This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft File: aCDlNpQmEvNLA3PdH3ftI0_981w.mft (raw, json) Hash identifier: aJjY9cqhK4MbfiX58OUzj7wZzwN6ZgK/OPEJmxBKhDQ= Subject key identifier: 6F:AE:A5:2E:28:D9:B0:1B:1E:87:B8:92:35:B2:11:90:90:D0:F4:C3 Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 04BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft Manifest number: 04B8 Signing time: Sat 24 Jan 2026 23:08:36 +0000 Manifest this update: Sat 24 Jan 2026 23:08:36 +0000 Manifest next update: Sat 31 Jan 2026 23:08:36 +0000 Files and hashes: 1: aCDlNpQmEvNLA3PdH3ftI0_981w.crl (hash: +GpWjZiq1LgWuz5TXnhXnaBfM4B3X0zBn/f/ijlWrNQ=) 2: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (hash: 252kB+fX+BBhzn4gsCNSBIXgmIL37+s/mdPS5IK/AQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: Jan 24 23:08:36 2026 GMT Not After : Jan 31 23:08:36 2026 GMT Subject: CN=697550f4-2328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a7:bb:71:3a:b6:f7:ae:14:a7:5c:97:1b:9c: 56:bb:6d:73:bb:ce:ac:9b:55:18:85:34:a2:ed:a7: 51:c0:49:f6:0c:fd:5c:18:6f:62:97:e6:71:01:8d: dd:52:36:6c:9f:7d:13:26:5b:cd:01:c6:bc:03:bc: 8f:b1:90:76:46:40:d9:11:6c:1a:96:96:c6:27:3a: 63:c8:66:ad:cd:14:3b:c6:cb:63:3b:d1:04:c6:af: a1:06:38:b6:8e:04:65:83:89:fd:7f:e9:78:dd:e2: 1e:13:f6:85:30:dd:98:21:df:5a:f7:b3:e2:f6:cb: 51:4d:27:95:a6:cb:9b:40:a7:13:a1:28:2b:30:e7: ae:a8:5e:8e:2f:81:a7:99:0c:bf:6e:dd:86:b6:05: e2:9e:25:f2:bf:6d:6e:29:e6:2e:7b:ab:18:ee:2e: 73:07:52:3c:ea:94:37:cf:85:e9:14:29:0d:4e:f3: 9c:b5:21:85:89:e4:21:49:48:4c:73:f8:16:9e:e3: e5:c6:62:b7:34:76:42:29:d2:9e:8b:f2:07:1b:c8: c9:9c:56:d6:29:49:c4:90:7c:c3:4b:9e:c3:1d:dc: 21:8b:de:e7:ec:ce:c2:4f:cb:00:c1:e4:c4:e0:25: e4:4a:63:16:b4:e6:9e:c0:16:36:e9:5f:94:a6:b8: ba:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:AE:A5:2E:28:D9:B0:1B:1E:87:B8:92:35:B2:11:90:90:D0:F4:C3 X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ce:28:1a:3a:3e:99:b5:77:e1:49:5c:07:d7:91:1b:6c:01: 02:5e:c2:82:42:4a:12:40:de:ab:41:27:8a:a5:23:2e:d8:54: 8f:4b:44:59:bd:78:ea:ab:3c:e7:83:1e:ca:8e:5b:51:f3:35: 80:47:ec:7d:19:6f:dd:1e:fc:59:9b:b1:2e:48:a2:41:8d:9d: 55:b8:71:10:82:1d:30:1d:95:bc:36:42:9f:5f:0e:03:1f:d1: 25:2f:f8:94:68:7c:50:1f:9e:2a:58:af:d6:ed:71:63:41:59: c2:07:e2:63:65:d3:98:2b:92:62:c9:f8:bc:f6:54:a8:8c:98: 84:89:91:1b:ee:a0:a3:9c:22:49:60:c0:f4:bb:65:2e:74:9f: fc:ba:23:5d:4b:10:f1:a4:58:33:08:ce:09:d6:da:cb:b1:42: a5:8e:88:26:aa:93:18:a8:7a:41:11:ab:c6:25:36:e5:dc:8c: c9:56:be:f8:65:07:ff:81:76:0d:7d:fe:09:bd:29:18:cd:c9: 43:b2:91:f3:da:02:f0:ba:be:71:25:12:94:1c:81:2c:4b:83: c8:a8:b0:d1:51:14:72:b2:b6:6c:9c:5a:54:56:4c:1b:08:e9: c9:f4:fa:d7:ee:57:99:d7:38:c7:1f:72:6e:0d:6e:48:b7:93: 89:d4:eb:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjYwMTI0MjMwODM2WhcNMjYwMTMxMjMwODM2WjAYMRYwFAYD VQQDDA02OTc1NTBmNC0yMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6e7cTq2964Up1yXG5xWu21zu86sm1UYhTSi7adRwEn2DP1cGG9il+ZxAY3d UjZsn30TJlvNAca8A7yPsZB2RkDZEWwalpbGJzpjyGatzRQ7xstjO9EExq+hBji2 jgRlg4n9f+l43eIeE/aFMN2YId9a97Pi9stRTSeVpsubQKcToSgrMOeuqF6OL4Gn mQy/bt2GtgXiniXyv21uKeYue6sY7i5zB1I86pQ3z4XpFCkNTvOctSGFieQhSUhM c/gWnuPlxmK3NHZCKdKei/IHG8jJnFbWKUnEkHzDS57DHdwhi97n7M7CT8sAweTE 4CXkSmMWtOaewBY26V+Upri6rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+upS4o 2bAbHoe4kjWyEZCQ0PTDMB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjhDOS80QjRENzEyQTVDREIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2 TkxBM1BkSDNmdEkwXzk4MXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbzigaOj6ZtXfhSVwH15EbbAECXsKCQkoSQN6rQSeKpSMu2FSPS0RZ vXjqqzzngx7KjltR8zWAR+x9GW/dHvxZm7EuSKJBjZ1VuHEQgh0wHZW8NkKfXw4D H9ElL/iUaHxQH54qWK/W7XFjQVnCB+JjZdOYK5Jiyfi89lSojJiEiZEb7qCjnCJJ YMD0u2UudJ/8uiNdSxDxpFgzCM4J1trLsUKljogmqpMYqHpBEavGJTbl3IzJVr74 ZQf/gXYNff4JvSkYzclDspHz2gLwur5xJRKUHIEsS4PIqLDRURRysrZsnFpUVkwb COnJ9PrX7leZ1zjHH3JuDW5It5OJ1Osm -----END CERTIFICATE-----Generated at Sun Jan 25 07:50:08 2026 by rpki-client