This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft File: _k_aOWcBbBE6yAe4STQKxlIPCAI.mft (raw, json) Hash identifier: TGTD5aYuSoXt+4xy9bfKNeJeT1L09yuMttOhKsh77Wk= Subject key identifier: 19:BB:A3:4A:E9:61:3D:BA:19:50:B4:AB:FA:93:5F:94:B7:A4:73:E9 Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0A76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft Manifest number: 0A53 Signing time: Sat 24 Jan 2026 19:08:52 +0000 Manifest this update: Sat 24 Jan 2026 19:08:52 +0000 Manifest next update: Sat 31 Jan 2026 19:08:52 +0000 Files and hashes: 1: _k_aOWcBbBE6yAe4STQKxlIPCAI.crl (hash: PGc86b1hXcVfyXMug5vCPR4cOxvye4tj8ZH7MW/YmiE=) 2: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (hash: qU5SgxuYfj9EbloGsgp5NlU+LGZow7QsAYGZSye/EIM=) 3: 1E9514207F9311EA8177A82DC4F9AE02.roa (hash: mCrr4AsBoN0UqBzrLZ/+kB+0BpCUxnU7wJAUdq4LZdc=) 4: 91F5867070B811EDB6E1F81BC4F9AE02.roa (hash: PgZPVHxtNUmnyrhnnwVcg3kijll4dZA2GpurrS7x078=) 5: 699CD772C2B911EBBB4C8928C4F9AE02.roa (hash: yfdf5Mv/GJ9tUDZNlDnmM6hHiINUq2OvlkNbS0rVles=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Jan 24 19:08:52 2026 GMT Not After : Jan 31 19:08:52 2026 GMT Subject: CN=697518c4-33b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c8:6c:37:e4:17:08:72:bd:be:dd:b4:e0:c4: b3:4c:eb:03:e3:80:3f:6c:d8:fc:ce:c3:91:c2:09: 3b:2c:f0:10:95:c4:cf:e4:14:6d:2a:96:6a:ec:fc: c6:48:f7:cd:51:dd:9e:9c:a2:8e:fa:fe:93:85:d4: f7:30:87:01:12:08:c6:5c:fa:43:39:c4:30:5d:51: e2:7f:ca:7c:5a:9b:74:ff:34:b6:a3:36:d4:be:c3: 56:d8:45:da:93:24:a7:6b:18:fc:dd:ab:5d:44:05: de:7f:d5:70:05:c7:8c:98:cb:3e:7b:71:b0:9b:e2: 61:77:52:7b:23:83:39:61:d9:5e:bc:09:38:e8:25: cf:a5:67:32:68:41:c5:cb:01:63:5f:79:00:d9:24: 95:0e:24:18:14:b0:19:fb:f4:3a:b4:f7:10:3a:74: 4d:7a:7b:7a:31:f7:00:a7:e8:4b:8e:c7:99:fb:79: f1:c4:8a:aa:2c:eb:12:5a:ca:67:3b:eb:d3:cf:56: f8:5d:63:d8:4b:5b:62:de:10:93:88:28:33:fa:74: 90:14:33:ff:db:26:25:28:81:4e:8b:76:78:24:30: 2c:36:b2:33:79:d4:45:d8:d6:4e:9f:c0:c1:b6:39: f6:97:8f:63:14:77:eb:05:ae:46:32:ff:7b:db:86: 56:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BB:A3:4A:E9:61:3D:BA:19:50:B4:AB:FA:93:5F:94:B7:A4:73:E9 X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:e9:ba:0b:d7:ca:ff:42:21:07:b2:8d:f8:2d:00:7e:2a:4e: 75:83:5f:b1:39:90:70:2e:73:fb:0c:03:c5:e6:2b:2e:40:21: 3f:95:b1:fa:e8:fc:6e:ea:32:d3:f8:e8:3b:21:02:c3:c7:b2: d5:4c:d0:0e:ae:9d:9b:ea:ce:1b:c5:36:5c:14:0e:36:0c:47: b4:ff:38:19:b5:a1:62:b1:f8:f1:d9:e4:fd:54:ec:b7:2b:59: 19:a8:4e:4c:b8:a5:3c:27:4a:59:92:5d:95:a7:57:fb:d2:94: b5:5e:5d:22:07:bc:ad:0e:6b:79:48:eb:70:62:02:b9:02:80: b4:43:73:bd:ce:3c:20:9f:d4:a5:79:a7:13:ef:49:32:7b:9c: 02:7d:62:72:38:2f:5a:b4:8f:64:f1:14:1f:5f:61:ba:12:8f: 7a:1b:70:f0:e3:e3:21:59:aa:54:9b:c2:35:1b:09:2b:21:bb: 8d:fb:e8:fc:58:92:5e:55:29:d0:10:3f:60:57:0a:1f:b8:36: 79:33:c9:19:05:c3:f6:0f:00:19:3d:44:3d:3a:d6:1f:cb:a1: d8:23:a9:c0:e2:db:e2:0e:3f:dd:be:26:c9:8c:9e:2d:66:4e: 6f:98:ab:e8:9a:bd:b5:53:eb:0d:b2:8e:1e:fa:16:61:5b:cb: 43:dd:04:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjYwMTI0MTkwODUyWhcNMjYwMTMxMTkwODUyWjAYMRYwFAYD VQQDDA02OTc1MThjNC0zM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmchsN+QXCHK9vt204MSzTOsD44A/bNj8zsORwgk7LPAQlcTP5BRtKpZq7PzG SPfNUd2enKKO+v6ThdT3MIcBEgjGXPpDOcQwXVHif8p8Wpt0/zS2ozbUvsNW2EXa kySnaxj83atdRAXef9VwBceMmMs+e3Gwm+Jhd1J7I4M5YdlevAk46CXPpWcyaEHF ywFjX3kA2SSVDiQYFLAZ+/Q6tPcQOnRNent6MfcAp+hLjseZ+3nxxIqqLOsSWspn O+vTz1b4XWPYS1ti3hCTiCgz+nSQFDP/2yYlKIFOi3Z4JDAsNrIzedRF2NZOn8DB tjn2l49jFHfrBa5GMv9724ZWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBm7o0rp YT26GVC0q/qTX5S3pHPpMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTU4MC9DN0NFMkUxMDdGOEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJC RTZ5QWU0U1RRS3hsSVBDQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT6boL18r/QiEHso34LQB+Kk51g1+xOZBwLnP7DAPF5isuQCE/lbH6 6Pxu6jLT+Og7IQLDx7LVTNAOrp2b6s4bxTZcFA42DEe0/zgZtaFisfjx2eT9VOy3 K1kZqE5MuKU8J0pZkl2Vp1f70pS1Xl0iB7ytDmt5SOtwYgK5AoC0Q3O9zjwgn9Sl eacT70kye5wCfWJyOC9atI9k8RQfX2G6Eo96G3Dw4+MhWapUm8I1GwkrIbuN++j8 WJJeVSnQED9gVwofuDZ5M8kZBcP2DwAZPUQ9OtYfy6HYI6nA4tviDj/dvibJjJ4t Zk5vmKvomr21U+sNso4e+hZhW8tD3QQn -----END CERTIFICATE-----Generated at Sun Jan 25 06:04:15 2026 by rpki-client