zn9ePY6kGm tUmOaxPbSsVgAWFI32Rnho+3pKSL3ElCqQM8vigc4raddtroN00J8qhOqoX5FXPV NuU2Ym0AKVUFI8qvocpc5TuxfBqwKS+joprMjcqhAilaGVP0pBwLcBUNqc0wNWiM Whai1PwUOVuNtyFhGfMJ+4xyY/0KYL4lYHumC3DPYCUpA3dm+geECt4iWPAuNCAT KDuoTThw6tPcZhmycrEU4vgjoC3xFP6sVb6355sP4jI2JZVlLNKybCPLpOLdbyOv eGfC8oYkAXQI5hC1ZV4UYqubFx0Q5Vgv -----END CERTIFICATE-----Generated at Sun Jan 25 06:14:31 2026 by rpki-client