This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: WdMjWkcYrTrVO9cNq94Xj1GNnHCg6f1JuNa5YL4glp0= Subject key identifier: AB:F3:1B:77:CF:B0:CC:45:AF:B3:82:41:34:41:CF:17:91:DB:B9:F6 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 10A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 109D Signing time: Sat 24 Jan 2026 17:03:28 +0000 Manifest this update: Sat 24 Jan 2026 17:03:27 +0000 Manifest next update: Sat 31 Jan 2026 17:03:27 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: 5giw8WxbrB1Np2n4HvKBMckEGBp+33mNQUtIOjlaY2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4256 (0x10a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Jan 24 17:03:27 2026 GMT Not After : Jan 31 17:03:27 2026 GMT Subject: CN=6974fb60-cd25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8a:9b:71:62:8c:3d:1f:0c:e2:67:86:27:39: f5:a5:47:79:a2:b8:42:39:18:6b:62:a1:2d:3d:42: 72:83:9b:eb:3e:bb:d7:3a:42:bd:73:d4:dc:21:6c: 16:d0:df:34:13:ad:fb:4f:c3:bb:b2:1f:4d:3a:ed: da:d7:2f:79:39:9c:a9:45:45:67:69:35:1a:14:05: 46:0f:5b:46:ee:07:7e:cc:68:91:0e:7b:b9:f6:03: 39:1e:ab:02:86:8a:af:ec:90:79:f2:9b:33:f2:ff: 74:33:d6:c1:08:e3:9e:47:7d:5d:5f:01:0c:ee:b2: 27:87:38:6b:3d:7e:6d:b5:87:d7:60:3b:cf:79:d9: b7:53:a8:47:50:b7:45:48:ed:ba:37:ef:91:d1:4a: 41:f7:a9:fe:f5:67:78:2d:7a:82:cc:cb:4e:12:5e: 0d:24:7c:ab:92:b5:b2:b2:7b:c1:b7:2b:84:91:03: e6:4b:d8:b6:56:db:e3:36:35:98:bf:bd:b0:b2:29: 29:5c:9f:ae:10:ad:d7:42:37:dd:33:99:db:d4:fc: 72:b5:ce:ca:64:69:fe:6f:8e:cc:4d:58:d3:fd:a9: 5b:e8:ff:c7:de:9e:da:d4:a4:fd:39:ab:7a:3b:ac: 47:6f:09:55:2f:72:1f:bf:a8:68:4b:73:15:3c:90: e0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F3:1B:77:CF:B0:CC:45:AF:B3:82:41:34:41:CF:17:91:DB:B9:F6 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:c7:08:14:d8:f6:fa:76:2a:b8:91:87:ea:46:76:91:e2:70: 40:9d:95:df:a2:d8:01:15:7f:26:71:41:a5:f0:9b:88:99:0d: 0c:07:e0:6a:46:dc:61:f2:63:9c:34:46:9f:02:d3:9f:ab:2b: 61:b2:d6:0e:a2:ef:7a:24:1c:b1:2f:4e:4e:dc:76:be:90:05: 43:14:94:9a:59:bc:2a:7e:0a:f9:b1:31:ff:92:36:91:af:bd: e6:77:6e:3e:e9:db:12:a9:46:5d:56:53:7c:03:00:3c:97:1b: 9d:36:a7:6f:aa:65:06:9a:7f:f8:d0:3e:bf:28:9a:08:31:7f: ab:b0:78:19:4c:a4:6b:a8:bf:91:de:d2:90:de:a9:33:c5:7b: ca:a0:52:f0:c7:63:f4:62:06:54:58:90:9a:a8:63:d7:96:ca: 47:72:e0:b4:1c:80:36:b9:eb:5e:74:13:e4:48:58:c5:69:f3: b3:e7:30:da:de:a7:46:e4:cf:ac:bd:9b:17:0d:2b:aa:7b:e2: 51:ec:d5:85:33:7b:d6:3f:c8:7a:cb:5d:79:6e:1c:e1:0e:f0: 06:1c:17:fe:92:12:aa:d7:29:d9:0a:72:3f:af:65:d2:a1:a7: 62:69:04:b6:eb:b7:91:20:16:55:55:cc:75:d3:b2:50:a5:79: fb:6a:db:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjYwMTI0MTcwMzI3WhcNMjYwMTMxMTcwMzI3WjAYMRYwFAYD VQQDDA02OTc0ZmI2MC1jZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oqbcWKMPR8M4meGJzn1pUd5orhCORhrYqEtPUJyg5vrPrvXOkK9c9TcIWwW 0N80E637T8O7sh9NOu3a1y95OZypRUVnaTUaFAVGD1tG7gd+zGiRDnu59gM5HqsC hoqv7JB58psz8v90M9bBCOOeR31dXwEM7rInhzhrPX5ttYfXYDvPedm3U6hHULdF SO26N++R0UpB96n+9Wd4LXqCzMtOEl4NJHyrkrWysnvBtyuEkQPmS9i2VtvjNjWY v72wsikpXJ+uEK3XQjfdM5nb1Pxytc7KZGn+b47MTVjT/alb6P/H3p7a1KT9Oat6 O6xHbwlVL3Ifv6hoS3MVPJDgfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvzG3fP sMxFr7OCQTRBzxeR27n2MB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBExwgU2Pb6diq4kYfqRnaR4nBAnZXfotgBFX8mcUGl8JuImQ0MB+Bq Rtxh8mOcNEafAtOfqythstYOou96JByxL05O3Ha+kAVDFJSaWbwqfgr5sTH/kjaR r73md24+6dsSqUZdVlN8AwA8lxudNqdvqmUGmn/40D6/KJoIMX+rsHgZTKRrqL+R 3tKQ3qkzxXvKoFLwx2P0YgZUWJCaqGPXlspHcuC0HIA2uetedBPkSFjFafOz5zDa 3qdG5M+svZsXDSuqe+JR7NWFM3vWP8h6y115bhzhDvAGHBf+khKq1ynZCnI/r2XS oadiaQS267eRIBZVVcx107JQpXn7atvj -----END CERTIFICATE-----Generated at Sun Jan 25 15:46:52 2026 by rpki-client