This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: zrIYjQtIQjVfbQfuba3yfa6Q/uSj9m30clIr+Ri+zRo= Subject key identifier: 30:59:2B:D3:FC:74:48:82:88:67:1B:35:63:AC:86:D3:0E:BA:F0:02 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2CB5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2CB2 Signing time: Sat 24 Jan 2026 14:25:30 +0000 Manifest this update: Sat 24 Jan 2026 14:25:30 +0000 Manifest next update: Sat 31 Jan 2026 14:25:30 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: KHCp22SkirzeIErv5YgUjXyTbbqbRz7/SHdS+0wN5ZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11445 (0x2cb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Jan 24 14:25:30 2026 GMT Not After : Jan 31 14:25:30 2026 GMT Subject: CN=6974d65a-6d5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fd:9e:63:32:5b:d1:05:33:f0:10:d7:eb:c0: f6:f1:c3:e0:ff:75:fa:75:c1:8a:ce:f3:d3:e8:05: 95:74:4a:57:cd:08:78:df:44:3a:8e:57:e4:da:76: 46:4a:13:82:02:99:63:28:d7:43:4c:8b:fc:ad:16: 7d:ce:93:9c:88:f1:f1:fc:b0:dc:d4:2a:11:74:94: 19:0f:4a:7f:5f:4b:2f:20:03:62:e3:cc:d1:6a:57: e7:8d:b4:18:a4:ca:55:08:61:80:ca:4e:41:c3:53: e8:8b:63:e3:eb:09:a4:ee:4e:f7:07:4d:cc:8c:c8: 32:2a:9a:55:fc:11:e6:49:5d:b3:5e:c5:86:19:00: 19:ec:07:e8:cd:49:f2:1b:00:54:fb:e8:e2:3d:ad: 01:55:bf:3a:1e:53:2d:bc:d0:72:76:ae:37:25:4b: 18:5b:0f:73:6e:c3:05:77:b6:7f:8f:d0:29:e9:34: d1:d3:73:1c:a5:9c:80:b0:c8:88:ff:dc:de:4d:1e: 95:d1:df:66:43:fc:18:db:80:f4:ee:e7:f3:7c:af: f3:7e:78:36:12:09:e2:56:12:c0:4c:2e:b1:8c:d0: 99:88:b9:af:21:03:18:a5:fa:45:ed:5b:0f:1b:96: 55:03:0a:b2:03:83:dc:ac:e3:07:f9:8a:b8:6e:02: 1c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:59:2B:D3:FC:74:48:82:88:67:1B:35:63:AC:86:D3:0E:BA:F0:02 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:44:7d:62:cc:f7:e6:3a:90:f3:04:ad:6a:8b:62:0c:81:43: ce:e9:fe:f2:e1:0f:44:8a:9c:9e:06:14:e9:f5:8c:12:bc:58: 41:33:2d:2e:3b:19:d7:61:60:0f:43:ce:8a:95:a3:8b:2b:82: 5c:11:20:7a:ee:dc:0d:aa:31:a5:56:4f:5d:03:1f:00:6c:c0: fc:ea:d2:48:94:60:be:5a:a2:ef:8a:d7:9a:08:30:e0:af:e5: e4:ec:0b:08:37:28:1b:b5:bf:3b:77:1a:44:c0:7f:28:83:9e: f8:c0:ad:d4:e2:fd:65:cd:cc:46:8e:6a:1e:57:f6:48:af:c2: 30:ef:e1:97:76:6a:67:70:11:65:61:c9:f9:d9:5e:b4:12:33: 9c:82:c0:11:27:69:32:16:f8:50:e2:03:c4:64:04:25:94:41: ad:69:08:2f:0e:c4:ca:29:2a:1c:5c:75:82:52:90:d5:12:a2: a8:cd:2e:2f:35:3f:44:34:73:dc:bd:69:e6:2a:9b:23:9b:4a: 1d:e0:eb:64:fc:dd:3a:ae:43:06:21:9b:94:bb:6c:8f:5a:ca: 83:61:42:ae:b2:ed:4a:01:77:6c:dc:af:3d:17:c6:a4:8a:6f: cc:44:55:ca:c8:23:d8:dc:ce:1b:dc:6a:2a:36:f8:13:67:71: 58:96:fb:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjYwMTI0MTQyNTMwWhcNMjYwMTMxMTQyNTMwWjAYMRYwFAYD VQQDDA02OTc0ZDY1YS02ZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2f2eYzJb0QUz8BDX68D28cPg/3X6dcGKzvPT6AWVdEpXzQh430Q6jlfk2nZG ShOCApljKNdDTIv8rRZ9zpOciPHx/LDc1CoRdJQZD0p/X0svIANi48zRalfnjbQY pMpVCGGAyk5Bw1Poi2Pj6wmk7k73B03MjMgyKppV/BHmSV2zXsWGGQAZ7AfozUny GwBU++jiPa0BVb86HlMtvNBydq43JUsYWw9zbsMFd7Z/j9Ap6TTR03McpZyAsMiI /9zeTR6V0d9mQ/wY24D07ufzfK/zfng2EgniVhLATC6xjNCZiLmvIQMYpfpF7VsP G5ZVAwqyA4PcrOMH+Yq4bgIcAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBZK9P8 dEiCiGcbNWOshtMOuvACMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLRH1izPfmOpDzBK1qi2IMgUPO6f7y4Q9EipyeBhTp9YwSvFhBMy0u OxnXYWAPQ86KlaOLK4JcESB67twNqjGlVk9dAx8AbMD86tJIlGC+WqLviteaCDDg r+Xk7AsINygbtb87dxpEwH8og574wK3U4v1lzcxGjmoeV/ZIr8Iw7+GXdmpncBFl Ycn52V60EjOcgsARJ2kyFvhQ4gPEZAQllEGtaQgvDsTKKSocXHWCUpDVEqKozS4v NT9ENHPcvWnmKpsjm0od4Otk/N06rkMGIZuUu2yPWsqDYUKusu1KAXds3K89F8ak im/MRFXKyCPY3M4b3GoqNvgTZ3FYlvvV -----END CERTIFICATE-----Generated at Sun Jan 25 23:22:16 2026 by rpki-client