This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: 6HBdpnb/P4DANbmBPizISuIwUtUHJ1IGB3fGpkBNohs= Subject key identifier: 11:21:76:75:19:DA:18:A7:44:78:84:80:9E:00:54:64:25:61:27:D5 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DD8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0DB2 Signing time: Mon 02 Feb 2026 17:43:22 +0000 Manifest this update: Mon 02 Feb 2026 17:43:22 +0000 Manifest next update: Mon 09 Feb 2026 17:43:22 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: YvIdpX84/6Uqip66Xlt1gVBVtCPBAVFuEW/yoz/TA1c=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: FzGRi5LQaRpVvBdZEYGORMu24wIc9n/2XfQjymU7CyU=) 3: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: q0g05GgKYjCwgrzaPkpBrbZSSk5mmMAzTCuEcNwRvwI=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: NT8qFscQ8we+UCxbUkdye1gWb4WsWj8G0bdraYAJJjo=) 5: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: X9dYZT14+8XQBWHYnwgdDdZRJRcUzKustmbcROTHObQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Feb 2026 17:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3544 (0xdd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Feb 2 17:43:22 2026 GMT Not After : Feb 9 17:43:22 2026 GMT Subject: CN=6980e23a-06fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:0c:5f:f7:47:fa:d8:3d:d2:4e:32:a5:73:5c: 86:3b:13:91:6e:24:91:06:5f:d9:b6:73:de:26:8c: 59:54:fd:4f:02:8f:e4:e6:6e:d6:7d:ad:39:6f:a4: a5:19:ae:c6:1b:8f:a3:95:2e:22:f6:da:20:db:17: 6c:fe:11:82:af:6b:b5:c7:f3:e4:5d:63:ad:46:27: c1:ea:99:ec:42:32:78:8e:49:d3:ec:a5:3b:bd:7e: 3a:e4:67:6b:f8:4f:91:3c:2a:b3:1a:fa:49:e3:62: c9:42:1a:37:a0:35:a7:6a:58:d0:ab:92:2b:33:42: ca:1d:61:b8:bb:82:94:3f:6e:37:09:ac:41:29:0e: 81:4e:4e:60:8e:4a:42:94:7f:3d:27:46:e1:fa:05: 5d:4f:e4:83:e1:e2:e9:10:9a:e9:9f:cf:a8:e2:56: 65:2c:bd:9b:ad:b7:62:0e:db:4a:44:d9:f9:f8:a2: 5d:6d:13:1c:d6:f9:23:ea:bf:47:8c:38:84:24:87: 1b:00:ee:08:1e:c8:e0:76:9e:b7:47:50:a4:11:a6: 72:04:28:32:19:40:fa:70:a0:bb:b5:fb:bd:ea:1b: 9b:4d:ce:9e:e1:11:34:b4:5d:ba:26:13:5c:6c:f0: c7:67:c1:7d:30:1a:98:1b:0a:51:ce:d9:b4:f4:e9: c1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:21:76:75:19:DA:18:A7:44:78:84:80:9E:00:54:64:25:61:27:D5 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e1:66:ff:c6:3d:36:0a:c7:bd:5a:3a:85:04:1d:6a:65:8d: 40:4c:54:6d:36:86:ef:e5:15:12:cb:5d:58:e2:fb:9f:67:82: 1e:1f:52:70:50:de:fd:db:48:12:91:09:ed:8c:69:e4:21:e7: f3:10:9f:40:ac:2e:1a:21:3b:30:50:4d:e4:0a:f7:ba:ee:2c: d2:29:72:49:eb:ad:f6:83:64:e2:a6:18:24:25:dd:f6:af:b8: 7b:69:c5:b3:70:47:b4:df:fc:e2:0a:c2:e5:ec:f1:52:94:51: 89:e8:b8:f2:66:c1:0f:61:ca:b0:9f:44:ef:66:bb:7a:f1:ea: c6:75:e2:c9:6f:40:d0:e0:71:99:48:37:2a:9f:48:45:75:a5: 9f:23:ad:6a:a8:b0:c7:e7:1a:b1:33:62:41:82:85:20:d1:53: f2:6e:bf:4c:d4:c4:90:f1:e6:7a:d2:52:cd:2a:16:5c:f6:82: 46:71:dd:85:dc:18:3b:c6:a6:d7:0d:23:04:0f:68:8b:d1:ca: 96:61:22:76:94:8c:90:43:a0:ec:9a:e3:e9:e3:bf:7e:1a:8f: cd:7d:40:33:94:41:d5:68:51:df:9a:c9:3c:c2:30:67:38:3d: 04:df:4d:5b:bd:e6:84:dd:bf:00:a9:e5:7b:4a:19:12:7a:c3: f5:19:30:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjYwMjAyMTc0MzIyWhcNMjYwMjA5MTc0MzIyWjAYMRYwFAYD VQQDDA02OTgwZTIzYS0wNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Qxf90f62D3STjKlc1yGOxORbiSRBl/ZtnPeJoxZVP1PAo/k5m7Wfa05b6Sl Ga7GG4+jlS4i9tog2xds/hGCr2u1x/PkXWOtRifB6pnsQjJ4jknT7KU7vX465Gdr +E+RPCqzGvpJ42LJQho3oDWnaljQq5IrM0LKHWG4u4KUP243CaxBKQ6BTk5gjkpC lH89J0bh+gVdT+SD4eLpEJrpn8+o4lZlLL2brbdiDttKRNn5+KJdbRMc1vkj6r9H jDiEJIcbAO4IHsjgdp63R1CkEaZyBCgyGUD6cKC7tfu96hubTc6e4RE0tF26JhNc bPDHZ8F9MBqYGwpRztm09OnB9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEhdnUZ 2hinRHiEgJ4AVGQlYSfVMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz4Wb/xj02Cse9WjqFBB1qZY1ATFRtNobv5RUSy11Y4vufZ4IeH1Jw UN7920gSkQntjGnkIefzEJ9ArC4aITswUE3kCve67izSKXJJ6632g2TiphgkJd32 r7h7acWzcEe03/ziCsLl7PFSlFGJ6LjyZsEPYcqwn0TvZrt68erGdeLJb0DQ4HGZ SDcqn0hFdaWfI61qqLDH5xqxM2JBgoUg0VPybr9M1MSQ8eZ60lLNKhZc9oJGcd2F 3Bg7xqbXDSMED2iL0cqWYSJ2lIyQQ6DsmuPp479+Go/NfUAzlEHVaFHfmsk8wjBn OD0E301bveaE3b8AqeV7ShkSesP1GTDL -----END CERTIFICATE-----Generated at Wed Feb 4 09:55:06 2026 by rpki-client