This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft File: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft (raw, json) Hash identifier: HaLWQiKxPhylcYDvbD/Pol5fIt53qvYAeFpEjM+rkig= Subject key identifier: 89:97:A5:EE:23:1D:15:89:C7:65:22:50:E2:40:01:C9:2E:BE:F1:29 Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft Manifest number: 07EF Signing time: Sat 10 Jan 2026 20:30:51 +0000 Manifest this update: Sat 10 Jan 2026 20:30:50 +0000 Manifest next update: Sat 17 Jan 2026 20:30:50 +0000 Files and hashes: 1: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl (hash: 5RFF335L/nULVc1GwtuGj+WLXVts5x/94EZnfVOr2Ds=) 2: 65D706B213FA11EB92A6FE61C4F9AE02.roa (hash: s6A+c8B69JJC0+7xzhZxL1Je8usV/7mi3hySHgYS654=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 20:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52, serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Jan 10 20:30:50 2026 GMT Not After : Jan 17 20:30:50 2026 GMT Subject: CN=6962b6fb-3bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3b:d4:c3:c0:09:65:1f:73:f1:64:71:8a:16: 0c:f7:c6:f8:ad:c8:1b:c0:f9:65:db:8b:d4:66:f1: b8:95:c8:9c:0a:7d:2f:4a:cf:40:5a:c7:9c:80:09: 86:0c:a6:53:2f:f6:7a:bf:a8:73:b2:6f:b3:83:a9: 72:fe:70:68:b7:78:98:cc:0e:cf:33:21:cd:db:e6: 1b:49:b0:6e:ec:e4:07:2e:5e:3b:56:05:14:c4:f8: 9f:0e:bc:39:71:0e:3d:c0:f7:1b:44:1e:dc:ca:be: 77:f7:49:c9:a7:6d:dc:92:fd:14:2d:fb:95:95:4e: 68:89:2d:26:44:1d:eb:0a:a2:44:ff:54:ca:57:44: 6e:2b:f6:c8:18:42:4e:0e:8c:23:68:d2:a4:d0:1e: 12:61:d3:e2:3d:df:f1:49:b3:4f:9e:a0:8a:f4:b2: 9c:9c:94:db:f5:40:8b:21:19:c5:b7:94:44:da:82: 5d:47:af:b7:96:42:5f:80:9d:5a:49:b2:ce:d7:9c: 9b:46:ff:bb:a3:84:a7:b1:45:e5:ba:7e:91:66:4a: fe:ec:33:82:9c:91:45:2e:b9:fa:5a:3e:19:78:6d: 41:78:77:7e:0c:26:9f:0d:20:9c:17:25:18:da:1b: f7:ac:b3:c7:ea:52:9e:ff:08:f7:6e:5f:ad:08:da: ad:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:97:A5:EE:23:1D:15:89:C7:65:22:50:E2:40:01:C9:2E:BE:F1:29 X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:85:2d:f2:d4:a0:57:dd:31:52:8e:d1:83:df:4f:e3:38:81: bf:8a:bf:c2:71:73:68:60:03:4a:84:4c:6a:0c:71:7b:d4:c5: 80:64:43:f0:e4:1a:36:9d:22:55:41:6a:65:a7:f5:50:1e:8d: 8c:4d:e4:48:c8:1e:5e:cf:de:f5:7b:a8:1c:ac:0e:09:c4:4f: f6:9b:7e:12:6f:5f:e0:38:da:13:00:66:55:eb:b6:dd:78:7e: 29:56:3f:9e:e0:47:44:c5:02:48:99:9a:c8:f8:d3:8b:88:c1: 4d:01:f8:0a:4e:37:ca:98:ba:05:99:2e:1e:32:c9:1a:55:f6: ad:fd:c3:11:01:49:2b:f0:d6:33:d0:aa:55:6b:25:19:7b:a8: 76:ee:ce:b8:52:90:d8:c1:cf:b6:7e:4c:6b:1a:d8:b2:80:5b: 75:aa:78:84:52:8c:b8:f8:57:f2:2a:c9:05:72:6f:2e:a6:b7: 40:5a:00:95:a9:34:97:e3:df:73:e5:40:5a:a8:89:1e:54:ee: 20:9b:f0:db:78:58:38:99:67:12:d4:a7:56:f2:e6:71:c9:28: 3f:92:2b:11:f1:ce:00:fc:14:96:a7:2f:b0:73:75:cb:6b:2e: e3:4a:d5:b6:12:a0:ba:78:10:cd:fb:93:bd:84:b0:7f:18:83: 51:ea:47:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjYwMTEwMjAzMDUwWhcNMjYwMTE3MjAzMDUwWjAYMRYwFAYD VQQDDA02OTYyYjZmYi0zYmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DvUw8AJZR9z8WRxihYM98b4rcgbwPll24vUZvG4lcicCn0vSs9AWsecgAmG DKZTL/Z6v6hzsm+zg6ly/nBot3iYzA7PMyHN2+YbSbBu7OQHLl47VgUUxPifDrw5 cQ49wPcbRB7cyr5390nJp23ckv0ULfuVlU5oiS0mRB3rCqJE/1TKV0RuK/bIGEJO DowjaNKk0B4SYdPiPd/xSbNPnqCK9LKcnJTb9UCLIRnFt5RE2oJdR6+3lkJfgJ1a SbLO15ybRv+7o4SnsUXlun6RZkr+7DOCnJFFLrn6Wj4ZeG1BeHd+DCafDSCcFyUY 2hv3rLPH6lKe/wj3bl+tCNqtkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImXpe4j HRWJx2UiUOJAAckuvvEpMB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0M1Mi82NTI4MzZFODEzOEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19Y UUhhMUNYY0FFeXg2eUc1aUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwhS3y1KBX3TFSjtGD30/jOIG/ir/CcXNoYANKhExqDHF71MWAZEPw 5Bo2nSJVQWplp/VQHo2MTeRIyB5ez971e6gcrA4JxE/2m34Sb1/gONoTAGZV67bd eH4pVj+e4EdExQJImZrI+NOLiMFNAfgKTjfKmLoFmS4eMskaVfat/cMRAUkr8NYz 0KpVayUZe6h27s64UpDYwc+2fkxrGtiygFt1qniEUoy4+FfyKskFcm8uprdAWgCV qTSX499z5UBaqIkeVO4gm/DbeFg4mWcS1KdW8uZxySg/kisR8c4A/BSWpy+wc3XL ay7jStW2EqC6eBDN+5O9hLB/GINR6kdf -----END CERTIFICATE-----Generated at Mon Jan 12 09:08:35 2026 by rpki-client