This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: vHs1XlwOV7RHSNfUmgRlx7XF47E1AzlkheYRIMLUQ8c= Subject key identifier: 1D:74:10:5C:0D:DF:FC:C8:06:EA:BE:B2:98:82:41:F7:5E:D5:71:CC Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0499 Signing time: Thu 01 Jan 2026 00:20:02 +0000 Manifest this update: Thu 01 Jan 2026 00:20:02 +0000 Manifest next update: Thu 08 Jan 2026 00:20:02 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: GCQv2anOT0hPT4VqBBI2TXenpHhTFBON1SGnmoJg/yQ=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: QRW6kloMj5HGDLoTUld/CHgtwu5aEatp1ql2/YwPyBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 00:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Jan 1 00:20:02 2026 GMT Not After : Jan 8 00:20:02 2026 GMT Subject: CN=6955bdb2-1d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:de:9a:30:dd:b4:83:fa:1b:3d:22:b3:da: a7:70:c3:a0:fe:7b:4a:4b:4d:84:bb:b6:c9:ba:88: 2a:ed:a9:10:78:b2:0c:02:52:e7:4e:5c:96:37:5b: de:6e:90:79:7d:d9:c0:52:06:6f:a1:86:06:81:0b: 12:c3:cc:c6:a2:b4:97:81:b1:14:ef:a9:39:b1:3f: 04:6b:56:0c:a8:e3:ca:de:fa:b6:44:b3:35:b1:b0: e3:3d:ff:31:61:e3:82:49:ae:bf:a8:f6:2c:32:17: 09:cb:f9:31:7d:6a:70:b3:e8:a9:f0:98:01:89:40: 87:d2:56:69:d4:17:9c:18:39:a8:f2:87:d4:a8:7c: f9:c1:34:cb:3e:ea:46:43:58:ec:dd:87:18:95:fa: 60:ed:50:4e:29:68:35:df:42:ba:09:17:c7:43:90: 62:77:6d:70:77:23:ee:26:c5:4a:73:77:73:1b:f9: fb:8b:e8:b6:99:1e:a7:8c:e6:e7:ec:3f:db:57:2c: af:e8:e2:c0:db:53:11:4f:8a:d6:ba:11:a1:f2:42: 90:32:7e:a9:3c:db:ba:4d:97:f9:67:ea:28:81:b0: e3:7d:4a:cd:42:83:2e:21:2a:b6:78:a7:60:74:38: db:42:da:e6:71:fc:fe:1c:94:69:9a:78:3a:b7:50: 07:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:74:10:5C:0D:DF:FC:C8:06:EA:BE:B2:98:82:41:F7:5E:D5:71:CC X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c4:3a:f2:54:fb:84:2f:10:93:b1:f5:3a:2d:ad:18:cc:f1: 77:01:11:c1:e1:5d:ae:ed:5f:55:f4:0a:6d:e1:96:0a:75:6f: fe:84:9d:c4:24:a9:40:a7:aa:de:b3:2f:33:e1:bf:51:0d:9f: 42:db:cf:b2:2c:84:d4:26:99:61:5a:e9:08:a3:70:95:70:86: 0e:05:3b:c3:ef:56:61:71:52:f3:ea:b2:3f:31:63:cf:27:33: db:d0:36:a0:ec:bb:cc:15:78:22:89:6a:f1:8f:61:80:72:46: d1:66:20:bd:2b:d9:d6:56:26:0d:e0:92:31:57:35:45:f6:23: e4:b1:30:1e:02:e1:b3:fc:08:f9:21:e9:2d:bb:87:9c:1b:21: 92:f9:a0:53:36:09:f4:d4:f6:4f:76:9c:1c:c8:c0:b0:53:b8: 96:58:42:bb:f2:fd:6c:ce:7d:b6:ee:3c:f3:d9:56:ae:ed:4c: e2:1f:3e:0e:97:f0:7d:65:46:8b:ba:3f:78:c8:24:33:1b:20: 19:cc:9e:28:9c:46:a9:b6:17:b6:db:2a:cb:6a:e5:0c:5c:90: a7:9b:88:37:1a:89:79:49:f9:19:c3:48:85:f8:35:1a:0e:c6: c7:de:56:39:3b:6d:ea:ce:68:4c:81:e4:5f:e7:c1:0f:d7:aa: e1:57:e4:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjYwMTAxMDAyMDAyWhcNMjYwMTA4MDAyMDAyWjAYMRYwFAYD VQQDDA02OTU1YmRiMi0xZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveLemjDdtIP6Gz0is9qncMOg/ntKS02Eu7bJuogq7akQeLIMAlLnTlyWN1ve bpB5fdnAUgZvoYYGgQsSw8zGorSXgbEU76k5sT8Ea1YMqOPK3vq2RLM1sbDjPf8x YeOCSa6/qPYsMhcJy/kxfWpws+ip8JgBiUCH0lZp1BecGDmo8ofUqHz5wTTLPupG Q1js3YcYlfpg7VBOKWg130K6CRfHQ5Bid21wdyPuJsVKc3dzG/n7i+i2mR6njObn 7D/bVyyv6OLA21MRT4rWuhGh8kKQMn6pPNu6TZf5Z+oogbDjfUrNQoMuISq2eKdg dDjbQtrmcfz+HJRpmng6t1AH9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB10EFwN 3/zIBuq+spiCQfde1XHMMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRxDryVPuELxCTsfU6La0YzPF3ARHB4V2u7V9V9Apt4ZYKdW/+hJ3E JKlAp6resy8z4b9RDZ9C28+yLITUJplhWukIo3CVcIYOBTvD71ZhcVLz6rI/MWPP JzPb0Dag7LvMFXgiiWrxj2GAckbRZiC9K9nWViYN4JIxVzVF9iPksTAeAuGz/Aj5 Iektu4ecGyGS+aBTNgn01PZPdpwcyMCwU7iWWEK78v1szn227jzz2Vau7UziHz4O l/B9ZUaLuj94yCQzGyAZzJ4onEapthe22yrLauUMXJCnm4g3Gol5SfkZw0iF+DUa DsbH3lY5O23qzmhMgeRf58EP16rhV+RW -----END CERTIFICATE-----Generated at Fri Jan 2 17:03:08 2026 by rpki-client