This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: sUoFTOErhFS+hNmklkbq8gD7cRFcGiFkRe6MxxD1Z/o= Subject key identifier: 65:31:C5:1C:A6:B4:D5:73:B1:CF:CB:CF:57:CC:F1:18:84:1C:60:C2 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 010E Signing time: Sun 25 Jan 2026 04:11:16 +0000 Manifest this update: Sun 25 Jan 2026 04:11:16 +0000 Manifest next update: Sun 01 Feb 2026 04:11:16 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: iB3NB5maT/G5s9PwOVaWwUlJ9NX8IpsW8xlRoz2peMg=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: nTbnCk4P5H9oOH4eL195jhnWczLlGOgjmjreKYWM0EU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Jan 25 04:11:16 2026 GMT Not After : Feb 1 04:11:16 2026 GMT Subject: CN=697597e4-9310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:0e:a7:f3:4d:42:a9:d6:97:7f:e5:7e:31:6a: d0:89:e1:f7:0d:8c:64:ff:3b:03:1c:da:fc:8c:78: 9f:7e:0c:ce:a1:bd:68:bd:10:b5:b1:2f:97:ab:8a: f9:09:dd:40:5e:39:e5:72:34:37:97:74:60:34:2e: ab:db:a1:8b:eb:ce:c8:49:8e:cd:40:48:cf:72:3c: e0:ee:36:d4:be:83:f3:d6:9b:f9:f1:bc:e3:18:86: f7:b4:53:86:b5:2d:b0:83:6a:99:e9:9c:fd:96:dd: cc:e1:f4:07:83:ef:d5:bf:cd:f4:47:fd:29:56:50: 8c:d7:d8:a2:19:9f:23:ad:55:e9:1e:59:e6:dd:bb: 6d:ab:26:32:83:1d:2e:09:c8:9f:e1:b3:56:aa:49: e7:6e:9b:76:9f:9e:3d:30:c0:1e:42:bf:1f:df:bd: 33:07:68:cf:89:84:77:84:38:67:a6:bc:68:a0:10: 7a:58:e4:7e:3e:37:90:76:0a:57:94:68:0f:c4:49: ba:38:3b:47:e1:e5:55:7f:ee:dd:83:73:ed:88:4b: a0:ce:c9:b6:25:db:cc:95:f6:92:ee:1e:26:d0:55: 9b:ac:f6:94:48:71:b0:be:d5:02:bc:d1:45:6f:c6: 97:cc:66:16:29:47:9f:09:52:e7:cd:c9:bf:9c:8f: 36:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:31:C5:1C:A6:B4:D5:73:B1:CF:CB:CF:57:CC:F1:18:84:1C:60:C2 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:08:72:47:4a:b7:2b:05:69:17:9a:a3:4e:4e:de:98:a6:3b: b6:65:bd:6d:63:eb:7a:84:da:e6:d6:ce:f2:18:bc:a7:42:54: b8:4d:bc:00:33:b1:39:81:53:7a:49:73:79:1f:c9:37:93:7d: 38:b3:59:17:fa:81:14:cb:16:6e:a2:ba:e6:21:51:e7:af:5b: bb:6d:ec:7d:46:45:d6:ef:a1:0f:f0:e2:66:62:a4:03:a6:9e: 6c:85:b2:f9:3c:5c:c0:47:76:f5:93:6a:71:ac:bf:ba:2a:c5: 39:9d:2e:4f:b3:f0:1f:11:fb:01:f8:be:9d:56:92:9b:08:74: f9:78:d5:6f:22:f7:e2:d7:a6:7b:b6:4a:a1:c7:74:a9:15:e1: 01:3f:53:cc:7d:d6:16:9e:da:8f:67:00:f4:1b:5c:ab:ee:fb: 0f:b7:db:a5:81:72:9b:9b:37:81:a1:f7:0b:60:55:73:78:51: f9:01:67:4c:fa:60:49:42:7c:5b:76:c8:cb:08:42:e1:c6:3b: 9e:0d:ef:97:2e:9b:21:53:6e:6e:ca:6d:85:96:b8:fa:4f:8b: 6b:36:70:9e:65:ba:d1:4e:5a:f7:56:97:2e:ff:d5:bb:5f:65: 1c:f2:2d:74:95:67:8a:92:20:9c:f9:b4:98:89:13:0b:d2:da: c1:b8:85:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjYwMTI1MDQxMTE2WhcNMjYwMjAxMDQxMTE2WjAYMRYwFAYD VQQDDA02OTc1OTdlNC05MzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjA6n801CqdaXf+V+MWrQieH3DYxk/zsDHNr8jHiffgzOob1ovRC1sS+Xq4r5 Cd1AXjnlcjQ3l3RgNC6r26GL687ISY7NQEjPcjzg7jbUvoPz1pv58bzjGIb3tFOG tS2wg2qZ6Zz9lt3M4fQHg+/Vv830R/0pVlCM19iiGZ8jrVXpHlnm3bttqyYygx0u Ccif4bNWqknnbpt2n549MMAeQr8f370zB2jPiYR3hDhnprxooBB6WOR+PjeQdgpX lGgPxEm6ODtH4eVVf+7dg3PtiEugzsm2JdvMlfaS7h4m0FWbrPaUSHGwvtUCvNFF b8aXzGYWKUefCVLnzcm/nI82NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUxxRym tNVzsc/Lz1fM8RiEHGDCMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+CHJHSrcrBWkXmqNOTt6Ypju2Zb1tY+t6hNrm1s7yGLynQlS4TbwA M7E5gVN6SXN5H8k3k304s1kX+oEUyxZuorrmIVHnr1u7bex9RkXW76EP8OJmYqQD pp5shbL5PFzAR3b1k2pxrL+6KsU5nS5Ps/AfEfsB+L6dVpKbCHT5eNVvIvfi16Z7 tkqhx3SpFeEBP1PMfdYWntqPZwD0G1yr7vsPt9ulgXKbmzeBofcLYFVzeFH5AWdM +mBJQnxbdsjLCELhxjueDe+XLpshU25uym2Flrj6T4trNnCeZbrRTlr3Vpcu/9W7 X2Uc8i10lWeKkiCc+bSYiRML0trBuIVp -----END CERTIFICATE-----Generated at Sun Jan 25 18:43:17 2026 by rpki-client