This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: oVL5VM2iay2BAsm4OQyRITkNfjWj3/ctDu3Zf2GqylM= Subject key identifier: 28:4A:26:42:DD:A8:C3:8A:77:6C:B7:14:BE:1F:50:25:5F:DD:74:D4 Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: CC Signing time: Sat 24 Jan 2026 21:58:21 +0000 Manifest this update: Sat 24 Jan 2026 21:58:21 +0000 Manifest next update: Sat 31 Jan 2026 21:58:21 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: tCQ+WWR5hYnVsZqHIwPFGasX9SbHZ5eoCPhvLGxe5aI=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: OViblnR/lHFk4KXUmFXJa3gycbDpdzSeFdas4fvP/W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Jan 24 21:58:21 2026 GMT Not After : Jan 31 21:58:21 2026 GMT Subject: CN=6975407d-034c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:b1:c6:dd:28:f3:dc:06:70:92:75:8d:c2: c4:b5:43:f3:4d:5f:4f:72:a6:f5:bf:97:bd:91:c8: c4:a4:e5:fd:30:d3:ab:db:b2:aa:db:f6:63:08:58: e3:88:c8:51:50:cf:ca:36:59:50:4e:bb:5b:fb:f2: 00:5d:d4:17:d3:a9:4d:f5:00:fd:f6:4c:09:c6:7c: 2c:47:22:2f:1b:fb:0e:8b:93:2e:17:e5:ab:d3:95: 87:04:72:26:97:99:b2:0a:b5:ba:5b:19:ac:00:d4: bf:3a:a2:52:41:da:a9:e7:35:48:86:dc:50:60:66: 56:00:ce:91:49:82:6e:8e:cb:2a:84:12:6c:22:22: c1:4c:9e:6a:9a:22:02:f6:bd:63:c9:13:0e:2f:47: 1f:a0:d9:51:ba:75:f2:7a:b1:11:e0:cb:62:4b:6a: 8d:96:8c:6c:b0:96:a5:ee:f4:c7:ea:bf:89:21:5b: e9:a3:de:9e:79:52:a9:1a:bf:c0:69:7c:54:6b:a9: 96:c0:ce:bd:61:7b:cf:54:57:ce:11:4c:1b:85:c2: c5:2a:d6:14:23:29:b8:dc:33:41:57:a4:3b:8d:1b: 64:54:87:47:b0:d4:87:af:ad:b4:8f:43:98:b6:fe: 12:6a:bf:cf:c4:4c:16:9d:0f:84:f1:4e:9f:92:fb: 59:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4A:26:42:DD:A8:C3:8A:77:6C:B7:14:BE:1F:50:25:5F:DD:74:D4 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:ae:2b:a0:37:7d:7c:be:b3:17:8a:9a:07:25:65:54:dc:58: 87:a1:13:90:4c:08:c2:7b:60:75:9d:0a:db:8e:bb:ba:41:2c: 25:da:36:95:26:dc:8c:a9:31:50:64:cf:98:c3:1b:4c:bc:cc: b5:42:ca:a0:5b:0b:87:36:7a:f8:e6:c2:22:92:b9:11:56:6f: 9d:37:20:f9:fe:e5:76:55:f9:9f:cd:5a:b7:8e:1a:81:71:6e: 6c:0d:46:7d:f1:9f:d3:b9:51:67:02:a0:4d:68:77:3e:fd:ee: 30:9d:1d:c5:00:c2:d4:db:3b:e6:1d:99:2f:a4:e3:29:f2:96: 7c:fa:a2:c6:2f:09:c4:21:38:38:98:77:0f:87:e9:d3:64:96: 80:57:98:e7:ba:45:5c:0d:c9:52:93:88:d0:22:b2:72:26:a3: 70:f2:37:8e:c0:b5:74:ff:32:35:41:2c:01:90:7f:8d:b5:87: 4e:a1:cb:6f:2a:4e:65:dc:5c:c4:4a:99:fe:b4:2f:dc:5f:5c: db:7a:ce:85:6b:17:2a:09:ce:71:68:58:d0:2b:08:4e:dc:b1: 6f:50:de:83:a4:70:64:a0:dc:e7:a9:c0:a1:f9:36:f2:a1:66: c2:b3:01:a1:ad:39:64:a8:7c:66:7f:57:9c:c9:1c:df:27:e3: 5f:6a:82:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKDY4NDEzRDQxRjYwMDVFMDMxNkUwRTI1NzZGMjI2QzIx ODhBQTE1NkYwHhcNMjYwMTI0MjE1ODIxWhcNMjYwMTMxMjE1ODIxWjAYMRYwFAYD VQQDDA02OTc1NDA3ZC0wMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVuxxt0o89wGcJJ1jcLEtUPzTV9Pcqb1v5e9kcjEpOX9MNOr27Kq2/ZjCFjj iMhRUM/KNllQTrtb+/IAXdQX06lN9QD99kwJxnwsRyIvG/sOi5MuF+Wr05WHBHIm l5myCrW6WxmsANS/OqJSQdqp5zVIhtxQYGZWAM6RSYJujssqhBJsIiLBTJ5qmiIC 9r1jyRMOL0cfoNlRunXyerER4MtiS2qNloxssJal7vTH6r+JIVvpo96eeVKpGr/A aXxUa6mWwM69YXvPVFfOEUwbhcLFKtYUIym43DNBV6Q7jRtkVIdHsNSHr620j0OY tv4Sar/PxEwWnQ+E8U6fkvtZ+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChKJkLd qMOKd2y3FL4fUCVf3XTUMB8GA1UdIwQYMBaAFGhBPUH2AF4DFuDiV28ibCGIqhVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi9GNjk5RTM1NENG MTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhnTVc0T0pYYnlKc0lZaXFG VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhn TVc0T0pYYnlKc0lZaXFGVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFriugN318vrMXipoHJWVU3FiHoROQTAjCe2B1nQrbjru6QSwl2jaV JtyMqTFQZM+YwxtMvMy1QsqgWwuHNnr45sIikrkRVm+dNyD5/uV2VfmfzVq3jhqB cW5sDUZ98Z/TuVFnAqBNaHc+/e4wnR3FAMLU2zvmHZkvpOMp8pZ8+qLGLwnEITg4 mHcPh+nTZJaAV5jnukVcDclSk4jQIrJyJqNw8jeOwLV0/zI1QSwBkH+NtYdOoctv Kk5l3FzESpn+tC/cX1zbes6FaxcqCc5xaFjQKwhO3LFvUN6DpHBkoNznqcCh+Tby oWbCswGhrTlkqHxmf1ecyRzfJ+NfaoID -----END CERTIFICATE-----Generated at Sun Jan 25 11:53:53 2026 by rpki-client