This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: w8xI+zewOInqRgSjd1iwG2v0pK84IoQ7QlYCpQu3xlI= Subject key identifier: 90:C4:5D:51:14:F0:10:0B:DD:7F:33:EE:39:21:A1:B1:E8:98:D6:A2 Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: B8 Signing time: Sun 25 Jan 2026 05:12:18 +0000 Manifest this update: Sun 25 Jan 2026 05:12:18 +0000 Manifest next update: Sun 01 Feb 2026 05:12:18 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: mAVXmcb6RWfJAwosTlcRoP3cPcMUXReC1UPlpQWzLG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Jan 25 05:12:18 2026 GMT Not After : Feb 1 05:12:18 2026 GMT Subject: CN=6975a632-d843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:4d:b6:9e:05:a6:c3:49:04:7d:b6:65:fa:b5: 93:aa:e2:67:ff:d2:f0:e1:be:54:62:4d:88:df:9a: 67:3d:b0:b9:ae:b0:6b:9c:cc:4b:fc:e9:2a:e6:59: 5a:50:b6:4f:f7:3a:c5:22:c9:ee:c0:2b:8b:ec:3c: f4:45:08:55:9f:f0:7c:22:6b:39:1d:a9:d4:9a:94: 3f:84:cb:f9:3b:70:38:45:3b:0c:62:2d:cc:75:0b: d2:e5:7a:f7:90:23:13:9c:e9:45:9f:02:8c:58:a9: 01:aa:32:0a:40:fc:1f:a9:5c:82:e6:c7:9f:7c:d8: 21:98:5e:9b:13:42:77:9b:8c:c2:2d:32:00:26:9d: 07:78:2d:c5:10:dc:25:58:4c:0a:7f:13:e0:50:65: a9:8c:c5:9d:ca:fa:64:15:ec:f3:fd:85:b9:f1:cf: 77:24:6e:b9:4c:ce:d5:ed:cf:62:3b:bc:62:75:6e: 54:15:4e:a9:51:41:af:da:26:5b:f3:38:04:02:a3: 86:3f:54:7a:32:5d:f6:0a:8d:f2:ec:6a:e1:c4:bd: 7d:e3:2a:39:73:3c:bb:ec:14:bf:8d:6e:7b:98:fa: 64:a6:5f:73:09:b2:2b:66:f4:5c:35:c3:48:c3:4e: 13:33:08:fc:24:03:81:98:30:7f:27:11:13:b8:82: 68:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C4:5D:51:14:F0:10:0B:DD:7F:33:EE:39:21:A1:B1:E8:98:D6:A2 X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:db:c5:de:11:27:ad:07:a9:c6:7b:c8:d1:f4:c2:a1:22:ee: 4b:0c:d8:43:a7:4c:51:cd:6d:81:f1:6c:7f:2b:1b:5b:ef:36: 67:f4:4b:d6:f2:a7:05:66:34:0b:47:37:e5:cb:6d:11:ac:48: 71:16:fb:02:b8:85:57:80:ef:89:e3:e5:21:99:a2:01:0c:12: 26:4b:8e:08:f5:74:e4:41:29:4b:b7:5b:c9:3c:9e:ca:ed:44: 35:ad:99:db:00:5d:35:98:ea:34:50:80:89:b0:b4:89:0e:77: 23:cd:87:74:5e:c0:9d:17:09:d4:5b:18:90:d1:aa:dc:52:87: e2:f7:bf:c1:1a:af:ce:e2:60:99:0e:bd:57:45:23:7a:11:ea: c1:90:83:aa:97:c6:f5:59:ff:e3:16:c9:6c:55:e4:b8:1c:71: 4c:b9:47:bf:49:97:67:f8:b7:20:89:99:22:b1:5e:9f:c7:3d: 3a:f9:b6:90:40:bd:0f:99:6f:ad:47:59:e1:6d:3b:84:7e:b0: ce:5d:5e:47:65:97:b5:94:cd:f0:e6:7a:46:8f:f0:e1:70:48: e5:95:23:4c:02:fa:8d:ad:5a:81:55:45:0e:1e:d7:71:7e:38: d8:b2:97:19:2a:e3:28:94:89:ba:95:8b:66:12:e7:aa:14:5a: 28:f1:63:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDE4MEEzNTIyRTIwNTBDNUYxRTA4NzM1MzlCMTJENkQy MzEyQTIwMUEwHhcNMjYwMTI1MDUxMjE4WhcNMjYwMjAxMDUxMjE4WjAYMRYwFAYD VQQDDA02OTc1YTYzMi1kODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj022ngWmw0kEfbZl+rWTquJn/9Lw4b5UYk2I35pnPbC5rrBrnMxL/Okq5lla ULZP9zrFIsnuwCuL7Dz0RQhVn/B8Ims5HanUmpQ/hMv5O3A4RTsMYi3MdQvS5Xr3 kCMTnOlFnwKMWKkBqjIKQPwfqVyC5seffNghmF6bE0J3m4zCLTIAJp0HeC3FENwl WEwKfxPgUGWpjMWdyvpkFezz/YW58c93JG65TM7V7c9iO7xidW5UFU6pUUGv2iZb 8zgEAqOGP1R6Ml32Co3y7GrhxL194yo5czy77BS/jW57mPpkpl9zCbIrZvRcNcNI w04TMwj8JAOBmDB/JxETuIJoLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDEXVEU 8BAL3X8z7jkhobHomNaiMB8GA1UdIwQYMBaAFBgKNSLiBQxfHghzU5sS1tIxKiAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xREE1Q0M1NkRG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRGOGVDSE5UbXhMVzBqRXFJ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xREE1Q0M1NkRGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRG OGVDSE5UbXhMVzBqRXFJQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB628XeESetB6nGe8jR9MKhIu5LDNhDp0xRzW2B8Wx/Kxtb7zZn9EvW 8qcFZjQLRzfly20RrEhxFvsCuIVXgO+J4+UhmaIBDBImS44I9XTkQSlLt1vJPJ7K 7UQ1rZnbAF01mOo0UICJsLSJDncjzYd0XsCdFwnUWxiQ0arcUofi97/BGq/O4mCZ Dr1XRSN6EerBkIOql8b1Wf/jFslsVeS4HHFMuUe/SZdn+LcgiZkisV6fxz06+baQ QL0PmW+tR1nhbTuEfrDOXV5HZZe1lM3w5npGj/DhcEjllSNMAvqNrVqBVUUOHtdx fjjYspcZKuMolIm6lYtmEueqFFoo8WN6 -----END CERTIFICATE-----Generated at Sun Jan 25 07:47:59 2026 by rpki-client