This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: 4H8ZpBPW5/svWrmrH8buPDXYQC2omlRYm6hbgnbFep4= Subject key identifier: B1:82:C8:1E:5A:85:C2:C0:AC:B6:0F:4E:F7:FA:7D:AE:75:18:58:FB Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: 0132 Signing time: Sat 17 Jan 2026 03:39:57 +0000 Manifest this update: Sat 17 Jan 2026 03:39:57 +0000 Manifest next update: Sat 24 Jan 2026 03:39:57 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: s5ZDDbA9DDh2joVJI1Fqy8Sxc8Ruoa1iRpx+f/SKuPI=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 03:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Jan 17 03:39:57 2026 GMT Not After : Jan 24 03:39:57 2026 GMT Subject: CN=696b048d-45fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c7:a2:11:21:39:e8:29:65:3c:0d:72:45:92: 05:07:ad:2c:17:44:43:5f:64:3b:1d:d1:ce:d2:e1: 44:58:b0:ea:ce:61:b8:7e:07:14:30:5a:65:4f:e5: 31:e7:95:ac:b8:94:9b:4f:be:0f:cb:ff:87:aa:85: c5:ce:38:58:c0:4b:aa:5d:65:43:3a:19:0b:1b:af: 55:9a:b8:a9:f4:8b:e6:db:f5:12:6c:79:07:38:b4: 72:81:b3:9a:0e:88:36:dd:73:8a:4d:03:5d:01:f5: da:91:b1:14:fd:da:60:08:fb:9d:39:0a:93:64:b2: f5:54:d3:51:33:06:1b:ac:f0:5d:41:73:c8:e2:c3: de:d3:48:d0:9e:92:b0:c8:f3:2d:8c:3f:b8:bf:41: eb:a7:22:13:ea:8c:86:ba:65:1f:03:0f:a8:fa:16: df:b1:e8:91:5c:ab:e4:2d:7c:23:3c:9e:8f:01:87: bf:a2:c6:f8:a8:e1:b9:6e:02:be:a2:6d:11:25:a2: f8:6e:62:f8:8f:57:84:50:ab:d0:77:0c:2c:71:aa: 5c:af:9f:03:63:fb:e5:c9:fa:9f:3e:81:05:13:4f: 3d:e7:98:a2:95:1b:f2:f9:39:03:bf:58:38:23:3d: 5e:35:76:ff:18:af:ee:02:93:c5:e1:6d:e3:17:4f: 83:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:82:C8:1E:5A:85:C2:C0:AC:B6:0F:4E:F7:FA:7D:AE:75:18:58:FB X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:58:e9:f6:60:8d:cd:5b:61:89:9e:8a:22:7c:7f:24:48:bd: 4b:31:86:3f:bd:a1:9b:42:19:3b:84:a1:6e:82:c9:0e:93:ce: 4d:d7:cd:f2:e0:2f:44:03:d0:aa:69:90:ac:4e:60:f7:46:0b: a3:32:68:77:3d:82:2f:ef:93:ff:92:a2:7e:2a:5e:94:31:7f: e9:20:b7:fe:18:ba:b4:cc:82:dd:6a:c9:24:b8:01:01:8f:24: 6d:7e:51:94:dd:70:a1:4b:fe:02:92:58:e2:fb:a8:66:38:81: d4:d6:31:96:06:bf:ca:22:25:0a:11:50:99:50:6a:35:42:6b: 36:06:de:e4:f4:d7:6e:5c:e8:fa:d8:94:86:9e:dc:a9:e5:71: ec:f4:dc:a3:3a:54:67:03:21:aa:1d:da:d7:ee:91:10:71:88: 87:19:8c:02:c1:72:8b:77:d1:6c:da:30:17:7d:c3:a2:a8:16: 8a:66:5d:18:e3:a9:59:21:e2:0f:91:df:03:30:87:41:e3:af: fe:c8:fc:39:34:f3:aa:ac:af:14:f0:93:0c:95:3f:6b:32:ab: 08:c6:29:98:6b:e3:d2:40:44:db:6f:df:8a:ae:03:de:12:bb: 9a:77:27:78:ee:4e:8a:42:23:76:21:92:98:49:53:47:e8:f3: 6d:ed:d2:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjYwMTE3MDMzOTU3WhcNMjYwMTI0MDMzOTU3WjAYMRYwFAYD VQQDDA02OTZiMDQ4ZC00NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ceiESE56CllPA1yRZIFB60sF0RDX2Q7HdHO0uFEWLDqzmG4fgcUMFplT+Ux 55WsuJSbT74Py/+HqoXFzjhYwEuqXWVDOhkLG69Vmrip9Ivm2/USbHkHOLRygbOa Dog23XOKTQNdAfXakbEU/dpgCPudOQqTZLL1VNNRMwYbrPBdQXPI4sPe00jQnpKw yPMtjD+4v0HrpyIT6oyGumUfAw+o+hbfseiRXKvkLXwjPJ6PAYe/osb4qOG5bgK+ om0RJaL4bmL4j1eEUKvQdwwscapcr58DY/vlyfqfPoEFE08955iilRvy+TkDv1g4 Iz1eNXb/GK/uApPF4W3jF0+DRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGCyB5a hcLArLYPTvf6fa51GFj7MB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcWOn2YI3NW2GJnooifH8kSL1LMYY/vaGbQhk7hKFugskOk85N183y 4C9EA9CqaZCsTmD3RgujMmh3PYIv75P/kqJ+Kl6UMX/pILf+GLq0zILdaskkuAEB jyRtflGU3XChS/4Cklji+6hmOIHU1jGWBr/KIiUKEVCZUGo1Qms2Bt7k9NduXOj6 2JSGntyp5XHs9NyjOlRnAyGqHdrX7pEQcYiHGYwCwXKLd9Fs2jAXfcOiqBaKZl0Y 46lZIeIPkd8DMIdB46/+yPw5NPOqrK8U8JMMlT9rMqsIximYa+PSQETbb9+KrgPe Eruadyd47k6KQiN2IZKYSVNH6PNt7dIU -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:21 2026 by rpki-client