This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft File: 7AffwfGIh38OvP3gtIHMAiw0NrI.mft (raw, json) Hash identifier: 08VQ0++c39QiFLc3zLrgN4RMUXHvX+Lze3Q6tGPXDlM= Subject key identifier: C8:9F:A7:45:D6:99:26:57:EB:7F:78:FA:7A:FC:78:8D:1C:C8:81:DC Authority key identifier: EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 Certificate issuer: /CN=A91BEE1D/serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft Manifest number: C0 Signing time: Fri 09 Jan 2026 05:12:42 +0000 Manifest this update: Fri 09 Jan 2026 05:12:41 +0000 Manifest next update: Fri 16 Jan 2026 05:12:41 +0000 Files and hashes: 1: 7AffwfGIh38OvP3gtIHMAiw0NrI.crl (hash: uM9EdTTc7ZelOfr9aopn9SXf0HbyBVlZaU4HjzHQVl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 Jan 2026 05:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Validity Not Before: Jan 9 05:12:41 2026 GMT Not After : Jan 16 05:12:41 2026 GMT Subject: CN=69608e4a-4c57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7a:72:93:70:56:a2:c4:47:49:9d:7a:ec:23: 42:83:26:4d:84:a9:b7:4a:d4:45:93:ab:13:2f:88: e8:fd:64:a9:f2:e4:23:af:95:dc:3b:41:74:d1:94: 1e:65:be:e3:22:7a:30:49:81:1c:d2:34:2f:b7:93: b9:d8:1d:dd:02:76:4e:9a:c6:dd:e3:56:7a:f5:33: e7:e2:06:9e:17:9b:ed:88:42:55:cc:10:72:6c:99: 7c:97:d4:e3:fe:b8:fa:de:71:c0:17:11:44:48:ec: f2:d1:2d:33:39:68:a5:a3:6a:d4:0a:f1:d2:7b:34: e0:b9:94:4b:6d:6c:3a:7c:84:c6:2f:53:bc:25:a7: 89:cd:97:8b:4c:6e:c2:23:ee:b5:32:46:7c:ac:c9: b6:d0:be:b6:1f:be:68:a0:4f:7d:47:17:e7:2d:0c: ee:15:ca:a9:84:91:bb:05:4d:15:f7:61:b5:67:8b: 1a:11:a3:d3:f8:bf:64:a1:6c:58:c7:6b:95:50:9a: c5:97:9b:fa:f1:20:0a:af:c1:5e:d9:79:97:df:f7: dd:bb:6d:5b:00:ea:4e:56:34:82:e7:b7:38:93:34: 03:da:a6:9a:7d:d2:31:55:ec:17:3f:f2:0e:1c:15: 0f:97:c0:dd:cd:f4:19:81:dc:50:70:d0:60:73:b4: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:9F:A7:45:D6:99:26:57:EB:7F:78:FA:7A:FC:78:8D:1C:C8:81:DC X509v3 Authority Key Identifier: keyid:EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ea:5d:df:8e:fd:00:f7:e8:4e:59:88:19:38:cd:67:b1:d9: ea:a5:ab:9b:6b:55:a3:43:57:43:64:4f:29:a4:b6:87:f2:c9: 9c:32:ab:06:5f:7e:cf:14:3f:11:6e:29:ac:ef:75:3d:84:92: ca:6d:6f:52:2b:cc:48:d9:b6:06:35:f6:ae:6a:1d:93:9a:8d: 7f:64:24:78:49:13:36:71:21:35:99:f0:46:1a:77:ac:30:51: 3f:97:45:df:75:3e:87:44:9a:72:2f:5a:50:f9:ce:c6:c5:d9: f4:04:04:24:62:76:52:09:f9:f7:48:cf:db:1e:7a:31:be:8d: 9f:e4:d3:88:bb:4a:cc:7d:a3:53:2c:76:df:15:c5:7f:60:be: 06:9c:82:b1:35:80:85:a9:33:18:11:41:3b:02:62:64:49:d7: dc:0b:38:b8:fd:ef:c0:a6:07:92:9c:31:d1:48:13:98:54:87: 30:83:81:fa:c6:20:9d:9a:82:f1:c5:0a:71:f1:9f:72:de:f3: 34:cd:3b:aa:01:f0:76:33:d3:b6:b9:05:c9:7e:07:e5:52:28: 63:6a:6f:ca:b5:f2:16:af:56:3d:90:86:27:d1:56:a4:6a:15: 53:b1:f6:cd:91:f8:2e:9a:5a:50:e8:89:02:7c:71:70:de:e4: b7:99:59:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKEVDMDdERkMxRjE4ODg3N0YwRUJDRkRFMEI0ODFDQzAy MkMzNDM2QjIwHhcNMjYwMTA5MDUxMjQxWhcNMjYwMTE2MDUxMjQxWjAYMRYwFAYD VQQDDA02OTYwOGU0YS00YzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53pyk3BWosRHSZ167CNCgyZNhKm3StRFk6sTL4jo/WSp8uQjr5XcO0F00ZQe Zb7jInowSYEc0jQvt5O52B3dAnZOmsbd41Z69TPn4gaeF5vtiEJVzBBybJl8l9Tj /rj63nHAFxFESOzy0S0zOWilo2rUCvHSezTguZRLbWw6fITGL1O8JaeJzZeLTG7C I+61MkZ8rMm20L62H75ooE99RxfnLQzuFcqphJG7BU0V92G1Z4saEaPT+L9koWxY x2uVUJrFl5v68SAKr8Fe2XmX3/fdu21bAOpOVjSC57c4kzQD2qaafdIxVewXP/IO HBUPl8DdzfQZgdxQcNBgc7QZRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMifp0XW mSZX6394+nr8eI0cyIHcMB8GA1UdIwQYMBaAFOwH38HxiId/Drz94LSBzAIsNDay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85Mjc4MjIzNEM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi83QWZmd2ZHSWgzOE92UDNndElITUFpdzBO ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdBZmZ3ZkdJaDM4T3ZQM2d0SUhNQWl3ME5ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85Mjc4MjIzNEM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi83QWZmd2ZHSWgz OE92UDNndElITUFpdzBOckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs6l3fjv0A9+hOWYgZOM1nsdnqpauba1WjQ1dDZE8ppLaH8smcMqsG X37PFD8Rbims73U9hJLKbW9SK8xI2bYGNfauah2Tmo1/ZCR4SRM2cSE1mfBGGnes MFE/l0XfdT6HRJpyL1pQ+c7Gxdn0BAQkYnZSCfn3SM/bHnoxvo2f5NOIu0rMfaNT LHbfFcV/YL4GnIKxNYCFqTMYEUE7AmJkSdfcCzi4/e/ApgeSnDHRSBOYVIcwg4H6 xiCdmoLxxQpx8Z9y3vM0zTuqAfB2M9O2uQXJfgflUihjam/KtfIWr1Y9kIYn0Vak ahVTsfbNkfgumlpQ6IkCfHFw3uS3mVly -----END CERTIFICATE-----Generated at Sat Jan 10 09:16:41 2026 by rpki-client