This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft File: BoQptByg8Segp10v_LJsA6lfYHE.mft (raw, json) Hash identifier: oCCrfT9CyNiwAQlFGMNSceYEQbTR9pu2gFAgH3s5eY4= Subject key identifier: DA:C1:D1:21:BE:D6:8A:C0:95:DF:DF:DE:A7:36:A9:6C:CC:91:FB:F8 Authority key identifier: 06:84:29:B4:1C:A0:F1:27:A0:A7:5D:2F:FC:B2:6C:03:A9:5F:60:71 Certificate issuer: /CN=A91CCABB/serialNumber=068429B41CA0F127A0A75D2FFCB26C03A95F6071 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BoQptByg8Segp10v_LJsA6lfYHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft Manifest number: 11 Signing time: Sat 17 Jan 2026 07:00:22 +0000 Manifest this update: Sat 17 Jan 2026 07:00:21 +0000 Manifest next update: Sat 24 Jan 2026 07:00:21 +0000 Files and hashes: 1: BoQptByg8Segp10v_LJsA6lfYHE.crl (hash: NAdXpCH1i8Tb7G5Lqv3q0wZi1C709FOQg8JdLOBesTA=) 2: BE1ACA36DD7911F088A95D31386F56BC.roa (hash: j+GVnaL8BPJQSWQPq5FtsM0SwBZ1v0wUH5GMij24NF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.crl rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BoQptByg8Segp10v_LJsA6lfYHE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 07:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCABB, serialNumber=068429B41CA0F127A0A75D2FFCB26C03A95F6071 Validity Not Before: Jan 17 07:00:21 2026 GMT Not After : Jan 24 07:00:21 2026 GMT Subject: CN=696b3386-d3ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4c:e1:5d:8a:4f:c3:d4:48:86:e4:5d:9b:96: ab:64:2b:67:26:c8:12:46:1f:ac:bd:6e:fb:c9:c6: 68:8c:ab:d3:7b:fe:25:a4:99:ac:53:5a:ee:30:0b: 63:69:d4:00:7b:22:ca:6d:0d:f5:6b:94:d7:94:d2: eb:18:fd:26:35:6d:3c:e3:ee:32:3e:74:34:c0:ea: 0b:53:00:34:47:92:d9:22:fc:bc:7c:d0:9b:b0:82: 51:1c:bb:08:a0:4f:e8:e9:8d:e3:e3:a4:41:ed:5d: 10:77:e5:14:d0:81:89:5a:40:c2:6d:08:96:14:d6: 59:54:ba:29:16:f7:a5:67:ac:75:10:30:01:88:27: d8:40:16:63:2b:1a:0e:f2:43:09:a8:5c:6c:13:57: 69:e6:09:20:fe:66:a8:34:10:36:f3:84:1c:9d:47: fe:76:b3:19:a0:fe:e8:0a:4e:74:14:04:6a:b5:0b: 26:89:14:7c:1d:06:6a:9c:28:3b:49:4d:f8:80:12: 44:c7:91:6a:f5:1d:5f:03:c6:a2:19:21:e3:e1:a5: 22:95:4f:d3:f7:78:45:f8:30:a1:55:77:69:7b:9a: ad:d7:ec:e4:c1:b7:3f:0d:89:04:d9:3c:ff:81:2b: 8c:01:15:88:93:9e:8a:ed:06:3c:c9:a0:03:fc:b5: 14:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C1:D1:21:BE:D6:8A:C0:95:DF:DF:DE:A7:36:A9:6C:CC:91:FB:F8 X509v3 Authority Key Identifier: