This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft File: Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft (raw, json) Hash identifier: lb+GLpB1N5PukYMb50XjiHlUeB69i4QeqRFVrfUkCe8= Subject key identifier: E5:31:C2:DC:52:13:69:20:BB:14:8A:75:00:0E:7D:DA:7D:D2:02:DF Authority key identifier: 42:6F:4A:D5:85:D7:A5:4D:D3:62:E3:F7:B3:C8:F3:AF:6A:A6:3C:2E Certificate issuer: /CN=A91F9BB3/serialNumber=426F4AD585D7A54DD362E3F7B3C8F3AF6AA63C2E Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft Manifest number: 08 Signing time: Mon 05 Jan 2026 06:57:21 +0000 Manifest this update: Mon 05 Jan 2026 06:57:20 +0000 Manifest next update: Mon 12 Jan 2026 06:57:20 +0000 Files and hashes: 1: Qm9K1YXXpU3TYuP3s8jzr2qmPC4.crl (hash: AZcDdK1llPCvUGAntidD32Y5AB3NidDdv5CHbWGPMtM=) 2: DB9D3A1AE24411F0BBC3E4F5716F56BC.roa (hash: K7ygeFaOktfvGPimdsYX4harp9rcvQigOPGo1t1xgTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.crl rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 Jan 2026 06:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9BB3, serialNumber=426F4AD585D7A54DD362E3F7B3C8F3AF6AA63C2E Validity Not Before: Jan 5 06:57:20 2026 GMT Not After : Jan 12 06:57:20 2026 GMT Subject: CN=695b60d1-8f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:91:6f:94:f4:3f:ca:aa:10:40:7d:87:ea:35: d6:f9:39:2e:03:cf:88:a6:64:63:73:f5:ec:00:c0: ef:f6:30:4a:fc:f3:f2:e6:c3:f0:33:f8:80:13:ae: 8e:d1:22:2c:73:49:68:1d:54:e8:23:6c:b8:6e:61: ae:b4:5c:04:34:19:b9:17:2d:86:dc:6f:f3:ef:3f: 4b:83:a9:d6:25:06:70:2e:95:de:28:10:95:0a:e7: 19:d0:5a:79:50:e9:53:99:c7:c5:48:ea:d3:60:28: 1c:76:bc:bc:1c:4a:14:c0:46:a9:a8:93:cc:b0:23: d8:f1:58:35:4b:2c:fd:d7:d5:cd:a8:7a:da:5d:8f: 66:a9:fe:ad:a1:85:68:38:f5:c7:0d:b2:b0:7d:b8: 12:c6:26:f0:58:9a:b9:95:68:12:28:67:9c:77:41: 4c:ae:4d:55:49:5e:53:29:2e:f9:50:d3:32:6d:4c: f8:b6:a8:1b:34:8d:81:eb:71:96:03:ad:30:34:4f: a3:26:d9:bb:3e:ab:6b:09:12:63:c0:5e:38:d3:ae: 83:ad:be:c6:29:50:96:8f:ff:e5:de:04:9f:ad:a0: 50:06:fe:56:0b:a0:f2:22:6e:8c:36:9e:93:87:b9: b5:e6:c1:97:ca:4e:35:b3:b6:5f:7d:48:3e:39:bd: af:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:31:C2:DC:52:13:69:20:BB:14:8A:75:00:0E:7D:DA:7D:D2:02:DF X509v3 Authority Key Identifier: keyid:42:6F:4A:D5:85:D7:A5:4D:D3:62:E3:F7:B3:C8:F3:AF:6A:A6:3C:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:7f:80:68:50:1c:e4:c2:7f:92:a0:c6:93:11:8a:c4:61:0f: