This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: l08LY9Lvhl3T0/qgfMKWUiufjZ2VTtdscvuugMP2NVY= Subject key identifier: CB:63:EC:F0:CB:CA:E9:65:8E:9A:7C:19:82:B1:EE:A2:42:44:33:C1 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 07F1 Signing time: Sat 24 Jan 2026 15:46:25 +0000 Manifest this update: Sat 24 Jan 2026 15:46:24 +0000 Manifest next update: Sat 31 Jan 2026 15:46:24 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: E7gmkv5vBbvoUCX/hB8xclssLGhjbAbAVfv1RkFmVz0=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Jan 24 15:46:24 2026 GMT Not After : Jan 31 15:46:24 2026 GMT Subject: CN=6974e951-02e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:39:12:56:cd:df:1e:bb:f7:36:5e:ea:c9:72: 81:f9:be:d0:e9:19:25:a2:23:9c:22:e2:98:d8:31: 0d:7c:6d:23:4d:1f:55:2f:71:39:d8:b7:37:e7:5d: 7e:b3:98:c8:a1:1c:45:7e:7c:3d:a8:cf:f9:f9:bc: 3b:9b:e5:37:fd:68:40:bd:fc:f8:d8:d6:99:4a:29: a0:74:43:25:ce:3d:5e:1e:ed:0c:d5:92:ee:9a:25: 73:4f:52:74:d9:56:c0:4a:4b:37:40:22:42:e8:77: a5:7c:dc:f4:4a:ea:e3:99:5e:13:3c:47:77:01:85: 85:73:4f:a5:e0:51:2f:6c:22:eb:90:c4:29:f9:3d: be:f1:5a:70:8f:53:37:3e:62:20:bd:33:0f:cb:51: 8e:ed:29:62:ec:0d:6e:8f:f2:b6:d5:30:d0:60:cf: 63:6e:1e:c4:80:99:67:ac:8b:b8:ba:dd:3e:f8:d4: 70:ba:43:b9:c9:29:e4:2c:51:94:77:a6:3f:7a:ab: c4:c7:3a:5e:2a:ea:19:ac:37:c0:66:78:56:26:c3: 39:88:71:5f:07:96:35:19:99:ba:d4:2c:cf:8d:ee: ca:5c:3d:12:69:a7:45:02:74:db:7c:38:29:48:cf: 95:09:37:d7:2d:cb:0f:66:b7:2d:8d:b5:7a:a1:6d: 47:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:63:EC:F0:CB:CA:E9:65:8E:9A:7C:19:82:B1:EE:A2:42:44:33:C1 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:ed:c4:6f:48:c3:08:4a:8a:1b:66:4e:47:99:69:ca:cf:ab: dc:c3:c1:16:11:52:bc:da:18:5b:ea:1f:eb:15:ea:0a:c9:16: 9a:71:3b:68:c4:f7:fa:cc:53:50:e5:5c:98:1c:77:a8:de:02: 68:96:1d:c5:6d:2d:08:5e:91:be:ce:0a:3f:fb:86:8e:d0:e8: e3:52:64:37:68:45:00:89:b5:bf:46:a6:a1:be:d4:d6:de:7e: 22:7b:6a:89:fa:26:85:19:d0:20:f0:93:75:cc:d0:c0:dc:83: a1:2e:65:5c:6c:6a:3a:1b:6d:71:e2:bc:cb:4a:7a:9a:e1:41: 0f:fb:cf:bf:da:79:ce:ec:4a:ed:79:8f:7b:66:1d:1a:d9:94: c8:b4:d5:5a:9a:ac:74:1b:64:52:87:7c:9f:44:af:5c:1d:a3: ed:2a:63:03:2a:f9:21:fa:d9:73:c1:b6:15:20:cc:a6:10:83: 64:08:66:2f:1d:0e:a9:0e:ca:f0:fc:62:92:43:a3:c0:40:ed: 24:21:ad:a0:16:bf:26:62:bc:9e:3d:9f:7d:db:90:ca:8e:17: e1:d0:6b:40:f2:28:ef:ea:ca:df:96:e0:ad:8d:3b:0f:ba:57: 95:9b:b5:e3:b9:b9:7d:f4:d7:83:68:7a:73:a6:a7:4d:62:9f: 65:8f:b3:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjYwMTI0MTU0NjI0WhcNMjYwMTMxMTU0NjI0WjAYMRYwFAYD VQQDDA02OTc0ZTk1MS0wMmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzkSVs3fHrv3Nl7qyXKB+b7Q6RkloiOcIuKY2DENfG0jTR9VL3E52Lc3511+ s5jIoRxFfnw9qM/5+bw7m+U3/WhAvfz42NaZSimgdEMlzj1eHu0M1ZLumiVzT1J0 2VbASks3QCJC6HelfNz0SurjmV4TPEd3AYWFc0+l4FEvbCLrkMQp+T2+8Vpwj1M3 PmIgvTMPy1GO7Sli7A1uj/K21TDQYM9jbh7EgJlnrIu4ut0++NRwukO5ySnkLFGU d6Y/eqvExzpeKuoZrDfAZnhWJsM5iHFfB5Y1GZm61CzPje7KXD0SaadFAnTbfDgp SM+VCTfXLcsPZrctjbV6oW1HVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtj7PDL yulljpp8GYKx7qJCRDPBMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm7cRvSMMISoobZk5HmWnKz6vcw8EWEVK82hhb6h/rFeoKyRaacTto xPf6zFNQ5VyYHHeo3gJolh3FbS0IXpG+zgo/+4aO0OjjUmQ3aEUAibW/RqahvtTW 3n4ie2qJ+iaFGdAg8JN1zNDA3IOhLmVcbGo6G21x4rzLSnqa4UEP+8+/2nnO7Ert eY97Zh0a2ZTItNVamqx0G2RSh3yfRK9cHaPtKmMDKvkh+tlzwbYVIMymEINkCGYv HQ6pDsrw/GKSQ6PAQO0kIa2gFr8mYryePZ9925DKjhfh0GtA8ijv6srfluCtjTsP uleVm7Xjubl99NeDaHpzpqdNYp9lj7OW -----END CERTIFICATE-----Generated at Sun Jan 25 10:39:34 2026 by rpki-client