keyid:06:84:29:B4:1C:A0:F1:27:A0:A7:5D:2F:FC:B2:6C:03:A9:5F:60:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BoQptByg8Segp10v_LJsA6lfYHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:19:b7:5a:f9:cb:77:b3:9f:62:19:a5:a2:b6:20:22:73:59: 28:ef:7a:28:88:b5:2d:2d:55:98:1c:a4:e1:4e:f8:b5:03:b5: c6:d6:96:8e:21:ee:d7:63:69:ee:97:ca:75:00:21:7a:7c:05: be:c8:23:71:05:a6:1f:86:dc:91:fa:bf:26:b0:e5:c8:2d:4a: 3e:2d:af:ef:48:8f:96:1e:ca:89:1b:18:34:26:15:38:85:87: 26:d6:4c:eb:6f:23:fd:52:fa:f7:32:eb:36:81:a4:5e:3c:b3: 99:04:90:12:5d:2c:bd:45:74:d0:46:b8:ab:2f:cd:00:f5:05: 0d:47:b3:a3:af:cb:8f:b5:4c:96:6a:44:4a:c3:13:8c:8f:33: f0:7c:9f:dd:0f:67:dd:2e:dc:32:30:c1:02:2d:97:5d:bd:86: e0:60:9e:81:31:54:75:ae:cb:95:9e:9e:78:1a:3a:b4:7b:27: 2e:0f:51:9e:1c:89:83:18:64:e4:26:81:a4:88:68:e8:37:2b: be:e7:a4:d7:36:02:11:b0:50:de:03:d7:30:e2:fb:f9:b5:2c: 2c:71:2b:89:dd:00:b7:eb:24:f4:07:63:bb:1b:d6:ec:0c:4a: f3:45:e4:76:12:75:39:ea:74:84:7e:a4:11:27:65:00:52:e9: b8:81:3d:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFD Q0FCQjExMC8GA1UEBRMoMDY4NDI5QjQxQ0EwRjEyN0EwQTc1RDJGRkNCMjZDMDNB OTVGNjA3MTAeFw0yNjAxMTcwNzAwMjFaFw0yNjAxMjQwNzAwMjFaMBgxFjAUBgNV BAMMDTY5NmIzMzg2LWQzYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8TOFdik/D1EiG5F2blqtkK2cmyBJGH6y9bvvJxmiMq9N7/iWkmaxTWu4wC2Np 1AB7IsptDfVrlNeU0usY/SY1bTzj7jI+dDTA6gtTADRHktki/Lx80JuwglEcuwig T+jpjePjpEHtXRB35RTQgYlaQMJtCJYU1llUuikW96VnrHUQMAGIJ9hAFmMrGg7y QwmoXGwTV2nmCSD+Zqg0EDbzhBydR/52sxmg/ugKTnQUBGq1CyaJFHwdBmqcKDtJ TfiAEkTHkWr1HV8DxqIZIePhpSKVT9P3eEX4MKFVd2l7mq3X7OTBtz8NiQTZPP+B K4wBFYiTnortBjzJoAP8tRSrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2sHRIb7W isCV39/epzapbMyR+/gwHwYDVR0jBBgwFoAUBoQptByg8Segp10v/LJsA6lfYHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUJCLzQwM0IwRDhFREQ3 ODExRjBBNTg2QjEyODM4NkY1NkJDL0JvUXB0QnlnOFNlZ3AxMHZfTEpzQTZsZllI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQm9RcHRCeWc4U2VncDEwdl9MSnNBNmxmWUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUJCLzQwM0IwRDhFREQ3ODExRjBBNTg2QjEyODM4NkY1NkJDL0JvUXB0QnlnOFNl Z3AxMHZfTEpzQTZsZllIRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAgZt1r5y3ezn2IZpaK2ICJzWSjveiiItS0tVZgcpOFO+LUDtcbWlo4h 7tdjae6XynUAIXp8Bb7II3EFph+G3JH6vyaw5cgtSj4tr+9Ij5YeyokbGDQmFTiF hybWTOtvI/1S+vcy6zaBpF48s5kEkBJdLL1FdNBGuKsvzQD1BQ1Hs6Ovy4+1TJZq RErDE4yPM/B8n90PZ90u3DIwwQItl129huBgnoExVHWuy5WenngaOrR7Jy4PUZ4c iYMYZOQmgaSIaOg3K77npNc2AhGwUN4D1zDi+/m1LCxxK4ndALfrJPQHY7sb1uwM SvNF5HYSdTnqdIR+pBEnZQBS6biBPSs= -----END CERTIFICATE-----Generated at Sun Jan 18 03:12:02 2026 by rpki-client