This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft File: iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft (raw, json) Hash identifier: lxEjmfxAIfc6O+9VfTnRf+vAjbmBeJV70/TPI/b3fEM= Subject key identifier: 04:0C:E4:31:A5:3D:D8:48:CC:92:CF:AC:03:04:CC:D7:A7:A8:83:63 Authority key identifier: 89:02:68:FD:25:C7:79:E3:6F:BB:87:2F:60:13:F3:04:15:FF:A2:DD Certificate issuer: /CN=A91D2B9A/serialNumber=890268FD25C779E36FBB872F6013F30415FFA2DD Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft Manifest number: 06 Signing time: Wed 21 Jan 2026 07:11:09 +0000 Manifest this update: Wed 21 Jan 2026 07:11:09 +0000 Manifest next update: Wed 28 Jan 2026 07:11:09 +0000 Files and hashes: 1: iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl (hash: OdkWvk0iFMyQ6mUpnP9Ka1EXtCWKSIpWWe9t0VuUelI=) 2: 75431F44F12311F09E054F8D4F6F56BC.roa (hash: iBIYNyeUkoupOA2AKZcEx68TEpke4G90iHPCdBZl/tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 07:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B9A, serialNumber=890268FD25C779E36FBB872F6013F30415FFA2DD Validity Not Before: Jan 21 07:11:09 2026 GMT Not After : Jan 28 07:11:09 2026 GMT Subject: CN=69707c0d-917e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e8:23:0f:2b:22:67:1c:52:4f:48:b3:31:22: 1a:5b:a9:6c:3b:d9:5e:e7:50:10:2d:34:b6:5e:de: 96:b8:a0:1d:8e:3b:1d:1c:06:c2:22:d2:69:87:b5: 6d:b2:0e:7c:9c:f3:a5:73:c4:31:cd:4e:14:7a:a4: 37:37:92:16:4a:29:c8:aa:7e:40:a8:8f:8d:b8:3e: 78:e8:16:fc:df:e9:69:34:db:ec:03:89:7c:ad:b3: db:00:cb:ec:45:1d:ad:82:81:2f:02:00:be:a2:5d: 08:1c:9d:ff:d8:d7:87:3c:35:75:94:c4:ff:9c:12: 1d:37:86:47:cc:44:7c:3c:21:ac:9c:4b:84:81:43: 7c:a1:e7:75:db:f1:4e:59:a9:0a:48:bb:1a:d1:ed: b2:19:e9:2e:9b:99:3c:4a:66:6e:17:47:97:78:46: d0:39:5b:e1:ea:ff:49:23:e4:f3:0f:8c:dc:44:f6: 83:6e:a3:f3:cd:a6:5b:d9:f5:61:f9:94:20:2c:a4: 86:f3:59:9f:db:db:64:76:a9:0e:d6:52:0f:3f:61: e2:d9:35:84:28:25:e7:ef:4a:d9:13:17:9b:40:92: 35:4d:fe:a3:53:12:0b:9a:44:b0:e9:05:03:a3:81: 24:df:3e:54:cb:3e:4f:d0:35:a2:8e:20:10:67:b0: f3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:0C:E4:31:A5:3D:D8:48:CC:92:CF:AC:03:04:CC:D7:A7:A8:83:63 X509v3 Authority Key Identifier: keyid:89:02:68:FD:25:C7:79:E3:6F:BB:87:2F:60:13:F3:04:15:FF:A2:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:37:f2:a8:f9:5c:1f:e4:ad:43:f4:ed:9b:ae:52:b5:20:50: 