This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: VMFuV7x+vbiX2pT39l3dbTmEBzzzQFv5pRauMe0R7Is= Subject key identifier: 19:6B:5E:FE:74:D5:60:59:F7:0D:08:A4:AB:04:7C:7A:D7:AD:07:8A Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: B4 Signing time: Sun 11 Jan 2026 05:19:35 +0000 Manifest this update: Sun 11 Jan 2026 05:19:35 +0000 Manifest next update: Sun 18 Jan 2026 05:19:35 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: ljSzgL7tQU4S7jVzz1EHCK2fvKaEfQQ7CZfiGXq4ols=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 05:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Jan 11 05:19:35 2026 GMT Not After : Jan 18 05:19:35 2026 GMT Subject: CN=696332e7-502c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ae:e0:2d:b7:52:9f:f5:33:13:26:49:5d:e0: 18:7a:db:de:e7:9b:56:3f:1b:9d:1d:b6:6e:0e:96: fe:2b:db:5d:83:de:d6:37:b7:17:ae:70:2d:ba:6e: 32:ee:e5:c2:f7:db:4c:6e:b4:5c:63:e1:b2:3e:fd: e3:1b:d3:43:2c:68:25:ab:f6:c6:52:f4:90:df:2c: 1e:7e:5b:c2:42:57:ab:1a:43:95:e1:df:5f:8f:f4: 73:96:6a:61:7b:1b:3b:a8:4d:85:67:37:6b:59:fb: c9:c9:93:7a:d8:78:0d:68:1c:62:24:43:b2:b0:ac: 6d:95:b8:2d:73:0d:e3:8c:91:69:40:fc:47:c8:8e: fc:71:3d:4e:cb:c5:59:4d:da:ae:58:bb:90:fc:98: 0b:b8:66:e1:0e:66:8c:0e:a1:bc:98:da:cd:c2:1a: 09:b7:f2:69:db:6f:5d:c0:64:76:40:ce:a3:1c:58: b8:81:5d:a5:d8:17:1e:9f:08:1d:b7:7c:28:cb:ea: a2:3f:95:83:a5:47:e5:8d:23:4b:e9:1b:89:54:cb: 7a:54:c8:d7:c3:e0:d2:2d:2d:18:d2:80:c5:c7:b9: 31:cd:06:88:08:36:48:9a:9e:30:f9:0c:48:c6:75: 3e:e8:c8:30:8d:b4:6c:1a:bc:3c:51:a3:9c:5b:db: 38:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6B:5E:FE:74:D5:60:59:F7:0D:08:A4:AB:04:7C:7A:D7:AD:07:8A X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b7:7c:87:a9:f9:c0:ea:c9:c5:e7:2f:d1:10:4b:4b:7e:07: 35:a8:db:01:7e:7e:ba:e1:63:d2:98:83:25:ea:f1:8c:02:26: 8d:ee:80:de:ee:ce:e7:04:e9:75:2d:8b:e6:da:d7:4e:fa:88: 7b:79:db:f3:3d:cc:ab:50:dc:96:96:69:11:6e:7c:52:04:3a: 1a:e4:b0:09:69:bd:b1:23:66:62:f3:e9:a7:24:b3:dd:a6:e8: 2d:62:3c:84:21:96:4f:14:a4:c3:75:29:f4:46:46:8c:5a:96: 25:fe:77:b2:69:0d:dd:cf:60:86:07:d9:51:ff:87:3c:a8:d4: 2d:45:27:e8:86:9d:79:ec:0d:6a:d7:04:26:55:de:39:8a:d7: 37:59:ef:4d:8f:ad:8e:5f:75:65:59:72:b9:f3:a3:57:96:b3: f0:30:55:89:48:40:9d:dd:a3:8a:aa:17:f0:4e:92:7b:04:e2: 7b:f0:05:05:30:a0:6d:6a:7e:fa:ec:5a:98:5f:64:02:63:99: 82:e5:91:6c:71:f4:2f:54:b1:29:8c:6c:9f:ec:17:db:f7:ac: 08:e4:49:36:02:96:69:f0:4a:84:40:88:cc:b9:54:c8:b9:a7: f3:bc:20:5a:1e:6d:86:e3:75:0e:68:b6:f0:1b:8b:6e:c8:22: 79:c9:7f:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyMDgxMTAvBgNVBAUTKDY4QUQwRDA0NzBGNkFDNkYxOUM2NEVFRjQwOTRFRTBC QjU4NzFFREEwHhcNMjYwMTExMDUxOTM1WhcNMjYwMTE4MDUxOTM1WjAYMRYwFAYD VQQDDA02OTYzMzJlNy01MDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoK7gLbdSn/UzEyZJXeAYetve55tWPxudHbZuDpb+K9tdg97WN7cXrnAtum4y 7uXC99tMbrRcY+GyPv3jG9NDLGglq/bGUvSQ3yweflvCQlerGkOV4d9fj/Rzlmph exs7qE2FZzdrWfvJyZN62HgNaBxiJEOysKxtlbgtcw3jjJFpQPxHyI78cT1Oy8VZ TdquWLuQ/JgLuGbhDmaMDqG8mNrNwhoJt/Jp229dwGR2QM6jHFi4gV2l2Bcenwgd t3woy+qiP5WDpUfljSNL6RuJVMt6VMjXw+DSLS0Y0oDFx7kxzQaICDZImp4w+QxI xnU+6MgwjbRsGrw8UaOcW9s4GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlrXv50 1WBZ9w0IpKsEfHrXrQeKMB8GA1UdIwQYMBaAFGitDQRw9qxvGcZO70CU7gu1hx7a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTIwOC85RTI4NTU3RUU0 RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJHOFp4azd2UUpUdUM3V0hI dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJH OFp4azd2UUpUdUM3V0hIdG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpt3yHqfnA6snF5y/REEtLfgc1qNsBfn664WPSmIMl6vGMAiaN7oDe 7s7nBOl1LYvm2tdO+oh7edvzPcyrUNyWlmkRbnxSBDoa5LAJab2xI2Zi8+mnJLPd pugtYjyEIZZPFKTDdSn0RkaMWpYl/neyaQ3dz2CGB9lR/4c8qNQtRSfohp157A1q 1wQmVd45itc3We9Nj62OX3VlWXK586NXlrPwMFWJSECd3aOKqhfwTpJ7BOJ78AUF MKBtan767FqYX2QCY5mC5ZFscfQvVLEpjGyf7Bfb96wI5Ek2ApZp8EqEQIjMuVTI uafzvCBaHm2G43UOaLbwG4tuyCJ5yX/C -----END CERTIFICATE-----Generated at Mon Jan 12 01:24:23 2026 by rpki-client