This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: ZlO6XW5QetqSj/7ZRWD5IiWSHTfLMuWeay0Sn1Nir7A= Subject key identifier: 5A:88:B6:59:B3:8A:C5:C1:9B:7A:65:B9:6E:A2:A3:1D:11:8E:65:B7 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1AF1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 226A Signing time: Sat 24 Jan 2026 15:46:05 +0000 Manifest this update: Sat 24 Jan 2026 15:46:04 +0000 Manifest next update: Sat 31 Jan 2026 15:46:04 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: 3hDv3ha7p2YDaE0L76O8b9Z1WftjRL8SFarjwYcXaGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6897 (0x1af1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Jan 24 15:46:04 2026 GMT Not After : Jan 31 15:46:04 2026 GMT Subject: CN=6974e93d-1f2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:8b:bb:ec:bc:c6:8b:03:6f:db:92:63:74:3b: fb:5c:fa:59:a3:ec:26:ef:7d:35:5d:58:d7:29:b6: 0e:ac:3f:26:ac:8e:86:4a:e2:94:8c:85:5e:f6:8a: 73:2c:08:02:d4:90:35:f4:6c:0a:9d:ca:ac:79:5c: d6:73:ea:f7:d9:e3:0a:67:7b:92:8e:e5:47:70:af: 7d:35:4c:e8:8a:c7:3c:04:16:e2:8c:5c:9f:56:4e: 9e:ca:3c:08:ca:af:80:6e:c9:d4:aa:8b:e3:8b:5a: 13:b6:92:d2:92:99:8c:7a:ed:63:e9:ef:8f:cc:94: 0a:83:3c:c1:0a:2a:f3:49:42:fc:61:eb:7d:53:3c: 7e:b9:4e:ed:ed:c2:74:50:e4:e4:8f:a1:d5:10:ff: 44:9b:fd:73:74:54:60:80:fb:f7:fc:21:09:77:5f: 73:cc:7f:e3:18:98:23:32:26:ca:0d:d6:67:75:41: 7c:f8:cd:75:d6:7b:4d:63:a2:cf:07:06:39:a8:a1: 98:2d:ff:45:12:f5:7b:13:1d:5c:af:13:29:7d:6e: f2:a3:18:35:e2:be:6b:40:26:05:17:71:ca:d4:c7: e6:bf:ee:fb:c3:2a:18:79:2a:50:9f:d6:dc:e4:fd: 49:c5:e2:d9:a2:3d:c3:b9:ac:2e:eb:15:ae:c7:19: 9d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:88:B6:59:B3:8A:C5:C1:9B:7A:65:B9:6E:A2:A3:1D:11:8E:65:B7 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ab:ff:db:0d:e5:15:33:f2:dc:e4:66:9c:01:73:c2:7b:61: 07:01:9e:6a:ba:90:b9:fd:20:e5:d9:c7:3a:81:1b:cc:1e:23: ac:01:40:95:67:b1:3c:a8:5d:cc:1e:36:6c:96:25:58:db:15: e1:57:d9:ee:78:c7:01:aa:1f:a2:44:60:9d:1a:03:5b:4b:29: 42:ec:9b:96:a2:f9:d2:6c:f9:9e:43:db:7c:b9:29:76:5b:e0: 5e:eb:b1:02:a5:54:f6:b0:f2:ce:cf:49:03:eb:d7:33:0a:91: 98:db:8e:dc:6a:94:e5:c7:73:63:9e:d8:08:40:ac:e3:ee:34: 02:49:a3:a4:ff:0a:b3:96:b0:4d:65:89:6f:d1:e7:28:7e:86: a8:1d:ba:78:84:73:5b:3e:0c:29:c6:57:3b:31:d1:96:f6:cc: fc:b5:1c:80:01:8a:91:85:9d:6d:3a:89:ba:d6:30:f2:55:33: de:95:aa:09:68:21:60:2f:07:7e:21:cc:d7:2b:f8:6c:fb:6b: d8:47:e6:60:bf:72:fe:2e:9f:a1:65:69:45:3e:08:d3:cf:73: f5:fe:56:7f:6b:98:f2:29:9c:c9:69:34:69:10:be:3e:7a:64: 7f:0c:71:4c:40:d1:35:a3:02:cd:50:55:bf:0f:f8:b8:d0:a8: 1b:98:81:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjYwMTI0MTU0NjA0WhcNMjYwMTMxMTU0NjA0WjAYMRYwFAYD VQQDDA02OTc0ZTkzZC0xZjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjYu77LzGiwNv25JjdDv7XPpZo+wm7301XVjXKbYOrD8mrI6GSuKUjIVe9opz LAgC1JA19GwKncqseVzWc+r32eMKZ3uSjuVHcK99NUzoisc8BBbijFyfVk6eyjwI yq+AbsnUqovji1oTtpLSkpmMeu1j6e+PzJQKgzzBCirzSUL8Yet9Uzx+uU7t7cJ0 UOTkj6HVEP9Em/1zdFRggPv3/CEJd19zzH/jGJgjMibKDdZndUF8+M111ntNY6LP BwY5qKGYLf9FEvV7Ex1crxMpfW7yoxg14r5rQCYFF3HK1Mfmv+77wyoYeSpQn9bc 5P1JxeLZoj3Duawu6xWuxxmdGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqItlmz isXBm3pluW6iox0RjmW3MB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5q//bDeUVM/Lc5GacAXPCe2EHAZ5qupC5/SDl2cc6gRvMHiOsAUCV Z7E8qF3MHjZsliVY2xXhV9nueMcBqh+iRGCdGgNbSylC7JuWovnSbPmeQ9t8uSl2 W+Be67ECpVT2sPLOz0kD69czCpGY247capTlx3NjntgIQKzj7jQCSaOk/wqzlrBN ZYlv0ecofoaoHbp4hHNbPgwpxlc7MdGW9sz8tRyAAYqRhZ1tOom61jDyVTPelaoJ aCFgLwd+IczXK/hs+2vYR+Zgv3L+Lp+hZWlFPgjTz3P1/lZ/a5jyKZzJaTRpEL4+ emR/DHFMQNE1owLNUFW/D/i40KgbmIEn -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:46 2026 by rpki-client