This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: Mg2iqJJLefruLmNBB0Y0yQkC4QptXppI1v1Pjp9YBQQ= Subject key identifier: 16:B4:30:64:CC:30:6F:23:C6:17:B4:9E:72:EB:66:C3:33:97:41:41 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 9F Signing time: Sun 25 Jan 2026 05:31:07 +0000 Manifest this update: Sun 25 Jan 2026 05:31:07 +0000 Manifest next update: Sun 01 Feb 2026 05:31:07 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: fBNQYEpsLIC6OQMbWTlodfZX4VdGUa0UIprBNeU8z/w=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Jan 25 05:31:07 2026 GMT Not After : Feb 1 05:31:07 2026 GMT Subject: CN=6975aa9b-442c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:41:37:67:c0:cb:6b:45:83:2a:29:a7:8b:12: 5a:d9:12:34:b4:20:65:c0:99:87:b9:15:cc:12:27: 9b:52:6c:96:4a:1d:af:22:fe:38:c2:c6:3d:e5:b2: 25:ba:43:5d:75:c1:c2:21:a8:68:44:2f:7c:ed:46: d8:74:9b:01:1c:e7:70:8d:23:a3:e7:14:92:ea:3c: c1:4e:c0:ca:b6:36:7a:cd:d7:41:22:06:a0:df:9b: d6:d3:36:c8:70:b4:51:a2:a5:2f:57:23:7b:97:f0: 9a:35:eb:fd:7f:ae:2c:2d:32:ba:04:69:4f:a4:41: 14:3e:f0:94:3d:b6:31:45:1d:43:3a:75:80:55:c6: fd:44:70:cf:7c:f3:24:bd:7c:37:0b:5e:e8:14:db: 81:6a:d4:33:05:52:fb:ce:ad:13:d8:be:63:fd:8c: f2:11:f4:02:c3:57:7d:56:a9:9f:9b:16:50:62:ed: 6b:d4:5e:35:9d:a8:82:05:05:bd:4e:c7:b7:b4:53: 9c:c1:c3:3f:91:08:f6:36:1b:e2:90:2d:e9:e0:ed: a9:a4:8b:66:32:aa:92:43:57:b1:44:34:92:6b:95: da:5e:46:61:69:e3:da:31:40:f6:7e:2f:b2:eb:3f: 91:e6:81:5c:11:52:3d:b0:61:83:3c:94:a4:d1:f4: e5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B4:30:64:CC:30:6F:23:C6:17:B4:9E:72:EB:66:C3:33:97:41:41 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:d3:7a:f0:82:ec:fc:85:f6:a3:6d:cb:d9:1a:3c:c4:f0:fd: 1b:4e:ca:61:08:ad:39:95:cd:0d:c1:fd:2d:9b:50:ef:a4:f6: 7b:ce:04:4e:62:44:cc:68:2b:b8:4d:08:24:70:15:c8:a3:dc: 0c:f9:de:e1:35:3a:0d:aa:53:71:a1:c4:61:04:cb:7e:50:5d: 52:22:50:e7:be:8c:bb:a3:ba:9a:16:9b:57:1b:9a:27:c6:7a: 56:3a:cc:dd:ab:c3:c4:26:15:39:0d:0c:40:60:3e:ee:55:20: 28:e0:4c:0c:43:fc:5f:6a:92:a3:06:3a:73:70:90:49:65:b6: 42:93:c3:cb:a9:9b:50:30:83:7e:2e:c9:2f:01:bc:2a:97:e2: 82:31:02:35:1d:6d:62:60:d4:3f:3c:b3:af:1c:1f:5c:80:b1: 96:52:dd:2c:34:c5:4b:63:12:cd:7e:f1:83:d0:06:bf:fd:9e: a8:ca:89:13:30:02:64:08:c7:5f:0b:6a:64:48:39:c1:a1:c4: 79:1e:c8:f2:65:f2:7a:41:d9:c4:27:e5:81:85:83:9d:a2:8f: 07:02:7f:e3:a0:8a:00:9d:ba:78:f1:41:e4:a1:fe:af:0f:f8: a9:be:87:ef:a3:63:f2:46:66:be:45:c4:6f:4f:4d:81:b5:dc: e8:78:c5:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjYwMTI1MDUzMTA3WhcNMjYwMjAxMDUzMTA3WjAYMRYwFAYD VQQDDA02OTc1YWE5Yi00NDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUE3Z8DLa0WDKimnixJa2RI0tCBlwJmHuRXMEiebUmyWSh2vIv44wsY95bIl ukNddcHCIahoRC987UbYdJsBHOdwjSOj5xSS6jzBTsDKtjZ6zddBIgag35vW0zbI cLRRoqUvVyN7l/CaNev9f64sLTK6BGlPpEEUPvCUPbYxRR1DOnWAVcb9RHDPfPMk vXw3C17oFNuBatQzBVL7zq0T2L5j/YzyEfQCw1d9VqmfmxZQYu1r1F41naiCBQW9 Tse3tFOcwcM/kQj2NhvikC3p4O2ppItmMqqSQ1exRDSSa5XaXkZhaePaMUD2fi+y 6z+R5oFcEVI9sGGDPJSk0fTliwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBa0MGTM MG8jxhe0nnLrZsMzl0FBMB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY03rwguz8hfajbcvZGjzE8P0bTsphCK05lc0Nwf0tm1DvpPZ7zgRO YkTMaCu4TQgkcBXIo9wM+d7hNToNqlNxocRhBMt+UF1SIlDnvoy7o7qaFptXG5on xnpWOszdq8PEJhU5DQxAYD7uVSAo4EwMQ/xfapKjBjpzcJBJZbZCk8PLqZtQMIN+ LskvAbwql+KCMQI1HW1iYNQ/PLOvHB9cgLGWUt0sNMVLYxLNfvGD0Aa//Z6oyokT MAJkCMdfC2pkSDnBocR5HsjyZfJ6QdnEJ+WBhYOdoo8HAn/joIoAnbp48UHkof6v D/ipvofvo2PyRma+RcRvT02BtdzoeMUK -----END CERTIFICATE-----Generated at Mon Jan 26 05:12:01 2026 by rpki-client