This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: SI8j/M4xjPX0VvIta4qF9fc81kL4jVbR/Pj8HfwAUlE= Subject key identifier: 77:02:73:58:CF:23:01:13:E1:8F:46:21:55:77:91:90:3A:F8:B4:6E Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0CC8 Signing time: Sun 04 Jan 2026 18:39:09 +0000 Manifest this update: Sun 04 Jan 2026 18:39:08 +0000 Manifest next update: Sun 11 Jan 2026 18:39:08 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: PQS0lofSmNhVbvZEGCbaRPZ/hwf3+5tUI30FpEDikls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 18:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Jan 4 18:39:08 2026 GMT Not After : Jan 11 18:39:08 2026 GMT Subject: CN=695ab3cd-e623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:41:0b:1f:78:20:d4:2b:2d:e0:76:1b:81:b2: 92:c6:6b:78:2a:26:77:d2:a7:f5:5f:8c:4a:0c:32: ea:4f:9b:5f:6f:ee:41:1a:28:54:e2:0d:01:d8:c0: ea:ae:a4:86:30:eb:a0:b0:0b:6b:dd:59:9d:f1:5c: 68:28:79:87:96:93:97:29:4b:37:46:22:24:cb:dd: 10:ad:d2:55:7f:c3:33:d9:20:17:ca:c2:dc:97:43: c2:8b:de:21:89:53:8d:f8:9e:35:8f:75:02:8f:10: 8f:4f:e1:f1:8b:01:bf:66:8f:d6:65:29:b1:2f:8e: 0c:02:89:45:34:da:c1:a9:93:87:a3:e3:b6:da:c2: b9:a3:24:28:90:49:08:1a:98:22:7b:81:1d:44:44: c6:25:87:d7:d0:82:76:6d:ab:ce:63:af:7b:b2:c3: 5d:68:a3:a5:f1:d7:6f:1e:4a:ee:d7:f6:72:31:be: 0b:18:c4:22:f6:7c:49:d5:83:84:b7:2c:31:c5:02: 87:c7:20:36:17:08:95:67:d1:83:39:a4:9c:02:46: a1:3a:46:b2:5b:70:a6:58:1f:14:22:27:06:27:04: 39:cf:d5:ee:b2:a8:70:b0:e8:c6:a7:df:33:39:1b: 65:eb:b7:9d:4b:a5:51:44:c7:31:52:62:cd:b4:68: 71:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:02:73:58:CF:23:01:13:E1:8F:46:21:55:77:91:90:3A:F8:B4:6E X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ef:5d:32:12:92:a7:4f:80:3a:62:87:cd:e5:98:d9:08:f7: 55:14:f5:d3:ef:97:20:e0:06:8a:d0:0d:81:4f:17:90:52:82: 98:29:7f:b0:6f:5e:b9:a5:3b:f2:cc:42:18:ee:43:8a:e5:b5: 6a:ea:b3:e3:41:c2:8f:02:27:12:b4:78:5f:a2:17:e4:ee:37: 61:07:49:2f:fc:eb:93:9e:0f:6a:44:f9:2f:0a:4d:34:69:83: d2:59:d6:7d:de:90:c9:f3:8e:ba:a0:92:66:8b:f6:3a:cf:e6: d1:85:80:6e:06:8b:3f:46:ae:e7:34:e4:a2:89:77:de:7f:96: 71:7c:16:80:11:10:6c:6f:30:ca:60:4e:0a:42:44:48:73:87: f7:c8:ce:e0:53:db:a9:89:c4:c7:e6:93:53:d0:cb:c1:7b:2f: e0:c7:f9:ff:a9:de:66:42:61:d3:c9:65:6d:86:d9:36:0f:2a: d5:06:01:b4:2a:a8:f2:30:c5:10:53:8f:9f:5f:b7:ae:ae:b3: 1b:7d:c5:bb:7f:41:e6:fd:fd:16:a8:02:f6:88:d2:d9:eb:9f: de:06:9a:3c:83:1e:0e:4a:8d:f1:8b:81:84:6e:4d:df:08:16: b3:73:9a:e6:b8:22:d4:66:1f:77:48:ed:9b:1e:72:a7:69:08: 72:9a:1e:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjYwMTA0MTgzOTA4WhcNMjYwMTExMTgzOTA4WjAYMRYwFAYD VQQDDA02OTVhYjNjZC1lNjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj0ELH3gg1Cst4HYbgbKSxmt4KiZ30qf1X4xKDDLqT5tfb+5BGihU4g0B2MDq rqSGMOugsAtr3Vmd8VxoKHmHlpOXKUs3RiIky90QrdJVf8Mz2SAXysLcl0PCi94h iVON+J41j3UCjxCPT+HxiwG/Zo/WZSmxL44MAolFNNrBqZOHo+O22sK5oyQokEkI Gpgie4EdRETGJYfX0IJ2bavOY697ssNdaKOl8ddvHkru1/ZyMb4LGMQi9nxJ1YOE tywxxQKHxyA2FwiVZ9GDOaScAkahOkayW3CmWB8UIicGJwQ5z9XusqhwsOjGp98z ORtl67edS6VRRMcxUmLNtGhx+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcCc1jP IwET4Y9GIVV3kZA6+LRuMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5710yEpKnT4A6YofN5ZjZCPdVFPXT75cg4AaK0A2BTxeQUoKYKX+w b165pTvyzEIY7kOK5bVq6rPjQcKPAicStHhfohfk7jdhB0kv/OuTng9qRPkvCk00 aYPSWdZ93pDJ8466oJJmi/Y6z+bRhYBuBos/Rq7nNOSiiXfef5ZxfBaAERBsbzDK YE4KQkRIc4f3yM7gU9upicTH5pNT0MvBey/gx/n/qd5mQmHTyWVthtk2DyrVBgG0 KqjyMMUQU4+fX7eurrMbfcW7f0Hm/f0WqAL2iNLZ65/eBpo8gx4OSo3xi4GEbk3f CBazc5rmuCLUZh93SO2bHnKnaQhymh6Z -----END CERTIFICATE-----Generated at Mon Jan 5 18:55:03 2026 by rpki-client