This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: QT4060hX7t+Gamx3FG8H1cTpf7E323PvrhS0DQT0C8Q= Subject key identifier: 0C:A5:4B:41:1F:83:97:9E:56:69:99:1B:6D:3B:09:23:51:64:7F:74 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B92 Signing time: Thu 08 Jan 2026 18:37:33 +0000 Manifest this update: Thu 08 Jan 2026 18:37:32 +0000 Manifest next update: Thu 15 Jan 2026 18:37:32 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: QAZwTsYAyapTKaUNYtptrDdF8GLvWbNH03rnksjbdkA=) 2: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) 3: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 18:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Jan 8 18:37:32 2026 GMT Not After : Jan 15 18:37:32 2026 GMT Subject: CN=695ff96c-4aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:79:d0:63:35:17:2c:75:47:ac:7b:cf:74:57: dd:2f:bb:df:33:fa:e7:e6:5c:13:c1:70:b1:e4:d7: b1:10:cb:98:da:4b:bf:08:30:27:c5:ac:cf:c7:6c: 4d:62:21:e8:24:46:c8:93:68:40:de:85:37:fe:c1: 72:09:c6:ff:c2:99:45:3a:46:24:52:8a:e3:71:38: 89:74:fa:66:89:aa:4f:1b:04:5b:cf:9f:09:6c:93: 3f:f0:5c:de:a7:f1:0f:bd:24:14:f0:55:8e:72:8c: 5f:1e:37:9b:fe:ed:b4:88:08:f8:0e:21:60:34:98: e4:c7:58:56:40:4e:c4:70:fb:91:d0:20:18:48:01: a6:b8:5e:3d:4b:24:ea:5c:b2:31:69:ed:bd:3c:eb: af:fd:24:46:79:89:d9:61:ab:db:bb:5b:73:e1:51: 71:6a:12:c5:d6:bd:ca:78:fc:12:0e:54:6c:aa:43: 91:27:b3:6c:40:59:55:89:72:c0:30:a0:78:d3:2e: 26:7d:b2:0f:14:b3:da:76:b4:24:ab:0c:bf:5f:c2: a2:87:d3:cd:d2:7b:6a:10:6c:fd:54:8d:e9:0b:4c: 62:5b:88:fb:25:9b:79:51:7f:33:e9:fc:d3:58:fa: 7e:e9:83:74:a9:12:c1:e3:93:7e:93:45:82:ef:29: be:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A5:4B:41:1F:83:97:9E:56:69:99:1B:6D:3B:09:23:51:64:7F:74 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ba:08:f3:8c:3a:ab:39:c0:d0:d3:d3:6d:7a:9e:74:64:62: 5b:dc:96:51:fc:78:87:8e:12:7a:c5:85:43:bb:7d:54:0a:ce: 57:33:29:92:bf:91:22:f0:0e:02:9a:fb:c1:09:d1:2f:c3:c0: c9:a1:d1:35:b4:6d:28:72:41:55:b7:fd:40:1c:df:ca:4c:05: 76:fb:e5:86:fb:38:20:e3:1a:d4:28:3d:02:c8:a2:79:80:f3: 2b:d1:59:b4:be:0e:e5:8f:4f:29:72:3a:9e:41:12:a8:59:7a: be:ad:51:04:a2:cf:bd:6b:fb:10:08:75:22:d3:83:22:91:0b: 63:d8:a6:05:5f:b1:79:b3:65:d7:a6:01:d3:93:bb:30:6b:9f: 7f:af:a4:82:17:93:1f:14:2b:0f:0b:c8:27:35:a9:bd:7d:80: f2:e9:11:e7:ef:2c:23:43:f8:b3:cc:c6:1e:f4:9a:4f:bc:5d: ac:55:f8:94:7e:a4:fc:b2:dc:41:16:2e:0d:6f:7b:b3:d5:2e: 57:61:5f:6b:7e:a8:da:96:f5:86:5b:c1:64:f5:47:c3:7c:13: ec:c8:df:26:5c:ae:1a:eb:f5:d6:d9:5e:aa:88:8b:27:7f:ee: 5c:ed:4f:48:4b:4b:82:35:93:ac:b2:8d:6b:e1:db:d3:ae:f0: 0a:92:06:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjYwMTA4MTgzNzMyWhcNMjYwMTE1MTgzNzMyWjAYMRYwFAYD VQQDDA02OTVmZjk2Yy00YWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8XnQYzUXLHVHrHvPdFfdL7vfM/rn5lwTwXCx5NexEMuY2ku/CDAnxazPx2xN YiHoJEbIk2hA3oU3/sFyCcb/wplFOkYkUorjcTiJdPpmiapPGwRbz58JbJM/8Fze p/EPvSQU8FWOcoxfHjeb/u20iAj4DiFgNJjkx1hWQE7EcPuR0CAYSAGmuF49SyTq XLIxae29POuv/SRGeYnZYavbu1tz4VFxahLF1r3KePwSDlRsqkORJ7NsQFlViXLA MKB40y4mfbIPFLPadrQkqwy/X8Kih9PN0ntqEGz9VI3pC0xiW4j7JZt5UX8z6fzT WPp+6YN0qRLB45N+k0WC7ym+lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAylS0Ef g5eeVmmZG207CSNRZH90MB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRugjzjDqrOcDQ09Ntep50ZGJb3JZR/HiHjhJ6xYVDu31UCs5XMymS v5Ei8A4CmvvBCdEvw8DJodE1tG0ockFVt/1AHN/KTAV2++WG+zgg4xrUKD0CyKJ5 gPMr0Vm0vg7lj08pcjqeQRKoWXq+rVEEos+9a/sQCHUi04MikQtj2KYFX7F5s2XX pgHTk7swa59/r6SCF5MfFCsPC8gnNam9fYDy6RHn7ywjQ/izzMYe9JpPvF2sVfiU fqT8stxBFi4Nb3uz1S5XYV9rfqjalvWGW8Fk9UfDfBPsyN8mXK4a6/XW2V6qiIsn f+5c7U9IS0uCNZOsso1r4dvTrvAKkgb6 -----END CERTIFICATE-----Generated at Sat Jan 10 00:29:38 2026 by rpki-client