This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: rAnsPh+vBTdTdwFNKJYgrvRb6cmZGMqmOG7WOYXuqbU= Subject key identifier: CA:B8:15:2F:2E:07:E3:95:AB:D6:39:BC:FB:D4:BE:A1:B6:1C:62:A1 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 033E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 0325 Signing time: Wed 21 Jan 2026 00:16:29 +0000 Manifest this update: Wed 21 Jan 2026 00:16:29 +0000 Manifest next update: Wed 28 Jan 2026 00:16:29 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: /eoYDduS7prVOmpxI+CoWZOWO1+RjOXRuq73nOaA4Fo=) 2: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: z4aaUTQPt4LTmxBrxqPbGwAQr9ekPHI1lkNmNVVH7mw=) 3: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: BW5tT5Fwnb90kCw3kdyCo6pAhP8PZLajj0fwMdIDbDA=) 4: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: zUxzk8PVVaES9EMN0VkIqcIxDvXdbV+4WJwr6H3F2mM=) 5: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: 2FTQfXCf5iEijrWaIGoqW7OkD23cYHWReHvkr3RdiVo=) 6: 652A87CC65EC11F0BAEF8066C4F9AE02.roa (hash: 9Lyfdf8jewXKDNNSejND0Fdao81XqhdSmTyOn0pVCEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 00:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 830 (0x33e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Jan 21 00:16:29 2026 GMT Not After : Jan 28 00:16:29 2026 GMT Subject: CN=69701add-db1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:64:ab:8f:c5:fe:ba:55:bf:3e:f1:3a:df:e9: 66:4c:50:dc:06:52:14:71:58:d8:13:5f:47:88:4b: 1d:5f:3a:8e:42:07:ee:1b:d2:73:a5:56:37:0d:a6: 32:27:46:83:ee:15:81:11:82:9a:66:c9:b3:8f:77: 2f:9f:11:dc:5b:30:f7:13:5c:61:78:fa:54:24:a3: 83:4c:29:cc:86:fd:5b:20:59:58:e3:59:52:00:33: 6e:05:6e:9b:82:90:d8:f0:0a:0f:06:98:be:60:79: d3:e5:5b:02:76:cb:d2:0b:16:d0:15:bf:bb:a6:fc: c8:24:6c:8b:7a:f2:7b:f0:eb:6d:66:8e:86:25:94: 20:21:43:11:86:c3:61:ee:ae:aa:95:ad:1a:3f:4f: c5:ab:86:ab:9d:3e:31:d4:4f:f9:78:1d:df:30:be: 89:ed:a8:fc:a0:ad:32:3e:56:39:e7:dc:c0:03:28: 33:21:d7:c8:e0:d2:e3:73:1c:98:c6:18:47:78:7c: da:89:81:68:db:ff:9a:c5:99:6b:29:6e:ba:60:33: a5:c9:02:be:c4:fe:71:62:ab:ae:f3:d2:1e:f2:f8: d2:a0:90:a0:6a:a6:ae:27:66:ea:bc:0c:68:21:a0: b5:bf:9c:11:e9:35:9c:1c:ad:7e:07:9c:85:46:05: a2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B8:15:2F:2E:07:E3:95:AB:D6:39:BC:FB:D4:BE:A1:B6:1C:62:A1 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:88:74:a9:c8:4f:69:f4:35:38:ee:ff:a2:dc:fa:81:97:a6: 0a:16:47:64:c4:44:21:75:1a:e4:aa:3b:d9:a4:b6:f7:4e:34: a4:2d:46:58:88:67:bc:16:7c:8a:af:0a:38:dc:1f:19:bc:6f: 30:78:09:e2:99:ae:a4:2b:f1:41:2e:c8:6a:d6:d2:62:2f:45: 61:e0:50:4a:ee:55:be:4e:cd:30:8c:aa:8e:0f:c5:17:2b:3f: 06:b7:93:b9:1d:3a:9d:67:c1:59:a5:b5:54:af:ff:35:ee:d9: 6e:e0:67:02:58:66:fe:57:f1:8e:01:9f:a4:b9:78:c3:c3:e0: 97:45:0a:35:65:37:5f:88:f0:92:f5:01:53:45:50:d0:ef:0a: ed:fc:8c:49:56:ae:91:ca:fc:d1:62:c2:a0:e5:f4:ab:fa:98: 0d:49:dc:09:d2:31:b8:d0:fd:94:5f:08:83:bd:58:4f:fa:1a: a9:e9:3e:ae:c9:13:d3:ea:89:9d:66:18:48:08:13:92:dd:a5: b1:ac:0b:86:c0:48:c0:c2:61:b7:b2:5a:3b:b8:f1:2c:44:49: 6c:4c:99:61:23:55:27:27:c9:d7:2e:22:87:61:27:af:ad:4c: 0b:f3:24:02:d5:e6:4e:f8:c8:f7:cf:70:67:08:e6:04:1c:13: 4d:43:0f:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjYwMTIxMDAxNjI5WhcNMjYwMTI4MDAxNjI5WjAYMRYwFAYD VQQDDA02OTcwMWFkZC1kYjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2Srj8X+ulW/PvE63+lmTFDcBlIUcVjYE19HiEsdXzqOQgfuG9JzpVY3DaYy J0aD7hWBEYKaZsmzj3cvnxHcWzD3E1xhePpUJKODTCnMhv1bIFlY41lSADNuBW6b gpDY8AoPBpi+YHnT5VsCdsvSCxbQFb+7pvzIJGyLevJ78OttZo6GJZQgIUMRhsNh 7q6qla0aP0/Fq4arnT4x1E/5eB3fML6J7aj8oK0yPlY559zAAygzIdfI4NLjcxyY xhhHeHzaiYFo2/+axZlrKW66YDOlyQK+xP5xYquu89Ie8vjSoJCgaqauJ2bqvAxo IaC1v5wR6TWcHK1+B5yFRgWiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq4FS8u B+OVq9Y5vPvUvqG2HGKhMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSiHSpyE9p9DU47v+i3PqBl6YKFkdkxEQhdRrkqjvZpLb3TjSkLUZY iGe8FnyKrwo43B8ZvG8weAnima6kK/FBLshq1tJiL0Vh4FBK7lW+Ts0wjKqOD8UX Kz8Gt5O5HTqdZ8FZpbVUr/817tlu4GcCWGb+V/GOAZ+kuXjDw+CXRQo1ZTdfiPCS 9QFTRVDQ7wrt/IxJVq6RyvzRYsKg5fSr+pgNSdwJ0jG40P2UXwiDvVhP+hqp6T6u yRPT6omdZhhICBOS3aWxrAuGwEjAwmG3slo7uPEsRElsTJlhI1UnJ8nXLiKHYSev rUwL8yQC1eZO+Mj3z3BnCOYEHBNNQw+c -----END CERTIFICATE-----Generated at Thu Jan 22 19:15:19 2026 by rpki-client