4c:c8:61:56:34:72:d2:27:af:8c:a3:2c:e0:2d:bf:0f:58:c6: 81:74:29:04:e8:b1:f7:3c:35:da:5f:ce:3d:19:31:80:bd:d1: 6f:14:34:40:da:a0:13:37:58:0b:2c:46:ec:c2:33:8a:5c:2f: ae:07:0c:fa:94:c5:b2:f3:30:65:55:6f:de:5e:02:6a:2a:9e: fb:5f:9a:3f:b2:0c:6e:fb:57:98:4d:49:96:6a:d0:a5:86:0c: 2f:47:98:6a:ba:51:1f:79:e8:5b:56:cc:a7:2d:f4:a7:3b:a1: b2:9c:fc:3a:f4:27:3e:c6:ac:02:22:91:02:6d:16:64:5b:1d: 82:63:ff:c9:da:cb:b3:86:24:62:13:af:88:48:e8:25:f7:c2: 36:d2:13:57:2d:49:c8:6d:e2:59:56:1f:b1:3a:51:82:d6:a9: fa:b6:26:76:25:2c:4c:4d:19:c0:25:9e:00:c7:88:e8:16:be: d6:61:8b:79:6c:a4:aa:18:6c:0b:9b:da:71:4f:bd:24:64:6b: 0d:3f:77:86:a1:1c:fd:40:c5:72:08:ea:12:d5:8a:a9:71:01: 5c:bc:31:b9:5a:96:eb:3d:6b:0a:4d:cd:35:0c:f2:05:03:e2: d7:1b:22:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFE MkI5QTExMC8GA1UEBRMoODkwMjY4RkQyNUM3NzlFMzZGQkI4NzJGNjAxM0YzMDQx NUZGQTJERDAeFw0yNjAxMjEwNzExMDlaFw0yNjAxMjgwNzExMDlaMBgxFjAUBgNV BAMMDTY5NzA3YzBkLTkxN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC26CMPKyJnHFJPSLMxIhpbqWw72V7nUBAtNLZe3pa4oB2OOx0cBsIi0mmHtW2y Dnyc86VzxDHNThR6pDc3khZKKciqfkCoj424PnjoFvzf6Wk02+wDiXyts9sAy+xF Ha2CgS8CAL6iXQgcnf/Y14c8NXWUxP+cEh03hkfMRHw8IaycS4SBQ3yh53Xb8U5Z qQpIuxrR7bIZ6S6bmTxKZm4XR5d4RtA5W+Hq/0kj5PMPjNxE9oNuo/PNplvZ9WH5 lCAspIbzWZ/b22R2qQ7WUg8/YeLZNYQoJefvStkTF5tAkjVN/qNTEguaRLDpBQOj gSTfPlTLPk/QNaKOIBBnsPNBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBAzkMaU9 2EjMks+sAwTM16eog2MwHwYDVR0jBBgwFoAUiQJo/SXHeeNvu4cvYBPzBBX/ot0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjlBLzVFQTM0NjJBRjEy MjExRjBBQzVDREE3RTRFNkY1NkJDL2lRSm9fU1hIZWVOdnU0Y3ZZQlB6QkJYX290 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVFKb19TWEhlZU52dTRjdllCUHpCQlhfb3QwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QjlBLzVFQTM0NjJBRjEyMjExRjBBQzVDREE3RTRFNkY1NkJDL2lRSm9fU1hIZWVO dnU0Y3ZZQlB6QkJYX290MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI438qj5XB/krUP07ZuuUrUgUEzIYVY0ctInr4yjLOAtvw9YxoF0KQTo sfc8Ndpfzj0ZMYC90W8UNEDaoBM3WAssRuzCM4pcL64HDPqUxbLzMGVVb95eAmoq nvtfmj+yDG77V5hNSZZq0KWGDC9HmGq6UR956FtWzKct9Kc7obKc/Dr0Jz7GrAIi kQJtFmRbHYJj/8nay7OGJGITr4hI6CX3wjbSE1ctScht4llWH7E6UYLWqfq2JnYl LExNGcAlngDHiOgWvtZhi3lspKoYbAub2nFPvSRkaw0/d4ahHP1AxXII6hLViqlx AVy8Mblalus9awpNzTUM8gUD4tcbIuA= -----END CERTIFICATE-----Generated at Wed Jan 21 13:34:50 2026 by rpki-client