dc:02:5d:3c:c5:19:02:d4:48:d7:24:31:46:f4:de:4d:cb:76: 54:78:e4:ef:93:93:a0:90:59:9f:e6:ee:ec:98:9d:f5:0d:59: 54:b3:56:db:44:7e:a9:f4:d2:9f:42:f6:db:ba:68:03:54:62: 7a:4d:5d:14:20:3e:b1:2e:be:e3:04:31:33:c4:3d:90:ae:06: fc:6e:7d:34:dd:1b:4c:e4:1d:58:67:d1:0c:f0:f1:7c:7e:99: 9e:4b:63:56:ac:95:f4:02:cf:9b:5a:e3:36:97:f2:38:d8:0a: bc:82:3b:1a:64:b4:06:be:a6:b0:e3:35:69:ca:aa:be:4b:cd: 0e:47:c0:7b:56:95:c2:2a:5a:6c:50:c3:3a:3c:41:4b:26:46: bd:e0:fb:1f:e6:25:f4:6f:c3:8e:d8:bc:40:b7:07:89:1d:b9: 47:22:dd:19:e8:22:e7:25:d0:c1:43:d3:28:2f:98:ba:17:bd: c5:f6:55:58:c9:49:ce:46:8d:36:ad:b3:f3:6a:8b:9f:e9:57: 2c:b6:d8:b2:dd:5b:fa:14:4b:b4:61:72:03:31:6e:2a:f2:f1: 58:b7:dd:86:4b:30:74:89:c2:6d:e9:7d:6b:21:b0:92:17:e5: 73:5d:42:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFG OUJCMzExMC8GA1UEBRMoNDI2RjRBRDU4NUQ3QTU0REQzNjJFM0Y3QjNDOEYzQUY2 QUE2M0MyRTAeFw0yNjAxMDUwNjU3MjBaFw0yNjAxMTIwNjU3MjBaMBgxFjAUBgNV BAMMDTY5NWI2MGQxLThmOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCskW+U9D/KqhBAfYfqNdb5OS4Dz4imZGNz9ewAwO/2MEr88/Lmw/Az+IATro7R IixzSWgdVOgjbLhuYa60XAQ0GbkXLYbcb/PvP0uDqdYlBnAuld4oEJUK5xnQWnlQ 6VOZx8VI6tNgKBx2vLwcShTARqmok8ywI9jxWDVLLP3X1c2oetpdj2ap/q2hhWg4 9ccNsrB9uBLGJvBYmrmVaBIoZ5x3QUyuTVVJXlMpLvlQ0zJtTPi2qBs0jYHrcZYD rTA0T6Mm2bs+q2sJEmPAXjjTroOtvsYpUJaP/+XeBJ+toFAG/lYLoPIibow2npOH ubXmwZfKTjWztl99SD45va/bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5THC3FIT aSC7FIp1AA592n3SAt8wHwYDVR0jBBgwFoAUQm9K1YXXpU3TYuP3s8jzr2qmPC4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QkIzLzgxOThFMDE0RTI0 NDExRjBCOTUzRDg5NjcxNkY1NkJDL1FtOUsxWVhYcFUzVFl1UDNzOGp6cjJxbVBD NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUW05SzFZWFhwVTNUWXVQM3M4anpyMnFtUEM0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5 QkIzLzgxOThFMDE0RTI0NDExRjBCOTUzRDg5NjcxNkY1NkJDL1FtOUsxWVhYcFUz VFl1UDNzOGp6cjJxbVBDNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD1/gGhQHOTCf5KgxpMRisRhD9wCXTzFGQLUSNckMUb03k3LdlR45O+T k6CQWZ/m7uyYnfUNWVSzVttEfqn00p9C9tu6aANUYnpNXRQgPrEuvuMEMTPEPZCu BvxufTTdG0zkHVhn0Qzw8Xx+mZ5LY1aslfQCz5ta4zaX8jjYCryCOxpktAa+prDj NWnKqr5LzQ5HwHtWlcIqWmxQwzo8QUsmRr3g+x/mJfRvw47YvEC3B4kduUci3Rno Iucl0MFD0ygvmLoXvcX2VVjJSc5GjTats/Nqi5/pVyy22LLdW/oUS7RhcgMxbiry 8Vi33YZLMHSJwm3pfWshsJIX5XNdQgM= -----END CERTIFICATE-----Generated at Wed Jan 7 06:36:36 2026 by rpki-client