This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: J/cWf9xX8w3HAeYgrGRVU5Us+wTad3/OBangY8wLxes= Subject key identifier: B6:82:31:9A:D9:F0:B5:07:32:D4:83:9B:E5:56:A6:17:85:0F:9C:42 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 015D Signing time: Sat 17 Jan 2026 03:17:08 +0000 Manifest this update: Sat 17 Jan 2026 03:17:08 +0000 Manifest next update: Sat 24 Jan 2026 03:17:08 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: DfgehwWFbiQy655t62GbcQ6m9z9QfB/7SLlNa/dukLE=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 03:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Jan 17 03:17:08 2026 GMT Not After : Jan 24 03:17:08 2026 GMT Subject: CN=696aff34-95bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:34:8b:f8:2b:26:63:3c:8b:46:8c:cc:e1:08: fd:b3:06:3d:69:3c:b4:cd:9b:d9:58:b0:62:60:1c: 9e:fc:37:7c:53:a8:22:1c:43:8b:b1:65:bf:56:9e: f6:c5:70:2c:63:ee:e1:ef:20:95:54:ad:f2:91:76: 9c:0d:0b:e2:59:2b:13:31:89:a0:9e:89:5d:b6:5a: 08:1d:c5:35:85:56:35:d2:a5:ba:f5:02:bd:b7:6d: c0:51:a4:55:0e:3f:af:ed:d7:1c:66:ff:dd:31:47: dc:d7:06:be:31:de:f9:c3:b2:51:a9:e4:51:b2:f4: 42:ec:aa:08:c5:e2:ae:a3:59:0c:20:8d:e3:ba:33: 37:72:86:ad:9f:16:1f:5f:09:f4:c9:54:97:ae:34: 83:93:14:22:61:ba:a5:10:6f:34:b1:9e:b6:da:94: 5f:84:0c:10:f6:48:31:df:f9:32:38:af:f9:76:39: 2a:31:23:ec:a5:06:9f:e1:52:fc:19:47:96:b7:0f: 68:e2:60:36:e7:a9:0e:78:d3:68:21:9c:40:4a:80: 51:4f:f7:f5:ba:31:da:64:79:e3:d6:38:e6:d7:73: b2:5c:b6:ce:05:74:fc:2d:57:96:05:c9:81:3d:1f: 20:d4:a5:fc:b5:0c:ea:52:21:1d:dc:0d:dc:de:47: 45:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:82:31:9A:D9:F0:B5:07:32:D4:83:9B:E5:56:A6:17:85:0F:9C:42 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:a0:7d:df:9a:40:46:3e:8b:19:1a:f2:51:08:f6:ae:0e:14: 5a:e0:69:da:82:20:da:4e:e9:f0:83:a9:a0:ea:69:9d:00:d4: dc:05:30:fe:22:50:46:33:08:86:48:81:56:f0:b3:0b:95:ff: 30:98:7a:73:26:bc:87:17:61:9b:a4:ae:99:5f:38:c2:87:a2: ba:b4:c0:3b:c5:d0:e7:fb:40:cd:58:4a:f0:72:35:9f:f2:fe: d1:b8:36:00:6c:fc:7e:a8:a1:62:12:4a:a4:a7:9e:d2:4d:39: ef:8c:64:bc:dc:4d:91:75:8d:b1:91:7c:d7:af:94:bb:12:33: d2:94:2b:17:7e:bc:56:7c:d5:35:c7:ad:82:2a:5e:31:6b:b6: ce:89:54:42:3a:0f:b8:84:7f:c5:f3:0f:8f:79:73:f2:6f:35: bf:98:4f:b3:6d:06:c9:1f:cc:7c:f3:b4:ff:ff:42:90:1c:32: 8c:0e:38:56:5b:d4:5c:61:c5:1b:39:10:91:82:d0:6a:67:03: 0a:ed:1d:3c:82:f1:8b:ff:a8:0f:57:47:4d:5c:3b:ba:fa:9e: 98:b8:37:12:50:b8:56:d0:d3:b4:6e:81:48:46:3a:1e:3b:aa: 5a:17:1d:54:ee:12:9e:04:a4:ae:fa:94:a4:8c:3c:bf:9b:d9: e0:62:9e:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjYwMTE3MDMxNzA4WhcNMjYwMTI0MDMxNzA4WjAYMRYwFAYD VQQDDA02OTZhZmYzNC05NWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDSL+CsmYzyLRozM4Qj9swY9aTy0zZvZWLBiYBye/Dd8U6giHEOLsWW/Vp72 xXAsY+7h7yCVVK3ykXacDQviWSsTMYmgnoldtloIHcU1hVY10qW69QK9t23AUaRV Dj+v7dccZv/dMUfc1wa+Md75w7JRqeRRsvRC7KoIxeKuo1kMII3jujM3coatnxYf Xwn0yVSXrjSDkxQiYbqlEG80sZ622pRfhAwQ9kgx3/kyOK/5djkqMSPspQaf4VL8 GUeWtw9o4mA256kOeNNoIZxASoBRT/f1ujHaZHnj1jjm13OyXLbOBXT8LVeWBcmB PR8g1KX8tQzqUiEd3A3c3kdF9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaCMZrZ 8LUHMtSDm+VWpheFD5xCMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/oH3fmkBGPosZGvJRCPauDhRa4GnagiDaTunwg6mg6mmdANTcBTD+ IlBGMwiGSIFW8LMLlf8wmHpzJryHF2GbpK6ZXzjCh6K6tMA7xdDn+0DNWErwcjWf 8v7RuDYAbPx+qKFiEkqkp57STTnvjGS83E2RdY2xkXzXr5S7EjPSlCsXfrxWfNU1 x62CKl4xa7bOiVRCOg+4hH/F8w+PeXPybzW/mE+zbQbJH8x887T//0KQHDKMDjhW W9RcYcUbORCRgtBqZwMK7R08gvGL/6gPV0dNXDu6+p6YuDcSULhW0NO0boFIRjoe O6paFx1U7hKeBKSu+pSkjDy/m9ngYp7k -----END CERTIFICATE-----Generated at Sun Jan 18 22:09:46 2026 by rpki-client