This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: W+sF7J41Vg1r+6cwvlDB7iXjN01nXKPkOICNxTs44pg= Subject key identifier: 8D:25:A0:CA:60:37:BA:DC:EF:58:52:F8:D4:A1:D8:13:DF:AB:0D:49 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 058F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 058D Signing time: Sat 24 Jan 2026 22:29:33 +0000 Manifest this update: Sat 24 Jan 2026 22:29:33 +0000 Manifest next update: Sat 31 Jan 2026 22:29:33 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: zkDLB0lAjyDZSVKsD6/abNYSEwPEiSpZNeO4QIwErNk=) 2: 9CD333C6B92B11F09402D810C4F9AE02.roa (hash: V3sarL+FrCY0k0yCUIbon3gPbo07HsyruaUuXsvwjyw=) 3: C6212596B5FF11F0A3F6A41AC4F9AE02.roa (hash: dLroQstuUWWHmwVK5ZuVa5vVeBr08ixLMCdD4jTJFpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Jan 24 22:29:33 2026 GMT Not After : Jan 31 22:29:33 2026 GMT Subject: CN=697547cd-7f5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:ca:43:93:ac:e2:9e:f0:25:9b:e3:70:a9: 35:ad:5d:0b:83:52:c2:5c:e2:9d:53:ca:11:60:81: 1c:34:d4:45:0a:f6:56:a5:65:a4:5f:ce:d3:46:a8: 0e:77:d6:13:42:53:90:13:e1:36:b2:2f:ff:72:60: a8:1b:e4:64:cd:7b:ac:9e:4f:61:a3:0f:ea:da:ca: e7:b8:d2:be:54:85:ae:b7:91:dd:f8:20:1f:e7:49: 66:b8:b6:f4:bc:24:75:04:c6:d2:c7:bf:4b:1d:5e: fc:97:f4:62:38:2c:38:d3:63:86:b3:ec:85:78:df: 4a:8d:a5:6f:3f:e7:d7:5c:c0:e6:f9:f9:74:7a:c1: c2:ad:24:2f:c4:ae:15:07:44:fd:d3:2f:3b:74:ec: 13:89:18:61:aa:ec:e1:bb:4a:24:ed:55:6e:7a:6e: db:d3:69:d5:5d:44:5a:59:28:6a:a8:3f:b3:c5:e2: 01:e9:06:f9:8c:da:b7:1e:db:25:ef:6c:18:a4:c5: e4:95:af:ab:9e:41:48:69:3f:4e:66:1a:dc:30:e9: 62:d3:9a:dd:f4:08:06:a3:8c:57:49:5d:ff:bf:9b: ee:21:13:b6:a8:06:4e:39:c9:bb:63:29:a5:e1:6e: 63:2b:36:4f:2e:3f:11:bd:48:eb:fe:da:18:92:bc: 1f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:25:A0:CA:60:37:BA:DC:EF:58:52:F8:D4:A1:D8:13:DF:AB:0D:49 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:5c:2f:ae:ee:fc:dc:6d:84:f0:a3:f1:9a:4b:45:d9:c6:9d: 66:27:ab:b5:6f:fe:10:5a:22:5e:b5:b5:c9:40:95:a5:fc:71: 1f:02:3f:e4:4f:d4:6d:36:2e:14:8b:ab:82:2c:df:cf:e5:1f: b2:23:8a:3f:7a:9a:80:3e:14:c2:4b:28:89:be:b7:40:5a:59: 5c:45:e7:f5:66:23:0e:76:62:80:18:f7:48:f0:e4:18:9a:31: fd:dd:f3:96:32:eb:b6:a2:2b:57:b6:72:9e:64:95:3d:41:77: e0:a7:de:4b:cf:0f:5a:88:6a:3d:9c:8b:cc:bc:cb:f0:c0:8e: 8e:67:e0:15:52:05:0a:71:f8:00:42:b9:ec:74:8b:f5:62:db: a5:d9:72:dd:32:c2:92:b4:9d:0a:e1:5c:04:17:b3:b7:ce:3d: 81:67:93:f7:d7:50:fe:1d:1c:94:3c:da:d7:ac:01:f0:1d:75: 9b:ba:72:ee:e0:c0:86:52:bc:ff:57:fc:79:49:73:cb:68:5d: ac:8f:8a:fe:32:3c:04:41:93:41:f7:54:e8:1e:51:60:7b:83: 32:1a:ab:f6:13:5c:48:56:54:a4:1e:ec:d5:5e:a8:09:d9:00: b3:ce:b6:4d:d6:a8:20:18:25:e9:d8:f6:da:a2:b9:79:28:a7: 78:6c:84:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjYwMTI0MjIyOTMzWhcNMjYwMTMxMjIyOTMzWjAYMRYwFAYD VQQDDA02OTc1NDdjZC03ZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29HKQ5Os4p7wJZvjcKk1rV0Lg1LCXOKdU8oRYIEcNNRFCvZWpWWkX87TRqgO d9YTQlOQE+E2si//cmCoG+RkzXusnk9how/q2srnuNK+VIWut5Hd+CAf50lmuLb0 vCR1BMbSx79LHV78l/RiOCw402OGs+yFeN9KjaVvP+fXXMDm+fl0esHCrSQvxK4V B0T90y87dOwTiRhhquzhu0ok7VVuem7b02nVXURaWShqqD+zxeIB6Qb5jNq3Htsl 72wYpMXkla+rnkFIaT9OZhrcMOli05rd9AgGo4xXSV3/v5vuIRO2qAZOOcm7Yyml 4W5jKzZPLj8RvUjr/toYkrwfywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0loMpg N7rc71hS+NSh2BPfqw1JMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHXC+u7vzcbYTwo/GaS0XZxp1mJ6u1b/4QWiJetbXJQJWl/HEfAj/k T9RtNi4Ui6uCLN/P5R+yI4o/epqAPhTCSyiJvrdAWllcRef1ZiMOdmKAGPdI8OQY mjH93fOWMuu2oitXtnKeZJU9QXfgp95Lzw9aiGo9nIvMvMvwwI6OZ+AVUgUKcfgA QrnsdIv1Ytul2XLdMsKStJ0K4VwEF7O3zj2BZ5P311D+HRyUPNrXrAHwHXWbunLu 4MCGUrz/V/x5SXPLaF2sj4r+MjwEQZNB91ToHlFge4MyGqv2E1xIVlSkHuzVXqgJ 2QCzzrZN1qggGCXp2Pbaorl5KKd4bIQi -----END CERTIFICATE-----Generated at Sun Jan 25 15:22:23 2026 by rpki-client