This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: 8uj68Qa5SgnkgKVNPkc5+07zdC2ccI8PQ9sOEj1U0x8= Subject key identifier: B0:97:70:73:7C:08:3B:75:84:E2:42:D3:E2:DA:B4:63:24:F5:4E:E7 Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 06CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 06C3 Signing time: Sat 24 Jan 2026 21:34:14 +0000 Manifest this update: Sat 24 Jan 2026 21:34:13 +0000 Manifest next update: Sat 31 Jan 2026 21:34:13 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: jUob1ZIbjcYKv1pbwTmmBx90WjQTSia2Hvx6VwgT9lk=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: 3IT5sXfzQ0Hxvtz12P+0YoEVny7bB7FC9cV7U/XrkKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Jan 24 21:34:13 2026 GMT Not After : Jan 31 21:34:13 2026 GMT Subject: CN=69753ad6-e83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e2:fb:bf:9d:0b:da:b0:e2:0f:78:1a:39:f3: 4e:da:e7:e9:5e:9b:16:4d:78:fe:2f:03:08:32:95: ae:db:47:c3:64:e5:cb:a8:dd:30:e5:90:1b:ee:f9: 17:ac:01:0d:be:d0:63:f8:fe:c2:c6:50:62:ef:4d: 67:32:1e:79:de:b8:ba:9a:88:49:9e:8b:cd:8b:7c: a7:66:e6:7e:22:64:41:85:c7:7b:36:9f:f6:ed:bc: 5b:0a:5c:4b:12:aa:25:88:27:e3:95:f8:3d:b5:d8: 36:0e:88:49:09:45:50:29:3b:66:b8:67:99:da:b2: f7:20:78:be:39:dd:8e:54:fb:8d:7c:39:6b:a5:f4: 14:cd:78:2a:80:76:90:02:f2:03:98:a7:26:d1:66: e7:81:38:09:70:c5:88:52:84:3d:a3:5e:a7:c9:dd: 15:c6:56:bf:08:3a:f1:0a:d9:c9:9b:4e:4e:c6:4c: 43:a4:08:d6:56:84:4b:e2:fe:54:ac:11:d2:68:7e: dd:99:4c:4c:cc:bd:3a:69:e3:1c:c5:63:92:50:bd: 11:13:fb:78:b4:83:11:3a:71:ed:1b:21:6e:2a:8d: cf:41:52:db:9d:7b:5d:30:93:aa:d2:b3:ab:bd:25: f0:aa:78:62:8b:79:ad:a1:f3:ea:c8:67:d2:a5:fa: 0c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:97:70:73:7C:08:3B:75:84:E2:42:D3:E2:DA:B4:63:24:F5:4E:E7 X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e2:20:22:c7:9b:82:53:97:97:a5:3b:ee:06:6b:72:14:2b: 9e:f6:b6:1e:a2:fc:44:c8:45:b3:6b:c9:66:1a:0b:48:c2:61: 95:79:12:51:09:11:67:42:7d:5a:6e:fc:ba:df:64:c0:7e:25: d5:c7:14:d8:80:09:9a:09:87:1c:25:e6:d7:40:d0:a0:6c:0a: 71:43:a2:05:9a:ae:87:fd:29:a9:84:40:ae:03:0e:a6:af:bd: fa:72:d5:45:1c:26:95:9e:42:54:59:c4:54:f1:00:dc:3f:ac: 4c:47:8c:2a:92:b6:fd:63:7a:c0:56:70:9d:27:af:fa:e7:cc: 54:84:44:70:79:43:ee:fb:19:4c:1f:6c:41:38:91:39:e7:38: 86:3c:b8:de:a6:be:10:2b:1a:1f:8f:cd:47:09:35:5e:54:e2: f8:ff:f7:a3:d0:99:f1:e3:99:da:32:ab:46:f5:59:c3:4a:d3: 71:e1:a8:fc:b0:f0:fe:c0:e7:64:fd:c3:c7:62:64:2e:72:7e: 31:e3:0d:5f:81:20:5f:7a:91:ad:df:4e:30:02:44:2b:bf:06: 6d:13:3e:a2:02:a8:f3:11:36:52:53:de:6e:2e:da:fc:d7:ab: 8b:8d:64:45:ae:ab:df:54:24:6f:18:15:8b:99:a7:42:41:ac: c9:ca:b3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjYwMTI0MjEzNDEzWhcNMjYwMTMxMjEzNDEzWjAYMRYwFAYD VQQDDA02OTc1M2FkNi1lODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuL7v50L2rDiD3gaOfNO2ufpXpsWTXj+LwMIMpWu20fDZOXLqN0w5ZAb7vkX rAENvtBj+P7CxlBi701nMh553ri6mohJnovNi3ynZuZ+ImRBhcd7Np/27bxbClxL EqoliCfjlfg9tdg2DohJCUVQKTtmuGeZ2rL3IHi+Od2OVPuNfDlrpfQUzXgqgHaQ AvIDmKcm0WbngTgJcMWIUoQ9o16nyd0Vxla/CDrxCtnJm05OxkxDpAjWVoRL4v5U rBHSaH7dmUxMzL06aeMcxWOSUL0RE/t4tIMROnHtGyFuKo3PQVLbnXtdMJOq0rOr vSXwqnhii3mtofPqyGfSpfoMcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCXcHN8 CDt1hOJC0+LatGMk9U7nMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy4iAix5uCU5eXpTvuBmtyFCue9rYeovxEyEWza8lmGgtIwmGVeRJR CRFnQn1abvy632TAfiXVxxTYgAmaCYccJebXQNCgbApxQ6IFmq6H/SmphECuAw6m r736ctVFHCaVnkJUWcRU8QDcP6xMR4wqkrb9Y3rAVnCdJ6/658xUhERweUPu+xlM H2xBOJE55ziGPLjepr4QKxofj81HCTVeVOL4//ej0Jnx45naMqtG9VnDStNx4aj8 sPD+wOdk/cPHYmQucn4x4w1fgSBfepGt304wAkQrvwZtEz6iAqjzETZSU95uLtr8 16uLjWRFrqvfVCRvGBWLmadCQazJyrMz -----END CERTIFICATE-----Generated at Sun Jan 25 18:26:50 2026 by rpki-client