This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: e4+OilRwccMaNtmdNjYtt7LZvLf2z9ehUS6bpLWuxHk= Subject key identifier: 63:78:B9:BD:3D:3B:7F:C7:8D:90:66:7D:B3:7D:47:2E:0F:3B:DB:84 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: DA Signing time: Sun 25 Jan 2026 04:51:17 +0000 Manifest this update: Sun 25 Jan 2026 04:51:17 +0000 Manifest next update: Sun 01 Feb 2026 04:51:17 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: v1zGnKh+vFs46/jV2kiaReS43GhfkVxRU8+piZ1+VeY=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: 1NC7oxcWCYbSrIDO89YNV0w8KqRVSyDIVR5Yl6QmGd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Jan 25 04:51:17 2026 GMT Not After : Feb 1 04:51:17 2026 GMT Subject: CN=6975a145-6763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:eb:ca:ab:b2:f8:6e:21:9f:5a:6f:05:2f:22: de:72:a7:f5:69:2e:f7:26:ef:b1:aa:60:2f:50:79: 34:06:e1:33:cf:17:4a:b7:c7:22:a3:94:8b:04:3a: a9:e5:31:88:f9:76:65:9a:a3:5c:66:5d:cf:1f:68: 32:6c:3c:b5:69:cd:f1:06:f4:8d:54:c6:af:64:1c: 10:1e:f9:6f:4d:a6:43:53:4f:85:2d:91:58:ee:09: 8b:af:a5:0d:c3:33:09:8e:06:f8:44:71:76:c2:51: 5c:40:02:68:19:05:fd:0c:66:6d:ec:dc:af:2b:ab: a7:2f:99:cd:75:50:a4:33:f8:30:50:75:39:44:dd: 61:5f:bc:96:05:41:cf:57:5b:7c:b3:49:0c:5d:8e: f8:d1:20:da:45:6b:5e:97:1e:36:10:11:ac:1c:1c: 22:af:68:8b:bd:f4:d9:12:b3:18:ac:8f:ac:b3:1f: 46:47:d2:c6:55:0e:e5:4d:ae:2d:2b:cf:31:98:48: 29:6e:83:6d:0a:b4:c1:6f:dd:84:f0:e5:7b:c6:44: 23:b2:6e:3c:92:76:1e:c9:1b:54:08:bf:2a:b2:76: 63:29:99:ff:22:8f:e2:fc:50:68:39:46:d6:c3:52: 9f:83:35:fc:b2:7d:b7:42:52:ba:1a:b2:19:3e:16: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:78:B9:BD:3D:3B:7F:C7:8D:90:66:7D:B3:7D:47:2E:0F:3B:DB:84 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:67:4d:41:d0:a5:fe:b6:8b:5f:a0:1b:6f:4c:bd:7e:3c:b3: 6a:d1:df:eb:bc:51:54:ff:f2:92:fc:b9:2b:23:43:e1:bc:77: 42:50:48:fa:3e:af:ce:9d:5c:f0:33:e8:9a:a1:aa:42:9e:6b: 6a:75:ab:0f:28:5e:ce:67:36:d8:40:98:f8:26:e4:f5:d3:74: a7:01:a5:ba:59:c0:75:96:d8:6f:ab:10:86:6b:aa:87:a1:fe: 5a:b8:6b:e7:4c:16:6f:43:d1:cd:0f:a6:33:fb:32:43:31:e0: b6:97:d8:9b:c2:2f:67:46:35:f7:5c:64:22:e7:c5:9f:88:e9: 3a:7e:09:a2:37:8d:5f:e0:d3:5b:98:87:c7:33:64:49:b6:ec: 1c:ad:80:ed:a4:ca:24:07:8f:4f:3d:7d:71:a3:c4:29:55:9d: 58:fa:c2:0a:83:e9:19:99:79:6d:c0:71:b6:7d:e0:79:4a:ac: 44:1b:90:28:8d:2b:fe:4e:4f:10:e0:50:8b:e2:e9:f4:1e:6f: 88:4d:00:74:4b:65:90:c3:4a:01:12:dc:6b:a3:95:68:03:09: a4:2f:31:c4:12:d1:b5:53:17:21:d4:34:53:d4:5f:8c:34:57: 65:29:86:d1:46:09:6b:99:51:4d:de:2f:38:dd:c1:af:79:3e: d6:c7:41:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjYwMTI1MDQ1MTE3WhcNMjYwMjAxMDQ1MTE3WjAYMRYwFAYD VQQDDA02OTc1YTE0NS02NzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+vKq7L4biGfWm8FLyLecqf1aS73Ju+xqmAvUHk0BuEzzxdKt8cio5SLBDqp 5TGI+XZlmqNcZl3PH2gybDy1ac3xBvSNVMavZBwQHvlvTaZDU0+FLZFY7gmLr6UN wzMJjgb4RHF2wlFcQAJoGQX9DGZt7NyvK6unL5nNdVCkM/gwUHU5RN1hX7yWBUHP V1t8s0kMXY740SDaRWtelx42EBGsHBwir2iLvfTZErMYrI+ssx9GR9LGVQ7lTa4t K88xmEgpboNtCrTBb92E8OV7xkQjsm48knYeyRtUCL8qsnZjKZn/Io/i/FBoOUbW w1KfgzX8sn23QlK6GrIZPhb0swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN4ub09 O3/HjZBmfbN9Ry4PO9uEMB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZZ01B0KX+totfoBtvTL1+PLNq0d/rvFFU//KS/LkrI0PhvHdCUEj6 Pq/OnVzwM+iaoapCnmtqdasPKF7OZzbYQJj4JuT103SnAaW6WcB1lthvqxCGa6qH of5auGvnTBZvQ9HND6Yz+zJDMeC2l9ibwi9nRjX3XGQi58WfiOk6fgmiN41f4NNb mIfHM2RJtuwcrYDtpMokB49PPX1xo8QpVZ1Y+sIKg+kZmXltwHG2feB5SqxEG5Ao jSv+Tk8Q4FCL4un0Hm+ITQB0S2WQw0oBEtxro5VoAwmkLzHEEtG1Uxch1DRT1F+M NFdlKYbRRglrmVFN3i843cGveT7Wx0G9 -----END CERTIFICATE-----Generated at Sun Jan 25 11:53:37 2026 by rpki-client