This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: nzMiThK6S78iqK8u/EHPt35Ex1GyEJUQNZh/N4Q2eA0= Subject key identifier: 03:9F:00:31:0C:D7:A1:2A:43:CF:22:9F:26:72:F0:09:34:7A:79:1C Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2A85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2A7A Signing time: Sat 24 Jan 2026 14:23:04 +0000 Manifest this update: Sat 24 Jan 2026 14:23:04 +0000 Manifest next update: Sat 31 Jan 2026 14:23:04 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: mzSrBChOYUxDprVLjhR7Kvd9RAOO1SE+J2/vvfceZxs=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: symelOI4KiPwqS+zxOG2abXkQkOu/9Ecrvxkqaxc9Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10885 (0x2a85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Jan 24 14:23:04 2026 GMT Not After : Jan 31 14:23:04 2026 GMT Subject: CN=6974d5c8-122a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c7:3b:f2:d8:a3:c3:20:16:8b:15:8b:9c:ef: 4a:65:de:13:79:c6:7f:cc:83:3b:96:f3:4f:37:51: 41:63:d3:4d:d1:ba:23:5d:de:1b:12:37:11:72:5f: 56:44:fd:f8:36:b1:ac:13:78:c9:84:7a:2e:dc:43: 3b:75:fa:2f:87:98:67:3d:bf:7a:10:a3:fb:cc:ca: 09:e4:59:3e:e3:95:4d:8c:69:ab:55:fb:7e:c3:b2: aa:97:5c:f0:dc:26:72:ea:dd:e6:05:62:a8:a3:fd: 67:d5:aa:ee:57:4f:02:fe:54:39:2d:d9:9e:a0:b9: 6d:4d:a1:9c:5c:36:76:9e:b7:c0:95:55:32:a4:51: 1a:1d:d5:89:6b:b2:e9:a8:ed:30:73:1f:1a:49:b4: 9a:c4:9e:fe:3c:8f:49:1f:69:26:e8:0b:3e:05:89: 6e:0c:41:33:11:e0:d5:2b:16:37:f3:4d:ca:66:9d: 0c:d1:98:da:bc:35:e4:93:fd:fd:f5:38:de:94:e9: 2c:ea:29:5a:f9:ff:50:58:dd:af:e2:25:8d:09:c0: fa:ee:3a:4f:12:27:f6:e6:29:95:d2:43:70:f9:3c: 2d:7f:a2:aa:75:cc:23:b5:5d:f1:bb:bb:40:98:8e: 76:1f:b5:94:ac:ab:c4:7e:08:de:b5:bc:f5:64:be: 46:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:9F:00:31:0C:D7:A1:2A:43:CF:22:9F:26:72:F0:09:34:7A:79:1C X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ca:5c:6d:2f:36:78:32:0d:b6:a8:c2:2a:7f:4d:3c:d8:a9: ad:7e:12:25:41:66:67:2f:4d:56:8a:7f:ec:c1:29:92:73:3e: 3b:91:90:84:d7:c9:ed:f1:b1:bb:7e:eb:8b:25:72:6b:79:8e: 20:b8:45:1a:16:77:a8:8b:61:d1:00:9a:46:fa:ee:91:6a:db: 91:12:6b:4d:fb:ed:c5:07:bc:56:82:ae:bc:5b:d6:c7:86:b5: cb:0c:01:35:a4:33:80:21:b4:74:83:f4:4d:7a:a9:7e:72:0b: 03:e8:65:55:e2:93:df:cc:3e:25:38:11:aa:2f:7a:f6:fb:05: c0:41:25:c8:29:e4:af:4d:ad:d1:37:20:54:ae:e1:08:a2:53: bb:b8:a9:43:70:81:28:8b:b1:7e:35:35:a2:28:65:e7:81:fd: 92:b7:9e:a6:a8:fc:fc:ae:61:0a:d3:2c:90:bc:3d:1f:74:1b: 9e:63:e7:d4:cc:a2:78:18:d0:fb:a0:6d:ef:5e:ef:5d:bb:6d: cf:c0:be:df:13:74:ae:67:2e:9b:d5:73:06:e7:d9:e8:0b:43: 72:08:a8:ed:0d:9d:4f:5c:8a:11:48:22:f9:13:7c:6b:6c:71: d1:8a:54:4e:6d:f8:e4:28:2f:14:2a:f5:16:c4:a7:82:9e:89: 5a:ab:2e:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjYwMTI0MTQyMzA0WhcNMjYwMTMxMTQyMzA0WjAYMRYwFAYD VQQDDA02OTc0ZDVjOC0xMjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8c78tijwyAWixWLnO9KZd4TecZ/zIM7lvNPN1FBY9NN0bojXd4bEjcRcl9W RP34NrGsE3jJhHou3EM7dfovh5hnPb96EKP7zMoJ5Fk+45VNjGmrVft+w7Kql1zw 3CZy6t3mBWKoo/1n1aruV08C/lQ5LdmeoLltTaGcXDZ2nrfAlVUypFEaHdWJa7Lp qO0wcx8aSbSaxJ7+PI9JH2km6As+BYluDEEzEeDVKxY3803KZp0M0ZjavDXkk/39 9TjelOks6ila+f9QWN2v4iWNCcD67jpPEif25imV0kNw+Twtf6KqdcwjtV3xu7tA mI52H7WUrKvEfgjetbz1ZL5GMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOfADEM 16EqQ88inyZy8Ak0enkcMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSylxtLzZ4Mg22qMIqf0082KmtfhIlQWZnL01Win/swSmScz47kZCE 18nt8bG7fuuLJXJreY4guEUaFneoi2HRAJpG+u6RatuREmtN++3FB7xWgq68W9bH hrXLDAE1pDOAIbR0g/RNeql+cgsD6GVV4pPfzD4lOBGqL3r2+wXAQSXIKeSvTa3R NyBUruEIolO7uKlDcIEoi7F+NTWiKGXngf2St56mqPz8rmEK0yyQvD0fdBueY+fU zKJ4GND7oG3vXu9du23PwL7fE3SuZy6b1XMG59noC0NyCKjtDZ1PXIoRSCL5E3xr bHHRilRObfjkKC8UKvUWxKeCnolaqy4m -----END CERTIFICATE-----Generated at Sun Jan 25 14:26:57 2026 by rpki-client