This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: vV6e3BFpFKmJFroXSLlaZd+HTmCek49WyKV4FdUfCEk= Subject key identifier: 55:EC:F7:FD:4C:3E:C2:05:82:1F:35:A7:DA:42:69:49:2F:4D:FC:27 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08DB Signing time: Mon 02 Feb 2026 20:06:05 +0000 Manifest this update: Mon 02 Feb 2026 20:06:05 +0000 Manifest next update: Mon 09 Feb 2026 20:06:05 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: 2AKZE0ZMQpBv7YrLHjNO2f3/I7OQcocbjBVF/fE1ST0=) 2: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: lohr8A0pJoxU5YjZ4Iv+RM2sF95pgDEhCh+aZEFVj7A=) 3: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: KLxFMFuExsnPKk7ehnMGot9TEXcnIXuDGRsDC/SqYdc=) 4: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: g2Es0FtiWlI2wUZjhcKolcXm06CxccFnLzcDd+5e5mY=) 5: 4EF79184489411ED86987260C4F9AE02.roa (hash: iQNiRJndJ2EDSy4xdUwWuCF3frGlBaK+w6YY3/xBdJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Feb 2026 20:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Feb 2 20:06:05 2026 GMT Not After : Feb 9 20:06:05 2026 GMT Subject: CN=698103ad-de2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8b:2d:0b:ac:aa:2a:86:db:bf:5d:d2:cb:b6: 20:2a:58:b5:ce:52:c2:54:d8:1c:bb:8d:4a:2c:03: 6a:a4:27:ca:f6:36:e4:b1:06:8f:ca:ae:59:a0:46: 52:fa:47:54:44:04:25:4f:e8:35:62:26:af:ef:d1: f0:9e:c3:8a:e1:1f:d7:be:70:11:3e:bd:c3:b8:70: 1e:1a:0f:14:b4:80:f2:e1:72:1a:6b:74:d3:67:f5: 88:53:1d:5d:71:d8:f2:63:33:58:90:d3:b1:c3:64: 8c:60:5e:a5:6b:9e:72:03:7e:b9:db:d7:5b:7d:10: 31:8e:3f:fa:32:5b:6e:15:ea:7d:57:4f:83:cc:42: ee:9f:96:58:d3:6b:4d:32:9f:a8:cf:6e:4a:cc:ea: f3:76:d2:b1:b1:10:d3:fd:9b:50:f5:ee:3f:ed:9c: c2:0d:aa:4e:7d:69:66:35:b7:2f:ae:0c:d6:30:61: ee:67:ef:a8:5d:2a:37:8e:ca:e0:75:62:5a:78:34: bf:85:15:3d:fe:f1:ed:02:39:c4:34:cc:7d:af:59: 3a:49:61:87:bb:77:1a:b5:a4:ee:2a:2e:b7:ea:37: 08:9c:f7:c3:95:5b:f4:3b:8e:35:f2:c2:d3:a3:62: 06:b9:53:bd:3d:80:fa:92:6b:95:16:4d:a9:ff:68: 24:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:EC:F7:FD:4C:3E:C2:05:82:1F:35:A7:DA:42:69:49:2F:4D:FC:27 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:52:0b:15:fd:46:64:ad:98:fa:9b:fd:7c:e0:f3:0f:a6:43: 93:3e:2d:f4:56:c3:91:3a:8c:7e:33:6f:0b:e3:47:3b:92:a8: 33:a5:23:79:32:af:7b:50:c5:eb:2b:ff:b4:7b:d5:c5:b9:53: e1:2a:5c:1a:a9:22:5d:b5:20:ea:15:23:05:4d:af:3f:76:cd: 6a:8a:cc:0e:90:e0:35:df:40:f6:76:a0:76:b0:c8:f6:68:e8: 07:7f:5f:4c:71:87:58:1e:46:a2:d7:ec:92:c8:64:72:21:57: 76:d6:1f:54:20:17:f6:f1:48:bb:8f:7c:0f:f0:10:d7:72:84: b6:34:22:56:6a:63:a4:11:db:75:b4:03:f2:b6:22:aa:e0:fe: c2:19:d3:79:2f:a8:dd:40:34:d8:57:8c:a1:bb:f3:d2:1e:5b: 46:90:42:c4:bb:b2:3e:66:1e:a8:56:20:b9:2a:1c:37:02:68: d6:36:90:57:30:da:52:8f:32:48:8b:1c:e3:07:1c:46:84:d4: ab:98:a8:ee:97:a4:6f:29:49:13:9d:ba:55:a6:a9:2b:e3:b6: fd:8c:df:f4:40:cf:32:38:55:32:e6:58:f6:f2:b1:fe:20:d6: e7:cd:85:00:dc:a5:b5:f1:67:b9:74:da:53:1b:2d:bb:fc:73: b4:ff:fd:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjYwMjAyMjAwNjA1WhcNMjYwMjA5MjAwNjA1WjAYMRYwFAYD VQQDDA02OTgxMDNhZC1kZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ostC6yqKobbv13Sy7YgKli1zlLCVNgcu41KLANqpCfK9jbksQaPyq5ZoEZS +kdURAQlT+g1Yiav79HwnsOK4R/XvnARPr3DuHAeGg8UtIDy4XIaa3TTZ/WIUx1d cdjyYzNYkNOxw2SMYF6la55yA36529dbfRAxjj/6MltuFep9V0+DzELun5ZY02tN Mp+oz25KzOrzdtKxsRDT/ZtQ9e4/7ZzCDapOfWlmNbcvrgzWMGHuZ++oXSo3jsrg dWJaeDS/hRU9/vHtAjnENMx9r1k6SWGHu3cataTuKi636jcInPfDlVv0O4418sLT o2IGuVO9PYD6kmuVFk2p/2gkEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXs9/1M PsIFgh81p9pCaUkvTfwnMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCUgsV/UZkrZj6m/184PMPpkOTPi30VsOROox+M28L40c7kqgzpSN5 Mq97UMXrK/+0e9XFuVPhKlwaqSJdtSDqFSMFTa8/ds1qiswOkOA130D2dqB2sMj2 aOgHf19McYdYHkai1+ySyGRyIVd21h9UIBf28Ui7j3wP8BDXcoS2NCJWamOkEdt1 tAPytiKq4P7CGdN5L6jdQDTYV4yhu/PSHltGkELEu7I+Zh6oViC5Khw3AmjWNpBX MNpSjzJIixzjBxxGhNSrmKjul6RvKUkTnbpVpqkr47b9jN/0QM8yOFUy5lj28rH+ INbnzYUA3KW18We5dNpTGy27/HO0//13 -----END CERTIFICATE-----Generated at Wed Feb 4 08:31:11 2026 by rpki-client