This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: 7BxL+zdbnJvMI6Wwx264JLUrfXQJGI6HaMCT+DVP9rk= Subject key identifier: 5C:42:E1:C3:3A:90:FB:BB:01:DB:B3:52:1D:47:40:86:1A:85:08:47 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: AF Signing time: Thu 01 Jan 2026 05:44:46 +0000 Manifest this update: Thu 01 Jan 2026 05:44:44 +0000 Manifest next update: Thu 08 Jan 2026 05:44:44 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: t8byy+xvpNIjtQQVbwRUnLl9YdbDRjgfJAwUCO6m/kk=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 05:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Jan 1 05:44:44 2026 GMT Not After : Jan 8 05:44:44 2026 GMT Subject: CN=695609cd-ddf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:a9:2d:e1:c1:91:01:14:be:60:a7:58:2d: 4b:5b:bd:3a:a2:c9:83:6f:78:98:7c:9e:f8:07:73: f9:da:b7:e4:d1:cd:f8:2d:b7:1a:be:b3:1f:1a:ac: 02:1e:0b:a7:f0:c3:65:9d:3b:87:69:a1:ed:d0:21: 33:39:8a:01:49:c5:12:2a:4d:81:94:7f:bd:f1:4b: 71:4e:83:ba:de:cc:cb:57:00:a4:9f:6a:f8:f5:5d: a5:e1:c1:f2:0e:b4:2a:15:af:9d:3b:5a:fe:6f:7d: 94:cc:e3:11:b6:fe:2b:16:4d:38:bf:02:1d:76:b3: f1:e6:2c:54:53:7a:ec:e0:5c:4f:c3:79:22:e1:ca: 4e:a2:7a:ef:9b:2e:0f:71:8f:04:f3:8c:3b:8d:85: 05:8c:d2:0d:16:5f:86:4f:d9:1e:d4:e1:00:db:89: 13:06:25:8f:84:79:1c:cf:af:d7:ab:41:2e:1e:10: 9a:3b:90:21:ea:62:db:dc:07:25:73:24:be:4f:34: f9:31:5b:26:af:b9:bf:c8:81:1c:31:63:51:5f:2a: fd:fb:3f:2b:c9:88:fc:0a:c1:20:1e:cd:dc:38:3c: 36:bb:13:82:62:4a:6c:25:a1:5b:db:c9:3c:4f:a8: 2a:05:ea:4c:13:69:74:e3:c4:0a:62:d3:df:56:01: 6e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:42:E1:C3:3A:90:FB:BB:01:DB:B3:52:1D:47:40:86:1A:85:08:47 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:52:3d:02:c1:9c:7e:b6:5e:e5:73:95:4e:20:ab:0b:28:fc: 36:90:c4:e0:31:e3:db:bd:2d:c3:61:4a:89:4b:c8:f7:d3:fe: 5e:96:05:0a:07:7b:4b:f5:cf:85:a1:ef:ba:a9:39:63:06:6f: 65:c4:5a:21:05:50:c4:2a:a8:6b:9f:01:fc:9d:c6:69:40:24: 6a:4a:4d:3a:91:ba:5e:fb:6f:87:0f:90:52:63:a1:74:cc:50: bf:08:4d:98:5e:47:d7:07:f6:b8:fb:4d:9f:0a:44:c9:00:da: fe:e8:73:86:91:56:7c:13:1f:ad:63:79:47:d1:b7:97:c7:28: 98:f3:cd:85:5a:b6:16:67:99:e9:90:55:96:5c:9d:eb:8c:f4: c6:06:4a:73:0b:ec:97:1f:71:c4:4b:af:29:3e:8f:a0:d1:2e: 67:51:c6:1f:72:1f:a5:57:db:2c:7e:6d:d7:1e:3e:76:e2:ec: 54:65:e6:58:38:44:b2:44:f5:8f:3b:03:c7:9c:f6:37:c5:13: 5e:a7:56:e0:90:a5:d0:95:29:dc:a2:38:cb:f3:09:d3:37:cf: 21:32:a8:af:22:35:05:48:ff:b1:7c:c4:88:8f:7b:f1:78:cb: 08:fe:e9:9b:d4:8c:20:bc:86:84:ed:d4:71:7b:78:3d:63:e9: 4b:f9:f0:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyMDgxMTAvBgNVBAUTKDY4QUQwRDA0NzBGNkFDNkYxOUM2NEVFRjQwOTRFRTBC QjU4NzFFREEwHhcNMjYwMTAxMDU0NDQ0WhcNMjYwMTA4MDU0NDQ0WjAYMRYwFAYD VQQDDA02OTU2MDljZC1kZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSupLeHBkQEUvmCnWC1LW706osmDb3iYfJ74B3P52rfk0c34LbcavrMfGqwC Hgun8MNlnTuHaaHt0CEzOYoBScUSKk2BlH+98UtxToO63szLVwCkn2r49V2l4cHy DrQqFa+dO1r+b32UzOMRtv4rFk04vwIddrPx5ixUU3rs4FxPw3ki4cpOonrvmy4P cY8E84w7jYUFjNINFl+GT9ke1OEA24kTBiWPhHkcz6/Xq0EuHhCaO5Ah6mLb3Acl cyS+TzT5MVsmr7m/yIEcMWNRXyr9+z8ryYj8CsEgHs3cODw2uxOCYkpsJaFb28k8 T6gqBepME2l048QKYtPfVgFuMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxC4cM6 kPu7AduzUh1HQIYahQhHMB8GA1UdIwQYMBaAFGitDQRw9qxvGcZO70CU7gu1hx7a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTIwOC85RTI4NTU3RUU0 RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJHOFp4azd2UUpUdUM3V0hI dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJH OFp4azd2UUpUdUM3V0hIdG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOUj0CwZx+tl7lc5VOIKsLKPw2kMTgMePbvS3DYUqJS8j30/5elgUK B3tL9c+Foe+6qTljBm9lxFohBVDEKqhrnwH8ncZpQCRqSk06kbpe+2+HD5BSY6F0 zFC/CE2YXkfXB/a4+02fCkTJANr+6HOGkVZ8Ex+tY3lH0beXxyiY882FWrYWZ5np kFWWXJ3rjPTGBkpzC+yXH3HES68pPo+g0S5nUcYfch+lV9ssfm3XHj524uxUZeZY OESyRPWPOwPHnPY3xRNep1bgkKXQlSncojjL8wnTN88hMqivIjUFSP+xfMSIj3vx eMsI/umb1IwgvIaE7dRxe3g9Y+lL+fDU -----END CERTIFICATE-----Generated at Thu Jan 1 07:35:59 2026 by rpki-client