This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: bVaxuIC7ZiKe/dmuC1pUh70poUC1rI9EKQLnr94wiFg= Subject key identifier: DE:9C:B5:EE:BA:C4:C4:FE:2E:FF:9C:C4:8B:8E:37:AD:42:05:A0:BF Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05F2 Signing time: Thu 08 Jan 2026 22:18:39 +0000 Manifest this update: Thu 08 Jan 2026 22:18:39 +0000 Manifest next update: Thu 15 Jan 2026 22:18:39 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: N3BjaEyrdnm2sitwDW8DyKMCq+mdBXW9aRlb3LLn3y4=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 22:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jan 8 22:18:39 2026 GMT Not After : Jan 15 22:18:39 2026 GMT Subject: CN=69602d3f-2d18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:15:dc:f8:44:f5:4b:b9:4d:14:c7:83:88:aa: 99:f2:67:ac:dd:9c:93:96:f5:67:d4:9f:3a:a3:3d: 13:10:59:2e:af:45:05:c3:cb:fd:cf:bb:c0:50:18: bc:02:37:40:5f:b9:d9:86:da:5b:be:01:64:6a:ee: d1:c9:dd:1a:97:0e:4b:aa:c2:73:13:ec:7d:02:c1: 18:8d:b7:ad:7c:63:bc:ce:4e:22:ab:82:ee:fa:c0: e5:2f:18:a1:bb:8b:72:c0:90:74:87:30:ee:c5:8a: 1a:a5:a3:ba:d1:da:13:d7:de:99:40:ef:22:57:1e: d1:f4:4c:c8:d5:1d:86:2c:04:c6:04:33:fd:21:62: 11:2a:cc:e0:96:dc:01:4b:18:57:25:e1:3f:d0:11: df:d1:7d:8e:6e:42:fd:b9:9a:18:ea:89:34:ba:de: 3d:ca:a4:54:a1:76:72:a3:df:2a:dd:86:5e:cc:c9: 09:88:ca:45:ba:91:fc:c7:d9:40:34:e1:4e:71:88: f4:77:7b:e3:06:04:65:5d:ce:59:55:5e:73:56:53: 1f:3a:ff:6d:53:b5:77:ed:c4:8d:83:4a:f9:4f:87: b9:f6:b5:95:20:27:54:fc:91:2e:1a:df:7d:65:71: 98:24:0f:a8:3b:82:41:54:10:68:5b:7b:c8:7d:db: bd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:9C:B5:EE:BA:C4:C4:FE:2E:FF:9C:C4:8B:8E:37:AD:42:05:A0:BF X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:d2:45:0f:fd:a3:da:af:2b:7e:79:6e:2d:7b:c2:11:a8:0b: 7e:ca:b6:8f:f4:55:c4:02:73:9b:65:2c:33:cb:f1:ae:be:da: c3:12:bc:0e:43:7a:7f:32:d2:32:60:be:32:0a:08:93:82:94: 65:3b:69:82:93:99:5a:fb:fe:3d:f5:57:61:be:84:ab:90:1a: 44:d0:ea:c3:6e:8a:6b:d9:8a:8d:62:1f:ca:a0:57:b9:8d:11: eb:fb:33:54:d3:34:b7:01:a9:12:03:a0:6d:9e:01:20:8c:4e: ec:81:41:fb:55:61:d0:02:61:40:ce:34:95:5e:34:fb:44:ac: ee:f3:eb:13:35:8d:dc:3e:94:40:6b:b8:03:e9:17:43:51:7f: 50:4a:33:a7:ec:2f:54:67:da:f6:4b:4f:95:ad:86:48:e8:87: bd:eb:8c:0c:b2:c9:b9:0b:07:d3:d5:7d:5a:4a:dd:80:92:61: 19:7f:26:ed:99:9e:ab:ab:64:45:90:e4:4b:33:a6:f8:91:ae: 70:43:7b:6d:76:6d:c7:4b:e8:1b:8a:11:e8:80:ab:27:20:a4: 36:b7:65:da:f0:d3:35:2c:c4:f3:b0:a0:9d:8e:13:87:c1:cf: dd:61:66:00:4f:47:11:51:7f:0a:50:23:cb:e3:20:d0:24:98: 0d:1a:e5:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwMTA4MjIxODM5WhcNMjYwMTE1MjIxODM5WjAYMRYwFAYD VQQDDA02OTYwMmQzZi0yZDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxXc+ET1S7lNFMeDiKqZ8mes3ZyTlvVn1J86oz0TEFkur0UFw8v9z7vAUBi8 AjdAX7nZhtpbvgFkau7Ryd0alw5LqsJzE+x9AsEYjbetfGO8zk4iq4Lu+sDlLxih u4tywJB0hzDuxYoapaO60doT196ZQO8iVx7R9EzI1R2GLATGBDP9IWIRKszgltwB SxhXJeE/0BHf0X2ObkL9uZoY6ok0ut49yqRUoXZyo98q3YZezMkJiMpFupH8x9lA NOFOcYj0d3vjBgRlXc5ZVV5zVlMfOv9tU7V37cSNg0r5T4e59rWVICdU/JEuGt99 ZXGYJA+oO4JBVBBoW3vIfdu9BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6cte66 xMT+Lv+cxIuON61CBaC/MB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR0kUP/aParyt+eW4te8IRqAt+yraP9FXEAnObZSwzy/GuvtrDErwO Q3p/MtIyYL4yCgiTgpRlO2mCk5la+/499VdhvoSrkBpE0OrDbopr2YqNYh/KoFe5 jRHr+zNU0zS3AakSA6BtngEgjE7sgUH7VWHQAmFAzjSVXjT7RKzu8+sTNY3cPpRA a7gD6RdDUX9QSjOn7C9UZ9r2S0+VrYZI6Ie964wMssm5CwfT1X1aSt2AkmEZfybt mZ6rq2RFkORLM6b4ka5wQ3ttdm3HS+gbihHogKsnIKQ2t2Xa8NM1LMTzsKCdjhOH wc/dYWYAT0cRUX8KUCPL4yDQJJgNGuXt -----END CERTIFICATE-----Generated at Sat Jan 10 10:56:14 2026 by rpki-client