This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: MpX/yt+fmIQuJNv0n74V9fKqLcc7NWLrmaiNESScNGI= Subject key identifier: D8:84:ED:3C:5C:F9:A9:B2:6A:B5:6D:15:AC:6B:C1:EC:34:8D:83:0E Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 0171 Signing time: Fri 16 Jan 2026 19:30:11 +0000 Manifest this update: Fri 16 Jan 2026 19:30:10 +0000 Manifest next update: Fri 23 Jan 2026 19:30:10 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: EYSJHkLLmBuhLVVeC3JVD4WzKokPlL40EuG41IIwCx0=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: meGg1NN20MfvaZAVYfetTEGVIcZuhqOuDHstRQMemWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 19:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Jan 16 19:30:10 2026 GMT Not After : Jan 23 19:30:10 2026 GMT Subject: CN=696a91c3-16e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:20:87:a5:fc:0d:af:22:e0:63:d1:62:3f:37: c8:ac:56:79:e4:6c:85:a6:63:e1:ac:23:ee:c5:27: df:cf:87:66:42:f5:4f:b6:21:d4:19:bf:a1:20:de: a1:d3:c3:ae:c6:2b:c7:4e:fe:8f:ba:2e:11:d3:42: 5c:6f:75:60:63:e0:1f:b7:89:5d:7e:63:b7:d9:1b: 31:56:f2:ea:95:c5:b0:81:ae:b6:da:e0:3b:a0:87: 1a:9b:90:66:80:70:b0:0d:eb:55:98:54:2c:c5:74: c2:bc:57:7f:10:d0:be:00:85:d6:0f:0c:9b:48:9c: ee:04:4f:3d:0a:1e:23:f7:c7:40:2a:77:a1:aa:8d: 9e:de:b2:44:f9:d2:81:ce:50:78:c5:58:67:fc:f7: 6b:88:67:fa:63:f9:cf:42:bf:c7:8f:fb:47:55:32: 30:43:54:0f:67:22:89:50:f6:cb:ea:9b:6f:d5:79: 8e:e2:2c:5d:4d:a5:39:d5:bc:a0:ed:8f:71:b1:dc: e5:d0:8b:cb:18:a1:bd:b7:a3:16:01:a4:52:d5:89: b0:db:f8:37:7a:6a:76:c2:9d:e8:77:f7:3f:1e:3b: 88:fa:91:e1:b7:4f:d3:c4:70:1e:0e:29:29:74:e9: e0:80:c7:8f:47:1a:d4:2e:ec:d0:c4:ed:e8:5b:a7: ea:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:84:ED:3C:5C:F9:A9:B2:6A:B5:6D:15:AC:6B:C1:EC:34:8D:83:0E X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:c8:ff:6c:91:55:0e:71:e2:48:67:b1:57:e6:35:3c:ae:58: c8:d4:2d:52:80:8e:9c:a9:c5:55:78:a3:30:26:21:02:af:b5: f3:c9:5d:df:03:cf:8c:35:5b:d0:32:47:cc:e2:7c:d9:44:f2: 14:17:da:64:67:31:20:3e:ad:19:04:58:05:94:7d:46:64:98: 68:80:f7:09:2a:4a:87:f2:d5:13:0c:60:8b:44:63:28:a2:63: a9:cf:d2:a7:27:c5:00:e3:7b:53:99:a5:de:ec:3e:2d:68:eb: 7e:9f:ed:63:78:bf:e9:a0:95:2b:8a:3a:64:9e:95:c2:96:c9: 60:47:6b:3a:cb:b6:d1:e2:32:2e:bf:83:d6:3f:8b:0a:ad:00: 78:6c:77:6c:00:4e:e4:2d:e0:29:fd:45:c5:71:9f:54:ab:c9: c7:d4:d7:66:2d:ed:bb:8c:ca:76:5c:0f:89:e9:8a:32:70:41: 12:46:5d:18:3e:5e:9e:84:58:ee:36:69:ba:8e:a2:bb:3a:68: cf:fc:d9:9b:c6:58:3b:b6:60:c4:76:d2:c9:47:9d:7e:e0:e7: 64:dc:01:79:49:14:5e:57:cc:95:65:bf:80:c2:9c:f9:5e:43: 40:da:eb:0e:1c:61:0d:43:4f:fa:69:66:80:d4:b0:99:d1:30: 8b:7f:b0:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjYwMTE2MTkzMDEwWhcNMjYwMTIzMTkzMDEwWjAYMRYwFAYD VQQDDA02OTZhOTFjMy0xNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySCHpfwNryLgY9FiPzfIrFZ55GyFpmPhrCPuxSffz4dmQvVPtiHUGb+hIN6h 08OuxivHTv6Pui4R00Jcb3VgY+Aft4ldfmO32RsxVvLqlcWwga622uA7oIcam5Bm gHCwDetVmFQsxXTCvFd/ENC+AIXWDwybSJzuBE89Ch4j98dAKnehqo2e3rJE+dKB zlB4xVhn/PdriGf6Y/nPQr/Hj/tHVTIwQ1QPZyKJUPbL6ptv1XmO4ixdTaU51byg 7Y9xsdzl0IvLGKG9t6MWAaRS1Ymw2/g3emp2wp3od/c/HjuI+pHht0/TxHAeDikp dOnggMePRxrULuzQxO3oW6fqNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiE7Txc +amyarVtFaxrwew0jYMOMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+yP9skVUOceJIZ7FX5jU8rljI1C1SgI6cqcVVeKMwJiECr7XzyV3f A8+MNVvQMkfM4nzZRPIUF9pkZzEgPq0ZBFgFlH1GZJhogPcJKkqH8tUTDGCLRGMo omOpz9KnJ8UA43tTmaXe7D4taOt+n+1jeL/poJUrijpknpXClslgR2s6y7bR4jIu v4PWP4sKrQB4bHdsAE7kLeAp/UXFcZ9Uq8nH1NdmLe27jMp2XA+J6YoycEESRl0Y Pl6ehFjuNmm6jqK7OmjP/Nmbxlg7tmDEdtLJR51+4Odk3AF5SRReV8yVZb+Awpz5 XkNA2usOHGENQ0/6aWaA1LCZ0TCLf7BF -----END CERTIFICATE-----Generated at Sun Jan 18 04:34:43 2026 by rpki-client