This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: BFrFC+9p3kweZT2Kh/ACgPCl2qGayBchT481UA+shDs= Subject key identifier: A1:EF:B7:5D:86:C2:D4:7C:F8:ED:51:22:E9:29:95:F8:B3:5A:A3:B2 Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0CC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0CBA Signing time: Sat 24 Jan 2026 17:59:07 +0000 Manifest this update: Sat 24 Jan 2026 17:59:07 +0000 Manifest next update: Sat 31 Jan 2026 17:59:07 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: QD/ZJNJiU1A0rmqN0qEw3D8NPk+FU93qCvOgM3TaJdk=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: 6qF9h43DlEql9uVHDmWHQPm/sTRQL95grseNb5kyQF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Jan 24 17:59:07 2026 GMT Not After : Jan 31 17:59:07 2026 GMT Subject: CN=6975086b-063f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:c8:27:f3:3c:1d:48:66:3c:6b:41:f7:da:c9: 66:68:e1:9c:65:7d:49:34:84:b7:cb:32:16:06:f3: aa:d4:93:0e:80:3c:89:89:69:0b:8f:8b:9f:01:e3: 7f:21:72:e9:83:d8:0b:91:cf:8b:7f:9f:54:02:e3: be:0a:9c:4f:59:b4:f9:2a:83:0d:1f:bb:9c:e5:95: 86:0e:e0:af:f7:8a:b7:9f:01:f2:61:de:3a:b2:bf: 94:84:83:a9:51:69:25:4e:cd:07:49:d8:9a:7e:da: 8d:b7:c1:90:29:c0:32:5c:98:b3:52:57:02:d0:cc: d6:ca:46:a3:ca:9e:29:fc:9b:2d:f6:f1:29:6f:d2: 6f:0c:ff:f4:39:4b:e4:07:21:e6:4f:ba:12:ed:08: 9b:f3:b4:b6:50:fc:f9:30:01:c3:56:94:7d:b8:c2: d0:0f:bf:ce:dc:77:0a:a3:96:e6:8a:03:83:72:1d: b1:cf:18:02:b2:28:f2:42:49:e2:ba:5e:8e:86:a3: 71:a6:29:b9:7f:f8:ff:be:7a:85:cc:8b:7c:d6:b1: f9:c1:ca:61:e3:f1:a1:79:4b:9d:d2:3d:88:89:de: eb:4b:85:6e:6a:db:73:17:8a:20:4b:6d:6f:75:65: 95:54:1c:43:1d:2c:5a:89:c9:da:39:d5:2d:e6:46: 9a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EF:B7:5D:86:C2:D4:7C:F8:ED:51:22:E9:29:95:F8:B3:5A:A3:B2 X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7f:37:3e:e6:43:cf:32:3c:96:2e:ba:1a:3c:af:16:13:fa: 30:6a:a7:aa:c5:5c:ea:da:e6:2e:47:6a:52:71:21:3b:24:aa: 75:c3:b7:f0:b2:b6:2c:5b:80:ec:e4:3c:3a:cd:be:04:47:e0: 45:25:c1:71:b6:8b:b1:6e:59:9f:5c:5b:f7:77:09:f6:42:61: d9:f9:ff:68:35:28:d2:6c:76:f1:98:be:31:cc:0f:dc:81:37: 6a:a8:5d:29:c2:b3:a9:c1:9e:8c:d8:78:bc:e3:1c:1c:ec:a1: 4a:c2:55:1c:46:d1:3c:ff:f6:4d:d5:1f:35:45:b0:9e:14:43: 2b:8c:c9:47:75:4e:5d:f4:e7:55:39:a4:5e:9b:b4:78:eb:09: ba:66:83:c9:00:4c:eb:6a:e5:1a:02:4d:c2:f2:aa:de:53:21: 86:34:1c:95:b6:fe:49:4a:2d:1c:50:2f:f5:72:bd:19:8f:cb: 40:8d:36:66:26:70:50:c4:f8:1b:ac:da:4b:b5:0c:3b:5f:63: e5:1c:d0:63:5d:33:ea:cb:f6:bf:72:ca:15:f5:d9:93:86:27: a9:36:84:e6:84:dc:aa:18:6f:1a:03:c4:74:85:dc:d2:fe:28: 46:c4:1f:9f:39:42:c9:c5:9a:2c:45:1b:fb:45:a3:3c:c6:23: 65:e8:f2:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjYwMTI0MTc1OTA3WhcNMjYwMTMxMTc1OTA3WjAYMRYwFAYD VQQDDA02OTc1MDg2Yi0wNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/Mgn8zwdSGY8a0H32slmaOGcZX1JNIS3yzIWBvOq1JMOgDyJiWkLj4ufAeN/ IXLpg9gLkc+Lf59UAuO+CpxPWbT5KoMNH7uc5ZWGDuCv94q3nwHyYd46sr+UhIOp UWklTs0HSdiaftqNt8GQKcAyXJizUlcC0MzWykajyp4p/Jst9vEpb9JvDP/0OUvk ByHmT7oS7Qib87S2UPz5MAHDVpR9uMLQD7/O3HcKo5bmigODch2xzxgCsijyQkni ul6OhqNxpim5f/j/vnqFzIt81rH5wcph4/GheUud0j2Iid7rS4VuattzF4ogS21v dWWVVBxDHSxaicnaOdUt5kaa+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHvt12G wtR8+O1RIukplfizWqOyMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3fzc+5kPPMjyWLroaPK8WE/owaqeqxVzq2uYuR2pScSE7JKp1w7fw srYsW4Ds5Dw6zb4ER+BFJcFxtouxblmfXFv3dwn2QmHZ+f9oNSjSbHbxmL4xzA/c gTdqqF0pwrOpwZ6M2Hi84xwc7KFKwlUcRtE8//ZN1R81RbCeFEMrjMlHdU5d9OdV OaRem7R46wm6ZoPJAEzrauUaAk3C8qreUyGGNByVtv5JSi0cUC/1cr0Zj8tAjTZm JnBQxPgbrNpLtQw7X2PlHNBjXTPqy/a/csoV9dmThiepNoTmhNyqGG8aA8R0hdzS /ihGxB+fOULJxZosRRv7RaM8xiNl6PL9 -----END CERTIFICATE-----Generated at Sun Jan 25 14:03:27 2026 by rpki-client