This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: NGRxlnH5sGLmmkv7i+Y22tYVb0FtKNHiZSE1rRdJQGQ= Subject key identifier: 34:6E:78:08:FC:98:E0:DA:61:A0:A0:24:53:FF:19:74:58:D0:02:7A Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0AB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0AAA Signing time: Sat 24 Jan 2026 19:00:38 +0000 Manifest this update: Sat 24 Jan 2026 19:00:37 +0000 Manifest next update: Sat 31 Jan 2026 19:00:37 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: NERsq2IERGg6+tQDtJJ3iex9cdrzjeRlcUG7nkMZgoc=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) 3: 4A644958BA0311F084B11F0DC4F9AE02.roa (hash: Clegtkn9PCF2aAQpIGyhbE89o6/DeR6UqKiXB0Quw9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2742 (0xab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Jan 24 19:00:37 2026 GMT Not After : Jan 31 19:00:37 2026 GMT Subject: CN=697516d5-2d82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:61:a7:ed:69:1b:ff:a9:e6:31:d8:bc:47: 88:20:eb:fa:3e:53:70:2a:55:b1:c9:59:60:c9:1d: 27:f2:09:1f:aa:c0:5e:f3:e6:76:f4:d5:80:68:00: ab:e8:b0:ec:96:b4:20:2d:3e:96:ea:43:7e:3b:e3: 94:d3:fb:cf:01:74:7a:b3:74:60:fc:c2:3f:73:d2: 13:9d:d6:40:72:d0:2d:1c:a5:8e:16:90:5b:0f:9e: b9:8c:c2:76:3c:e8:dd:55:09:5d:5c:f6:5b:44:c6: e3:a1:12:5b:f7:88:b6:9d:7a:b2:b4:14:42:d0:48: 38:7e:51:6f:15:94:04:45:5e:e1:15:c6:44:5b:46: 6b:56:24:55:fb:5f:78:3f:11:86:d0:de:da:5f:d5: df:1c:b4:2e:e0:11:d3:5f:c8:5e:11:69:84:3a:f9: 2f:d1:34:c9:52:17:65:e7:e1:b9:2c:59:7a:66:1e: d3:71:c8:25:69:95:6d:0a:1b:c8:aa:9f:b7:0c:d5: 7c:ff:d0:32:19:d1:9e:b9:47:0f:2f:93:0e:68:6b: 58:68:0f:a9:28:0f:e2:46:58:f0:d5:06:03:f7:92: 5a:e1:f2:5c:79:6b:86:aa:18:54:7f:ad:63:c7:67: 78:21:fb:3c:39:be:38:01:22:2a:8b:84:1f:7d:22: 6b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6E:78:08:FC:98:E0:DA:61:A0:A0:24:53:FF:19:74:58:D0:02:7A X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a2:2f:1a:6e:5e:63:47:77:8b:af:07:4c:b2:7f:f0:b9:f2: dc:c4:a7:ba:cb:d6:98:ec:11:d1:b2:98:ce:05:aa:9a:3e:9f: 49:e4:65:99:ed:06:65:9f:b5:a0:92:9d:da:d3:f2:bd:84:53: 19:2f:f1:af:fd:e5:80:67:fb:58:72:c3:98:b3:ce:2d:e6:ae: cb:4a:c7:b9:57:cc:37:e6:eb:14:67:ae:2a:8b:61:c7:eb:53: 65:a1:57:23:3e:48:fc:c8:24:31:5b:19:3a:62:19:6c:90:61: 2b:70:d1:f6:c1:e1:8c:ad:33:a3:df:16:78:b3:50:ae:86:5f: df:14:c8:97:45:53:17:84:b0:99:c5:aa:2a:7d:fe:60:84:f0: 3c:b7:46:7b:66:c5:9c:b4:32:79:c6:a9:cb:13:49:30:50:b4: e3:a9:73:5f:44:12:d4:8a:84:e0:7e:34:6c:03:67:e0:7d:6d: 53:f6:c9:a8:e0:74:2f:16:2e:78:1f:21:b1:6a:27:d4:16:95: 8e:ca:1d:eb:88:7e:7e:55:25:2f:3f:03:8a:c9:b5:97:82:ec: 02:1e:1b:88:15:84:63:63:f8:ce:99:d5:62:6d:29:71:98:4c: 93:fe:0b:b6:92:62:08:1e:9f:9a:21:95:2b:84:b5:0f:de:d7: dd:d6:65:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjYwMTI0MTkwMDM3WhcNMjYwMTMxMTkwMDM3WjAYMRYwFAYD VQQDDA02OTc1MTZkNS0yZDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3xhp+1pG/+p5jHYvEeIIOv6PlNwKlWxyVlgyR0n8gkfqsBe8+Z29NWAaACr 6LDslrQgLT6W6kN+O+OU0/vPAXR6s3Rg/MI/c9ITndZActAtHKWOFpBbD565jMJ2 POjdVQldXPZbRMbjoRJb94i2nXqytBRC0Eg4flFvFZQERV7hFcZEW0ZrViRV+194 PxGG0N7aX9XfHLQu4BHTX8heEWmEOvkv0TTJUhdl5+G5LFl6Zh7TccglaZVtChvI qp+3DNV8/9AyGdGeuUcPL5MOaGtYaA+pKA/iRljw1QYD95Ja4fJceWuGqhhUf61j x2d4Ifs8Ob44ASIqi4QffSJr8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRueAj8 mODaYaCgJFP/GXRY0AJ6MB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfoi8abl5jR3eLrwdMsn/wufLcxKe6y9aY7BHRspjOBaqaPp9J5GWZ 7QZln7Wgkp3a0/K9hFMZL/Gv/eWAZ/tYcsOYs84t5q7LSse5V8w35usUZ64qi2HH 61NloVcjPkj8yCQxWxk6YhlskGErcNH2weGMrTOj3xZ4s1Cuhl/fFMiXRVMXhLCZ xaoqff5ghPA8t0Z7ZsWctDJ5xqnLE0kwULTjqXNfRBLUioTgfjRsA2fgfW1T9smo 4HQvFi54HyGxaifUFpWOyh3riH5+VSUvPwOKybWXguwCHhuIFYRjY/jOmdVibSlx mEyT/gu2kmIIHp+aIZUrhLUP3tfd1mUW -----END CERTIFICATE-----Generated at Sun Jan 25 04:27:05 2026 by rpki-client