This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft File: giq84EQXvhV7KDO6OwIw3iOEwkA.mft (raw, json) Hash identifier: d1kB3kJv4gMTxEb0CyHvO0Ruic1UWuw0+1LbNVNupFE= Subject key identifier: 22:0A:BF:D8:D4:7E:34:A1:A9:6E:72:21:D3:E3:1A:3B:8C:3F:E2:F8 Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0BDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft Manifest number: 0BD6 Signing time: Sat 24 Jan 2026 18:27:22 +0000 Manifest this update: Sat 24 Jan 2026 18:27:22 +0000 Manifest next update: Sat 31 Jan 2026 18:27:22 +0000 Files and hashes: 1: giq84EQXvhV7KDO6OwIw3iOEwkA.crl (hash: 1cH7adHVqI5TC0/LehS++gstj+NhtNs/3j2PoiXLJxc=) 2: BFB35A9831E011EA91E99C3CC4F9AE02.roa (hash: BaHDfNkjZ1fMZBSLRiFXON3hK0vL1pU4sF4hs/DbBBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1, serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Jan 24 18:27:22 2026 GMT Not After : Jan 31 18:27:22 2026 GMT Subject: CN=69750f0a-eb31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:9e:c3:df:70:82:96:8c:34:2f:f4:ef:6d: 6b:54:45:a4:e6:39:75:9e:8c:9f:d8:7f:5c:1c:92: a4:c5:46:ba:35:7b:47:91:28:c5:1a:a3:e5:36:46: 84:80:e1:cf:1f:d3:1c:b3:20:60:a0:53:3e:70:16: 04:3c:52:b9:f9:26:aa:e4:c8:bc:d9:6d:fa:d1:38: a9:8b:64:fc:c6:ac:e5:63:d4:2d:97:7c:60:7f:7e: 88:85:d2:47:e8:db:e9:c9:87:4a:b5:c5:b3:9a:d9: 5b:c8:b0:b6:88:46:12:4e:71:cd:e3:d5:22:5a:b3: 81:f8:35:89:70:6b:d3:b4:69:f9:3c:a4:be:38:47: 01:3d:9b:80:5d:fe:06:e6:02:f6:00:b6:f6:37:7a: e9:2a:ea:25:77:ff:f8:62:19:ed:ff:54:b2:4a:73: 09:4b:cb:f8:c0:db:ac:6b:40:3d:bf:9e:aa:23:bd: 3d:a8:a6:39:1e:c6:da:e3:5e:82:54:93:bc:1c:f9: 8f:be:2e:ee:dc:65:8b:14:12:53:30:f1:2a:e6:59: af:14:3a:b3:c5:82:c7:d8:ee:7b:fb:7d:27:1e:cd: 95:2b:8c:4f:3c:57:1b:3e:42:64:0f:b7:6c:ff:1c: 80:1e:79:84:02:99:4d:1b:48:a0:12:17:41:e7:e7: d3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0A:BF:D8:D4:7E:34:A1:A9:6E:72:21:D3:E3:1A:3B:8C:3F:E2:F8 X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:d6:a9:60:93:f1:9d:c6:c3:4b:b4:5c:da:43:37:58:10:8e: e9:e4:05:d1:d0:e7:8b:08:70:a9:57:d7:a5:0c:46:01:0b:60: 6c:08:0a:4f:22:b3:c3:38:8b:39:bc:20:77:f2:19:c7:c7:75: 32:50:4b:8c:d0:7c:74:06:95:d8:a5:5a:f8:84:cd:34:69:f8: d9:92:90:5f:ef:46:ba:96:fc:82:98:a2:53:a7:ce:29:39:1d: a4:60:bd:57:bb:01:d5:da:95:cc:93:41:88:dd:38:da:f2:83: c9:f1:e7:e6:2f:26:3f:72:db:05:a2:cf:d7:03:59:6c:df:4c: 66:87:8b:91:01:a8:10:76:ff:bf:58:91:27:ac:27:e3:b6:2b: 90:86:15:16:5b:f8:48:6f:5d:30:c7:17:6d:d5:7b:39:a0:f0: ce:52:e2:20:a9:85:1b:b1:21:8c:89:58:34:68:12:34:83:b9: 66:16:7e:b8:14:59:21:6d:1b:fc:4e:67:ba:0e:a4:4c:d0:6e: 53:9d:86:ee:7e:45:71:55:44:a8:6a:d1:91:d6:40:77:16:85: ba:28:c5:9d:e2:9d:b5:4f:83:bf:41:c5:99:53:c0:65:c9:4c: 88:70:9b:d0:c0:62:ee:d6:cd:0c:2e:5f:03:ed:8b:2f:ba:5f: a7:50:f5:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjYwMTI0MTgyNzIyWhcNMjYwMTMxMTgyNzIyWjAYMRYwFAYD VQQDDA02OTc1MGYwYS1lYjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypOew99wgpaMNC/0721rVEWk5jl1noyf2H9cHJKkxUa6NXtHkSjFGqPlNkaE gOHPH9McsyBgoFM+cBYEPFK5+Saq5Mi82W360Tipi2T8xqzlY9Qtl3xgf36IhdJH 6NvpyYdKtcWzmtlbyLC2iEYSTnHN49UiWrOB+DWJcGvTtGn5PKS+OEcBPZuAXf4G 5gL2ALb2N3rpKuold//4Yhnt/1SySnMJS8v4wNusa0A9v56qI709qKY5Hsba416C VJO8HPmPvi7u3GWLFBJTMPEq5lmvFDqzxYLH2O57+30nHs2VK4xPPFcbPkJkD7ds /xyAHnmEAplNG0igEhdB5+fTfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIKv9jU fjShqW5yIdPjGjuMP+L4MB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkNDMS8xNDk4RkM5RTMxRTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZo VjdLRE82T3dJdzNpT0V3a0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC11qlgk/GdxsNLtFzaQzdYEI7p5AXR0OeLCHCpV9elDEYBC2BsCApP IrPDOIs5vCB38hnHx3UyUEuM0Hx0BpXYpVr4hM00afjZkpBf70a6lvyCmKJTp84p OR2kYL1XuwHV2pXMk0GI3Tja8oPJ8efmLyY/ctsFos/XA1ls30xmh4uRAagQdv+/ WJEnrCfjtiuQhhUWW/hIb10wxxdt1Xs5oPDOUuIgqYUbsSGMiVg0aBI0g7lmFn64 FFkhbRv8Tme6DqRM0G5TnYbufkVxVUSoatGR1kB3FoW6KMWd4p21T4O/QcWZU8Bl yUyIcJvQwGLu1s0MLl8D7Ysvul+nUPW7 -----END CERTIFICATE-----Generated at Sun Jan 25 02:58:50 2026 by rpki-client