This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: KKQ9UMURimzCf+aKvt1JORq8M6vSQ6uFns60dwlmdjs= Subject key identifier: 2D:C7:51:82:D9:7B:45:95:23:F2:B5:5B:F5:B2:6D:2A:F5:BA:52:04 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 01AB Signing time: Sun 25 Jan 2026 02:32:01 +0000 Manifest this update: Sun 25 Jan 2026 02:32:01 +0000 Manifest next update: Sun 01 Feb 2026 02:32:01 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: mhCoc8/qKSO9d8lUEmufJKfPinGFUS1GxvBdX/NByy8=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: jA0W89c1BQKBxWNTk4xZxdglmPbz/0n9ymbDdZwOT6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Jan 25 02:32:01 2026 GMT Not After : Feb 1 02:32:01 2026 GMT Subject: CN=697580a1-013f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:48:a8:58:77:29:e1:7e:7e:f3:f8:07:da:f4: 83:1c:9e:db:0a:19:b4:f3:83:ac:0a:2f:45:fc:a6: 4e:5b:f1:c4:ed:df:05:f7:2a:32:37:c0:42:d8:54: 85:7d:2b:d1:71:75:c6:be:4e:a0:7c:32:c6:e6:54: 06:24:88:a2:ad:10:ec:4a:f3:31:4e:29:4d:32:d1: a9:4f:28:da:61:d4:0e:65:f6:98:e3:41:07:67:a9: b0:8e:df:1b:8c:a6:be:69:23:e9:15:16:c3:ac:16: 79:be:16:11:2e:b6:71:ae:b3:b5:19:58:28:2f:07: 36:a7:3a:bd:67:b1:1a:e6:06:ac:72:8d:f0:7c:ba: b4:2f:5a:43:8d:7d:76:b2:fe:a8:5d:11:26:7b:30: ba:d4:03:87:84:fc:84:36:23:61:6a:6a:f2:0b:bd: 44:8a:3e:cc:66:6d:86:b3:88:8d:92:ad:b0:21:2b: 05:0e:8d:28:e3:f3:3d:3c:d5:88:fb:db:92:66:a4: 26:fc:3a:5c:26:ce:ef:d4:02:00:45:86:a8:ff:03: 85:52:72:ea:58:69:3b:7a:8d:2a:3f:11:52:cc:0c: 2d:b6:53:89:3f:2d:04:5f:a4:79:4f:c4:43:35:0d: f0:ed:84:40:97:58:cc:bc:8e:09:cf:c6:75:b4:43: d3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C7:51:82:D9:7B:45:95:23:F2:B5:5B:F5:B2:6D:2A:F5:BA:52:04 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:fd:6c:6e:56:4a:fe:63:4d:6d:a0:2f:67:42:56:89:91:62: c3:bc:ba:fe:90:65:31:ee:17:7a:b4:39:89:52:7a:b6:5f:80: 35:96:48:43:7c:cb:5a:5e:aa:d8:cf:cc:6d:17:f2:44:50:7a: 9e:1f:dc:b6:ea:60:b9:22:55:74:5f:fa:1f:a6:77:1c:f0:5c: 6a:ef:c5:8a:d1:dd:85:23:20:96:9a:f5:a4:5b:e9:df:f3:b1: f0:f7:08:ee:67:d9:3c:b1:6c:cf:a3:2c:0a:57:4e:9a:dd:8e: e7:1d:2c:dd:da:e5:32:c8:d3:be:8a:f8:2c:4d:86:cf:79:e9: 5c:b4:e2:89:3c:48:94:8c:ff:5c:54:86:2a:7d:da:70:6a:5d: 1f:bd:99:73:20:d9:56:b4:64:c9:b9:83:97:76:ec:fd:6a:2d: 9f:38:e1:90:64:73:ea:11:21:4b:47:ef:b0:4d:81:2a:1c:ec: 5a:98:8c:ba:04:e3:9d:dd:69:ca:4c:9f:55:6b:ac:eb:28:90: 47:56:7a:88:97:13:42:45:45:9d:ff:d2:f5:f1:ce:f2:7d:05: 91:95:b4:2d:01:c3:ad:3f:eb:d9:33:e2:62:4b:b1:77:e4:a1: b8:6e:f0:0b:c8:03:d5:aa:c9:e3:17:bc:b9:e7:57:da:31:86: 55:bf:e7:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjYwMTI1MDIzMjAxWhcNMjYwMjAxMDIzMjAxWjAYMRYwFAYD VQQDDA02OTc1ODBhMS0wMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkioWHcp4X5+8/gH2vSDHJ7bChm084OsCi9F/KZOW/HE7d8F9yoyN8BC2FSF fSvRcXXGvk6gfDLG5lQGJIiirRDsSvMxTilNMtGpTyjaYdQOZfaY40EHZ6mwjt8b jKa+aSPpFRbDrBZ5vhYRLrZxrrO1GVgoLwc2pzq9Z7Ea5gasco3wfLq0L1pDjX12 sv6oXREmezC61AOHhPyENiNhamryC71Eij7MZm2Gs4iNkq2wISsFDo0o4/M9PNWI +9uSZqQm/DpcJs7v1AIARYao/wOFUnLqWGk7eo0qPxFSzAwttlOJPy0EX6R5T8RD NQ3w7YRAl1jMvI4Jz8Z1tEPTJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3HUYLZ e0WVI/K1W/WybSr1ulIEMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV/WxuVkr+Y01toC9nQlaJkWLDvLr+kGUx7hd6tDmJUnq2X4A1lkhD fMtaXqrYz8xtF/JEUHqeH9y26mC5IlV0X/ofpncc8Fxq78WK0d2FIyCWmvWkW+nf 87Hw9wjuZ9k8sWzPoywKV06a3Y7nHSzd2uUyyNO+ivgsTYbPeelctOKJPEiUjP9c VIYqfdpwal0fvZlzINlWtGTJuYOXduz9ai2fOOGQZHPqESFLR++wTYEqHOxamIy6 BOOd3WnKTJ9Va6zrKJBHVnqIlxNCRUWd/9L18c7yfQWRlbQtAcOtP+vZM+JiS7F3 5KG4bvALyAPVqsnjF7y551faMYZVv+cZ -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:12 2026 by rpki-client