This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: FvCYn/qLO8QghixW4Wbabs6hUneZhnGksZh0Qwgl2N8= Subject key identifier: 6A:D7:D1:32:2E:20:E2:17:6B:83:F7:87:18:CA:C5:09:AB:E5:D2:9C Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 1214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 1207 Signing time: Sat 24 Jan 2026 16:52:04 +0000 Manifest this update: Sat 24 Jan 2026 16:52:04 +0000 Manifest next update: Sat 31 Jan 2026 16:52:04 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: iDjxBEGiC3VdNivZU7f0Y4TZsEwcESpqlHFue+8/J6A=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: sN73Ezcu1eoLAl+NMiAOmnx3f2fjnvy9L05CSNXiNqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4628 (0x1214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Jan 24 16:52:04 2026 GMT Not After : Jan 31 16:52:04 2026 GMT Subject: CN=6974f8b4-faf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ce:08:d9:3d:75:50:e0:e0:6e:8a:2b:62:04: 60:f0:47:9a:f8:d9:8c:57:96:05:86:6a:8d:c5:10: c1:5b:91:7a:b7:33:ff:36:72:31:30:04:0a:25:47: d4:00:87:aa:15:58:79:64:b6:67:fe:5c:4e:00:b3: d8:32:44:1f:37:c0:9d:1e:5c:f6:ed:9e:65:75:23: a6:9e:d8:ee:8c:80:67:e7:6e:ee:f8:e8:0f:eb:a0: 27:97:cd:c1:f9:bd:10:74:0f:22:79:31:0d:6d:42: f4:c1:e6:b7:94:cc:54:5f:93:3f:69:11:1b:96:b3: 64:a5:5a:bf:bb:d3:0a:a8:83:10:a8:82:eb:1f:bb: b7:08:63:c5:d7:96:93:69:4d:46:31:14:e2:23:19: 58:88:79:8d:83:d9:95:a1:e8:14:ec:bb:59:f3:6c: a3:f5:3d:8d:5e:44:dc:b3:93:ca:e7:4d:f7:2e:86: b4:8b:6f:5b:d9:8a:a9:fe:11:61:34:a3:7f:b2:78: f1:3f:78:38:c4:00:9a:11:0c:e4:97:5b:e4:31:a4: 0b:90:5f:33:00:f1:ae:d3:a3:25:2c:43:f8:68:31: dc:47:ce:2f:6c:14:53:2c:99:77:8f:ac:c6:b8:b2: e5:c3:de:bf:31:e4:1f:54:2b:90:ff:1e:8a:b9:85: 52:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D7:D1:32:2E:20:E2:17:6B:83:F7:87:18:CA:C5:09:AB:E5:D2:9C X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:12:b4:64:40:45:17:3f:97:77:10:a8:cb:57:74:2a:c1:1a: f5:8b:05:fc:3b:cc:f8:10:4b:89:fb:63:ac:1d:11:ca:77:9b: 99:74:44:10:2d:4c:81:72:de:10:41:72:b8:ee:18:32:fd:58: 0b:21:97:7d:20:2e:1c:1d:47:b4:bb:d5:12:86:50:35:60:94: 4d:13:06:81:67:2c:5b:73:68:4a:e3:f8:6f:df:f4:a4:f5:10: 7f:dd:a2:07:39:6d:a0:1c:53:d2:e4:cb:4a:d5:32:f3:b1:ca: 60:cb:39:a2:b1:67:58:3b:ea:4a:ca:24:f6:79:f5:65:23:85: 62:d4:b0:85:77:fe:63:1c:40:67:52:76:d1:9c:13:81:38:f3: a3:7f:e0:78:89:94:0b:ff:00:0a:01:0d:3b:06:41:0e:39:0c: 95:78:2c:38:1b:f5:fd:0a:cc:02:de:d0:60:cf:1c:db:fb:d4: b0:75:a7:40:bd:d2:0a:1c:1e:8a:cc:95:42:01:89:ed:1b:5b: c2:20:b7:8f:97:05:69:97:42:53:64:f6:3d:10:e9:66:e1:fb: 27:16:b5:44:c3:d7:c7:b3:ca:ae:82:2d:97:a3:89:13:70:3e: 60:37:4a:52:04:dd:d9:8b:27:38:8c:c2:5c:91:ed:44:ab:9e: 5a:ba:41:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjYwMTI0MTY1MjA0WhcNMjYwMTMxMTY1MjA0WjAYMRYwFAYD VQQDDA02OTc0ZjhiNC1mYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6c4I2T11UODgboorYgRg8Eea+NmMV5YFhmqNxRDBW5F6tzP/NnIxMAQKJUfU AIeqFVh5ZLZn/lxOALPYMkQfN8CdHlz27Z5ldSOmntjujIBn527u+OgP66Anl83B +b0QdA8ieTENbUL0wea3lMxUX5M/aREblrNkpVq/u9MKqIMQqILrH7u3CGPF15aT aU1GMRTiIxlYiHmNg9mVoegU7LtZ82yj9T2NXkTcs5PK5033Loa0i29b2Yqp/hFh NKN/snjxP3g4xACaEQzkl1vkMaQLkF8zAPGu06MlLEP4aDHcR84vbBRTLJl3j6zG uLLlw96/MeQfVCuQ/x6KuYVSuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrX0TIu IOIXa4P3hxjKxQmr5dKcMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzErRkQEUXP5d3EKjLV3QqwRr1iwX8O8z4EEuJ+2OsHRHKd5uZdEQQ LUyBct4QQXK47hgy/VgLIZd9IC4cHUe0u9UShlA1YJRNEwaBZyxbc2hK4/hv3/Sk 9RB/3aIHOW2gHFPS5MtK1TLzscpgyzmisWdYO+pKyiT2efVlI4Vi1LCFd/5jHEBn UnbRnBOBOPOjf+B4iZQL/wAKAQ07BkEOOQyVeCw4G/X9CswC3tBgzxzb+9SwdadA vdIKHB6KzJVCAYntG1vCILePlwVpl0JTZPY9EOlm4fsnFrVEw9fHs8qugi2Xo4kT cD5gN0pSBN3Ziyc4jMJcke1Eq55aukG1 -----END CERTIFICATE-----Generated at Sun Jan 25 11:16:28 2026 by rpki-client