This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: 9LIvrGFroFtdIq67FCP4GtPjnh1hR1eBKecUrDWScGg= Subject key identifier: 89:EC:60:79:04:60:42:83:10:0B:5E:FC:9C:E1:55:6D:EE:BE:8B:15 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: AB Signing time: Sun 11 Jan 2026 05:21:40 +0000 Manifest this update: Sun 11 Jan 2026 05:21:40 +0000 Manifest next update: Sun 18 Jan 2026 05:21:40 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: VvngKrQsQisu79p/ZLkDqIDkP2b4CPyGdLxW7F9N4rY=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: NgHWuWasRdq7/Tb6jtbOAPkZk5G59CnEADx3vts0M7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Jan 11 05:21:40 2026 GMT Not After : Jan 18 05:21:40 2026 GMT Subject: CN=69633364-9153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:25:9d:0c:9b:9f:44:7e:69:a6:82:4b:24:64: 11:13:2f:f6:b0:da:8c:40:a3:93:b4:c1:4a:23:17: 4e:c2:75:52:62:b9:80:fa:ef:d2:8d:8f:c5:c2:11: a3:f4:88:a4:ba:ac:d4:89:5e:f6:84:34:76:e0:14: c5:f6:a0:b5:15:bd:6f:8d:1f:4c:1e:4b:82:ea:95: 36:5c:ce:c0:df:ee:d9:ce:b4:48:72:53:c4:b8:92: 47:75:73:d1:b4:3c:90:3e:93:08:5b:9a:e9:30:76: c6:b9:86:10:4b:bc:e4:80:c6:1e:b6:5a:ea:ce:9a: 8e:ad:d4:2f:ca:c0:26:55:d8:43:81:72:a5:eb:c4: bf:d9:65:7e:f2:f8:c1:11:74:98:37:32:ca:ed:9e: f5:3a:74:d1:00:9a:7f:27:37:ae:2d:33:79:af:5f: 0f:30:d7:d0:d0:aa:bc:19:f5:a8:b5:02:c2:ee:e8: 98:9c:c3:8d:81:fa:be:66:6d:d6:fc:6a:67:72:fc: 99:b0:db:37:47:53:b8:3f:2d:28:e9:75:8e:ce:44: 44:7a:9b:13:28:37:4f:93:70:9b:34:2b:91:2a:17: 85:ef:7e:78:67:64:78:79:8c:49:09:5e:40:45:9e: fb:8a:2b:cd:2e:0c:01:bf:7d:32:57:82:f3:b3:2b: db:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EC:60:79:04:60:42:83:10:0B:5E:FC:9C:E1:55:6D:EE:BE:8B:15 X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:5a:8c:d4:56:53:9c:d0:70:1f:d5:30:41:3a:bf:01:81:a4: 2c:d4:90:6c:c6:6e:4c:b6:58:b7:a8:58:17:f8:4b:3a:a9:ee: cf:5a:8f:82:a2:4b:20:57:cb:e7:33:91:74:41:52:ac:7a:16: 7a:11:9d:5d:0d:0a:4d:99:c8:95:52:ea:70:48:da:e5:27:2b: 5a:c7:f0:da:5a:58:0f:61:22:88:cd:7e:97:d9:92:f2:77:5c: 30:e9:71:72:71:67:58:f0:6c:a6:2b:8e:51:42:31:f4:bf:ed: 79:01:76:f7:92:9f:ff:d0:78:c2:f4:02:28:80:36:86:d8:7d: 96:16:cd:1c:d3:21:3d:c4:16:f9:7f:05:13:71:a4:f9:42:3e: aa:14:e9:21:0c:c7:f8:42:8a:43:5b:48:f3:64:a5:5b:d6:99: 57:04:4a:78:ab:99:9a:09:f9:aa:7e:0c:e3:22:9e:32:bd:f4: 83:52:52:04:e9:6f:6d:48:e6:9d:37:26:20:03:95:77:d4:fd: 0f:74:06:5f:9a:2f:0a:99:89:7a:75:93:9a:85:df:3e:60:cc: ad:01:4c:5d:4f:b6:36:24:cb:77:a7:0f:c0:55:46:68:17:0e: 57:6a:78:3c:7e:b3:75:11:da:91:17:a1:77:e8:8f:04:ba:74: b3:1e:e6:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGM0IxMTAvBgNVBAUTKEEzOEQ0ODdCRDVEOUE4QTg5NDgwMjc0RkU2RjdDMDYx QzYyNEJDQzAwHhcNMjYwMTExMDUyMTQwWhcNMjYwMTE4MDUyMTQwWjAYMRYwFAYD VQQDDA02OTYzMzM2NC05MTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SWdDJufRH5ppoJLJGQREy/2sNqMQKOTtMFKIxdOwnVSYrmA+u/SjY/FwhGj 9IikuqzUiV72hDR24BTF9qC1Fb1vjR9MHkuC6pU2XM7A3+7ZzrRIclPEuJJHdXPR tDyQPpMIW5rpMHbGuYYQS7zkgMYetlrqzpqOrdQvysAmVdhDgXKl68S/2WV+8vjB EXSYNzLK7Z71OnTRAJp/JzeuLTN5r18PMNfQ0Kq8GfWotQLC7uiYnMONgfq+Zm3W /GpncvyZsNs3R1O4Py0o6XWOzkREepsTKDdPk3CbNCuRKheF7354Z2R4eYxJCV5A RZ77iivNLgwBv30yV4LzsyvbiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInsYHkE YEKDEAte/JzhVW3uvosVMB8GA1UdIwQYMBaAFKONSHvV2aiolIAnT+b3wGHGJLzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUYzQi9BQzc2MjIwMEU5 QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFLaVVnQ2RQNXZmQVljWWt2 TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUYzQi9BQzc2MjIwMEU5QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFL aVVnQ2RQNXZmQVljWWt2TUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7WozUVlOc0HAf1TBBOr8BgaQs1JBsxm5Mtli3qFgX+Es6qe7PWo+C oksgV8vnM5F0QVKsehZ6EZ1dDQpNmciVUupwSNrlJytax/DaWlgPYSKIzX6X2ZLy d1ww6XFycWdY8GymK45RQjH0v+15AXb3kp//0HjC9AIogDaG2H2WFs0c0yE9xBb5 fwUTcaT5Qj6qFOkhDMf4QopDW0jzZKVb1plXBEp4q5maCfmqfgzjIp4yvfSDUlIE 6W9tSOadNyYgA5V31P0PdAZfmi8KmYl6dZOahd8+YMytAUxdT7Y2JMt3pw/AVUZo Fw5Xang8frN1EdqRF6F36I8EunSzHuYV -----END CERTIFICATE-----Generated at Mon Jan 12 08:10:47 2026 by rpki-client