This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft File: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft (raw, json) Hash identifier: AsQa7ivHinMKVS0He8XTjIyZhJ/SUiX7VtnEmi4KjWg= Subject key identifier: 59:EE:7A:5E:4A:2B:54:E8:8E:F2:3C:3E:3A:54:6E:C7:58:AC:79:8D Authority key identifier: ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 Certificate issuer: /CN=A91E04ED/serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft Manifest number: 06BF Signing time: Sat 10 Jan 2026 21:33:40 +0000 Manifest this update: Sat 10 Jan 2026 21:33:40 +0000 Manifest next update: Sat 17 Jan 2026 21:33:40 +0000 Files and hashes: 1: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl (hash: PrZePpYcipIl6BL7F4ob9rMgkDukA20qjsmDYniHMiI=) 2: 0665D2328D1A11EB80593760C4F9AE02.roa (hash: 9RcU5RMIguV5RGzPowAleQQk2yHbByHLcaosyfn/YYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 21:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04ED, serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Validity Not Before: Jan 10 21:33:40 2026 GMT Not After : Jan 17 21:33:40 2026 GMT Subject: CN=6962c5b4-fe80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ee:fb:70:c9:3b:5d:44:07:c3:c5:b9:1a:6a: 6f:eb:af:ff:f6:3e:58:bb:58:2c:92:d0:82:1a:9c: 85:99:45:41:6c:65:7f:5b:e7:10:d5:a1:be:7d:5b: 17:64:e6:92:be:ac:14:c6:96:82:bb:fe:8a:53:c8: c9:60:08:99:d5:64:d6:63:1f:f0:b7:0a:f0:6f:65: ce:b7:70:ae:61:f2:9c:cf:3a:4d:df:58:9c:e0:90: 10:a0:3d:5f:68:02:60:2a:b9:2c:bf:14:c9:66:f0: a6:25:50:ea:a3:5d:b4:92:a5:40:d3:af:1d:4e:36: 07:2b:6b:18:cd:15:b1:60:c2:ca:d4:25:f2:2d:82: 1a:e2:ac:86:70:7f:c5:97:a3:9c:50:6f:a4:a6:fe: 2d:b8:3f:59:1f:ba:83:5f:e0:42:d2:04:5d:c4:51: 10:02:27:05:a0:d4:52:73:a1:c3:72:cd:dd:13:37: 4f:b5:1f:f3:de:3b:32:b0:ba:dd:57:d0:8c:c7:75: 28:6d:06:27:b2:ab:69:ce:a5:d5:01:d1:44:de:c1: e9:2f:b8:a6:8a:38:1b:80:c4:6c:2f:bb:d4:a2:9e: f3:d4:8a:6b:fd:94:ef:2c:1d:36:f3:58:d8:3e:24: c4:d5:55:89:c6:85:3f:7b:e6:1d:e1:37:ae:a4:9a: 0b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EE:7A:5E:4A:2B:54:E8:8E:F2:3C:3E:3A:54:6E:C7:58:AC:79:8D X509v3 Authority Key Identifier: keyid:ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:42:8e:a5:25:a4:95:f6:c3:21:f9:8a:ff:23:6b:e6:5a:90: 94:0c:ed:fe:8a:2d:ff:53:a9:17:25:ac:97:00:91:64:59:da: e3:6f:49:c7:b6:5b:41:1a:cb:11:d3:6e:92:00:03:42:80:67: 00:6d:6a:cb:f1:16:0a:56:27:50:5e:67:da:bf:36:08:4b:1d: c5:bf:97:32:9c:d1:a0:70:fe:9e:eb:d2:ac:49:f0:f8:fe:8f: d5:eb:0e:af:39:88:d3:36:f5:b3:50:7d:83:9a:ed:e6:10:13: e1:3b:81:43:29:05:31:55:8d:5d:1b:97:10:c3:99:5d:9c:db: a1:a7:85:22:7e:9f:0e:26:c5:4b:88:10:66:8d:b4:4d:02:8c: 0d:28:55:66:55:ca:1e:15:1f:2b:64:d0:1a:e8:49:64:05:f8: ff:4f:03:f7:a8:a6:22:e9:a4:07:f2:e1:ce:72:4b:7e:da:57: 28:b8:ca:ee:84:75:8d:67:8a:c4:55:17:1a:f6:ea:9f:56:b0: 24:f7:dc:e5:be:6b:e0:b8:61:9a:6e:89:54:05:46:7f:c0:bd: 76:a2:20:f8:bb:58:cd:36:4e:eb:4a:1f:5f:7b:20:39:36:41: 13:2d:4b:a8:85:9e:8d:ba:fe:65:fa:81:43:68:8e:6e:9d:74: f8:c5:84:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RUQxMTAvBgNVBAUTKEVEQTJBQUJCNDAyMTJFQjNDMDkyQUFFQUYxNTE0MkE3 NjlFRjU5MDcwHhcNMjYwMTEwMjEzMzQwWhcNMjYwMTE3MjEzMzQwWjAYMRYwFAYD VQQDDA02OTYyYzViNC1mZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwu77cMk7XUQHw8W5Gmpv66//9j5Yu1gsktCCGpyFmUVBbGV/W+cQ1aG+fVsX ZOaSvqwUxpaCu/6KU8jJYAiZ1WTWYx/wtwrwb2XOt3CuYfKczzpN31ic4JAQoD1f aAJgKrksvxTJZvCmJVDqo120kqVA068dTjYHK2sYzRWxYMLK1CXyLYIa4qyGcH/F l6OcUG+kpv4tuD9ZH7qDX+BC0gRdxFEQAicFoNRSc6HDcs3dEzdPtR/z3jsysLrd V9CMx3UobQYnsqtpzqXVAdFE3sHpL7imijgbgMRsL7vUop7z1Ipr/ZTvLB0281jY PiTE1VWJxoU/e+Yd4TeupJoLpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnuel5K K1TojvI8PjpUbsdYrHmNMB8GA1UdIwQYMBaAFO2iqrtAIS6zwJKq6vFRQqdp71kH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRFRC9EQkU5MEJBQzhE MTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExyUEFrcXJxOFZGQ3AybnZX UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhS3F1MEFoTHJQQWtxcnE4VkZDcDJudldRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRFRC9EQkU5MEJBQzhEMTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExy UEFrcXJxOFZGQ3AybnZXUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOQo6lJaSV9sMh+Yr/I2vmWpCUDO3+ii3/U6kXJayXAJFkWdrjb0nH tltBGssR026SAANCgGcAbWrL8RYKVidQXmfavzYISx3Fv5cynNGgcP6e69KsSfD4 /o/V6w6vOYjTNvWzUH2Dmu3mEBPhO4FDKQUxVY1dG5cQw5ldnNuhp4Uifp8OJsVL iBBmjbRNAowNKFVmVcoeFR8rZNAa6ElkBfj/TwP3qKYi6aQH8uHOckt+2lcouMru hHWNZ4rEVRca9uqfVrAk99zlvmvguGGabolUBUZ/wL12oiD4u1jNNk7rSh9feyA5 NkETLUuohZ6Nuv5l+oFDaI5unXT4xYTt -----END CERTIFICATE-----Generated at Mon Jan 12 13:46:20 2026 by rpki-client