This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: uU6xSzXMNZPI2xTv7IhxJ8q7Mia0ibt4BvohzgaDtXk= Subject key identifier: CA:B4:77:90:CF:8E:2F:97:09:96:93:BB:68:39:B6:71:7E:63:4F:88 Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0BAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0BA5 Signing time: Sat 24 Jan 2026 18:32:16 +0000 Manifest this update: Sat 24 Jan 2026 18:32:15 +0000 Manifest next update: Sat 31 Jan 2026 18:32:15 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: S18uSUX9D6UwWA8kviASnSgwEOS9M5SRxbxGDDERYvo=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: HQ+n/zvxBXsyHktY7VZtlLogGsEgUPieMT07w6OWlaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2991 (0xbaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Jan 24 18:32:15 2026 GMT Not After : Jan 31 18:32:15 2026 GMT Subject: CN=69751030-c3c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8b:0d:65:10:b3:83:f7:dd:c3:c0:6c:f2:8d: 7f:5b:cc:7b:2c:17:a5:18:50:f6:7e:21:bb:09:db: d6:4c:2d:96:30:db:41:5b:cb:47:79:6f:11:88:44: 39:5f:c9:5e:82:2a:a4:9e:1a:01:31:dc:e1:72:89: b3:6c:75:5d:ee:4c:47:76:c2:ad:48:84:66:28:e7: 26:54:9f:f3:3a:3e:34:c0:ce:40:0f:3f:32:da:8e: 79:3d:44:c7:69:1d:d6:8c:7f:1a:18:a3:cb:2b:4c: e9:50:81:25:f9:a4:10:c5:7f:f1:15:89:7d:26:d7: a9:c4:77:50:bb:7f:14:85:7a:f6:e5:96:9c:75:56: 5e:36:53:44:1b:7a:13:19:6b:d7:54:d8:ce:b3:4f: d9:00:b2:05:73:08:8b:1d:f5:cc:5e:fa:41:a0:f5: d2:bf:c4:06:bc:87:8f:b6:81:c0:82:12:23:1e:61: 9d:a5:29:d3:c8:bd:ba:b1:08:72:cb:89:cd:3c:44: d4:55:7f:b2:05:77:f0:f1:fc:5d:e2:7e:71:53:50: 49:fd:6c:5b:ab:31:cc:21:e1:29:ef:8f:93:5f:bb: ad:ff:c9:7b:71:d0:3b:0c:21:a4:8a:af:22:6c:c4: 13:91:33:c4:0c:36:78:0e:8f:3e:0f:a2:97:ef:b4: fb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B4:77:90:CF:8E:2F:97:09:96:93:BB:68:39:B6:71:7E:63:4F:88 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:0e:0c:ce:68:bd:fc:2f:76:19:ee:df:7f:b1:9a:01:d0:16: 77:81:d7:1c:dd:51:05:37:e4:db:63:0c:fd:17:65:ac:54:03: 20:59:4d:94:c1:27:cd:a4:5e:dc:32:4a:06:b5:17:90:80:7c: 3b:94:00:46:c5:84:a7:34:ed:aa:2e:90:6c:b6:3b:0b:80:77: 8f:70:ce:1b:cc:e7:3d:ce:b9:ed:a5:96:02:5d:47:4f:88:dd: a6:2e:ad:d4:ce:bb:e3:eb:3d:2a:9c:0f:6c:dc:56:7a:e4:1b: 2f:99:74:29:4e:a8:ae:6d:66:df:6c:cb:41:d1:af:e8:ec:e6: ef:0a:56:dd:50:2f:37:bb:bc:cb:9f:4f:83:15:e2:13:43:f3: dc:f5:fd:95:03:5b:2e:f7:35:08:bd:15:2c:d7:a8:4e:e5:bb: 59:c7:2c:e9:25:43:ac:ed:fa:d3:1d:3d:cf:58:97:44:ab:54: aa:96:6c:f9:75:a0:de:13:00:30:a8:07:fa:c4:e1:a7:78:70: f7:ac:04:e2:a8:0b:4c:27:5a:50:32:2d:b9:84:d4:f3:51:4f: 3c:b4:74:da:8f:e9:07:84:ac:59:77:84:75:d8:02:3c:b5:8e: 60:55:1f:cd:24:a3:34:09:22:19:57:fa:b7:5e:9c:b2:cd:88: ee:7f:07:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjYwMTI0MTgzMjE1WhcNMjYwMTMxMTgzMjE1WjAYMRYwFAYD VQQDDA02OTc1MTAzMC1jM2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IsNZRCzg/fdw8Bs8o1/W8x7LBelGFD2fiG7CdvWTC2WMNtBW8tHeW8RiEQ5 X8legiqknhoBMdzhcomzbHVd7kxHdsKtSIRmKOcmVJ/zOj40wM5ADz8y2o55PUTH aR3WjH8aGKPLK0zpUIEl+aQQxX/xFYl9JtepxHdQu38UhXr25ZacdVZeNlNEG3oT GWvXVNjOs0/ZALIFcwiLHfXMXvpBoPXSv8QGvIePtoHAghIjHmGdpSnTyL26sQhy y4nNPETUVX+yBXfw8fxd4n5xU1BJ/WxbqzHMIeEp74+TX7ut/8l7cdA7DCGkiq8i bMQTkTPEDDZ4Do8+D6KX77T7qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq0d5DP ji+XCZaTu2g5tnF+Y0+IMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYDgzOaL38L3YZ7t9/sZoB0BZ3gdcc3VEFN+TbYwz9F2WsVAMgWU2U wSfNpF7cMkoGtReQgHw7lABGxYSnNO2qLpBstjsLgHePcM4bzOc9zrntpZYCXUdP iN2mLq3Uzrvj6z0qnA9s3FZ65BsvmXQpTqiubWbfbMtB0a/o7ObvClbdUC83u7zL n0+DFeITQ/Pc9f2VA1su9zUIvRUs16hO5btZxyzpJUOs7frTHT3PWJdEq1Sqlmz5 daDeEwAwqAf6xOGneHD3rATiqAtMJ1pQMi25hNTzUU88tHTaj+kHhKxZd4R12AI8 tY5gVR/NJKM0CSIZV/q3XpyyzYjufwcn -----END CERTIFICATE-----Generated at Sun Jan 25 02:54:20 2026 by rpki-client