This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: R+WM5kLF3yAyBTJmDwFa4x4JdL86SmkIEKCzmRtklz0= Subject key identifier: 3B:9C:26:B4:88:74:AC:AA:D5:2D:E0:66:D4:F4:AF:CD:F7:A8:57:CE Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 95 Signing time: Thu 01 Jan 2026 06:01:14 +0000 Manifest this update: Thu 01 Jan 2026 06:01:13 +0000 Manifest next update: Thu 08 Jan 2026 06:01:13 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: Doi8nDkDNcS1uhMpZAAgGj8XbtBshlHhSea/orjSgHU=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 06:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Jan 1 06:01:13 2026 GMT Not After : Jan 8 06:01:13 2026 GMT Subject: CN=69560daa-ab17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:33:5d:b4:a7:f9:59:53:3d:64:0f:d5:1e:64: 35:42:42:c3:88:60:ed:4f:76:34:47:b5:d7:a8:5a: a5:ea:be:9f:10:9a:0d:bc:e3:f5:7e:0a:88:13:b7: 4b:eb:1b:20:82:20:33:fd:07:2d:ee:0a:a9:6b:84: 32:af:c4:e9:76:04:20:c6:06:05:d0:cc:5e:65:87: 28:f1:ef:9d:32:58:6f:fa:f6:2f:b5:9b:70:16:c0: 75:d6:e9:e8:da:b8:7c:54:da:04:23:75:1d:ad:43: 73:26:bb:4e:c3:c6:50:3a:80:a2:3d:16:ee:a6:52: 10:f9:58:48:2b:43:ed:12:cc:10:13:23:25:a7:57: af:d7:1d:92:56:35:b4:63:e0:59:1c:d4:ce:02:ca: 57:ed:18:49:80:98:f0:de:fe:0f:cb:ba:07:cf:27: a7:a8:92:e0:93:10:5c:b2:f1:57:7b:54:67:50:dc: 0b:d4:67:19:c7:04:9c:c9:80:b4:96:a1:1c:0c:dd: 4c:14:2d:9e:40:52:4b:83:a0:07:f1:3d:9e:5c:da: 47:75:e6:cb:c7:3a:81:94:76:67:fc:76:83:f8:8c: ee:fd:47:e2:ca:cd:c2:a6:40:5a:d6:81:71:12:67: d0:53:e4:5d:31:ac:6b:4f:57:a9:ff:8b:61:f2:4e: a6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9C:26:B4:88:74:AC:AA:D5:2D:E0:66:D4:F4:AF:CD:F7:A8:57:CE X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:5f:ae:f1:5f:49:08:28:1b:ac:8a:98:cd:55:f9:39:12:59: f3:1d:fe:dc:05:e8:7b:4c:f3:29:87:25:d9:46:3b:8b:fd:11: 81:ca:8b:5e:e3:b0:73:e2:02:b3:48:d3:23:f7:77:54:7d:09: c6:e0:6c:19:68:8c:ad:3d:a8:7f:15:b3:91:5d:1f:10:e0:44: dd:cc:96:a0:2c:b4:bb:9b:49:80:76:d7:57:95:9b:63:c8:4f: be:b3:98:5b:5b:2f:98:57:3a:21:9d:bf:f0:20:e8:b1:90:cc: 11:10:ec:55:53:29:55:db:b4:8c:bf:83:d4:5d:20:64:9d:7d: ca:0c:83:96:09:6f:e3:66:50:ca:76:01:63:cf:02:4e:74:a3: dc:36:3a:e1:b5:dd:b8:3c:f4:57:2d:b7:68:1e:4b:47:21:ee: 55:d0:af:f5:10:a0:0f:18:f3:0f:c8:3b:0e:7a:42:d0:09:88: b6:6a:c2:a9:67:b8:d1:e6:ea:15:95:cb:9c:29:ec:95:aa:0b: c2:c8:b6:9e:94:56:99:d7:43:f4:c3:20:05:a3:d1:d9:bf:4f: f6:da:df:10:82:f9:a4:da:01:6f:4a:bb:45:94:3e:6d:f5:90: 5c:18:b3:cd:47:05:b1:79:fe:d2:9e:90:7e:75:0a:8d:3c:60: ea:95:04:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2RDgxMTAvBgNVBAUTKEQ1MTA4OTM4RDIwQkExRDdGQkM5MkEzQkE5OUYyRDY5 RkM4RjRBODgwHhcNMjYwMTAxMDYwMTEzWhcNMjYwMTA4MDYwMTEzWjAYMRYwFAYD VQQDDA02OTU2MGRhYS1hYjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzNdtKf5WVM9ZA/VHmQ1QkLDiGDtT3Y0R7XXqFql6r6fEJoNvOP1fgqIE7dL 6xsggiAz/Qct7gqpa4Qyr8TpdgQgxgYF0MxeZYco8e+dMlhv+vYvtZtwFsB11uno 2rh8VNoEI3UdrUNzJrtOw8ZQOoCiPRbuplIQ+VhIK0PtEswQEyMlp1ev1x2SVjW0 Y+BZHNTOAspX7RhJgJjw3v4Py7oHzyenqJLgkxBcsvFXe1RnUNwL1GcZxwScyYC0 lqEcDN1MFC2eQFJLg6AH8T2eXNpHdebLxzqBlHZn/HaD+Izu/Ufiys3CpkBa1oFx EmfQU+RdMaxrT1ep/4th8k6mpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDucJrSI dKyq1S3gZtT0r833qFfOMB8GA1UdIwQYMBaAFNUQiTjSC6HX+8kqO6mfLWn8j0qI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZEOC8zMkRBQjI5MjA3 QUYxMUYwOTYwNkU1MzRDNEY5QUUwMi8xUkNKT05JTG9kZjd5U283cVo4dGFmeVBT b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEOC8zMkRBQjI5MjA3QUYxMUYwOTYwNkU1MzRDNEY5QUUwMi8xUkNKT05JTG9k Zjd5U283cVo4dGFmeVBTb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhX67xX0kIKBusipjNVfk5ElnzHf7cBeh7TPMphyXZRjuL/RGByote 47Bz4gKzSNMj93dUfQnG4GwZaIytPah/FbORXR8Q4ETdzJagLLS7m0mAdtdXlZtj yE++s5hbWy+YVzohnb/wIOixkMwREOxVUylV27SMv4PUXSBknX3KDIOWCW/jZlDK dgFjzwJOdKPcNjrhtd24PPRXLbdoHktHIe5V0K/1EKAPGPMPyDsOekLQCYi2asKp Z7jR5uoVlcucKeyVqgvCyLaelFaZ10P0wyAFo9HZv0/22t8Qgvmk2gFvSrtFlD5t 9ZBcGLPNRwWxef7SnpB+dQqNPGDqlQSj -----END CERTIFICATE-----Generated at Fri Jan 2 09:53:15 2026 by rpki-client