This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: xwnHBKU61I1AXEM/skz6+3UgaqWqk1ITJNgi5yZScg0= Subject key identifier: 96:86:C2:1B:BD:34:F2:0D:A8:C5:04:D7:BE:F0:5F:5B:47:A3:B5:AD Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 20EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 20E7 Signing time: Sat 24 Jan 2026 15:46:22 +0000 Manifest this update: Sat 24 Jan 2026 15:46:22 +0000 Manifest next update: Sat 31 Jan 2026 15:46:22 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: 1GYNMV5sw1px1UFAP+r3d+X4/oPvwkepzNp8U/ttl38=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8431 (0x20ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Jan 24 15:46:22 2026 GMT Not After : Jan 31 15:46:22 2026 GMT Subject: CN=6974e94e-5f04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9c:2c:1b:72:4f:98:e5:a1:6c:f6:35:b3:71: d2:d0:86:f1:a9:d3:64:7c:5e:d1:20:e3:68:28:87: 23:73:d6:d0:7a:ee:5e:9c:36:19:66:0f:7a:2f:6a: 14:bf:73:05:ee:03:09:aa:1e:04:99:98:2f:cd:ed: 96:f0:80:c1:36:03:5d:a6:69:0c:46:e6:a1:1e:78: 5c:b3:40:49:98:9c:da:0d:0d:fa:e2:16:dd:d6:77: b6:7f:16:3a:05:f6:c3:ce:33:0a:24:cd:1b:5c:71: b4:70:14:90:48:9e:01:81:b1:83:cd:e9:38:ff:97: 56:f3:36:56:a2:d7:0d:79:f2:9c:82:1f:6c:41:a7: c8:5a:57:1b:57:0c:b9:1e:5c:ae:92:12:6c:5b:c0: 8c:55:da:de:8c:cb:d3:fc:f3:50:8d:b6:02:6c:f8: db:c5:7c:d2:b1:3c:f3:0b:66:31:74:31:1b:e2:4c: 9c:8c:f5:de:41:75:ec:b7:01:46:49:0e:47:5d:7c: f8:fc:30:a9:87:42:b9:72:6b:4f:e2:b3:e4:12:08: c2:b8:c9:56:e1:82:e2:bc:8e:30:bd:08:42:45:a2: 1f:07:29:dc:dc:7d:71:5a:b8:a6:d8:85:3d:e7:40: ac:b1:f2:d7:b7:a7:a2:76:90:9d:56:46:74:37:98: 72:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:86:C2:1B:BD:34:F2:0D:A8:C5:04:D7:BE:F0:5F:5B:47:A3:B5:AD X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:e2:29:d0:73:49:d8:09:98:8f:d9:58:33:99:35:d7:4c:b1: 83:db:d5:88:be:bd:0d:ce:0a:e7:aa:f2:17:c1:0a:f6:fa:61: 1b:4f:5a:d2:76:b0:ca:63:dc:ac:88:4d:d0:40:b7:c2:d9:fa: e7:db:9e:95:b5:b4:6c:ff:b3:e2:81:3c:d7:cb:ec:9e:7b:1b: de:ec:1c:35:05:16:19:e4:51:0b:7e:3f:d4:0e:a5:49:24:31: 35:16:0a:c2:f3:69:e7:65:e5:81:53:28:8c:eb:ef:59:77:2d: cc:b2:40:57:9c:f7:fa:17:a3:40:fd:9f:d2:27:ec:6f:2f:7c: 87:96:48:cb:db:81:cd:2c:df:1f:34:2b:7b:5c:ac:cb:a6:f6: 78:7c:c9:22:46:28:8a:de:8a:fc:8d:9c:d1:ca:5c:b7:60:ed: 90:39:5f:87:0e:21:8c:77:b4:21:02:b6:b6:01:3c:30:35:8b: 0a:b7:b1:17:b8:3a:97:ce:3f:f2:5e:3d:5f:78:c3:c5:1a:df: 3f:67:45:5a:f8:2c:01:34:16:4c:04:c5:79:b7:af:64:1a:8c: 9f:57:bd:2f:61:49:fa:b5:34:13:23:d1:fe:ed:32:d6:6c:cd: 0a:b8:3c:c9:17:2d:a5:cf:ab:ba:be:f9:0e:b6:0f:74:32:05: d2:88:37:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjYwMTI0MTU0NjIyWhcNMjYwMTMxMTU0NjIyWjAYMRYwFAYD VQQDDA02OTc0ZTk0ZS01ZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpwsG3JPmOWhbPY1s3HS0IbxqdNkfF7RIONoKIcjc9bQeu5enDYZZg96L2oU v3MF7gMJqh4EmZgvze2W8IDBNgNdpmkMRuahHnhcs0BJmJzaDQ364hbd1ne2fxY6 BfbDzjMKJM0bXHG0cBSQSJ4BgbGDzek4/5dW8zZWotcNefKcgh9sQafIWlcbVwy5 HlyukhJsW8CMVdrejMvT/PNQjbYCbPjbxXzSsTzzC2YxdDEb4kycjPXeQXXstwFG SQ5HXXz4/DCph0K5cmtP4rPkEgjCuMlW4YLivI4wvQhCRaIfBync3H1xWrim2IU9 50CssfLXt6eidpCdVkZ0N5hypQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaGwhu9 NPINqMUE177wX1tHo7WtMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv4inQc0nYCZiP2VgzmTXXTLGD29WIvr0NzgrnqvIXwQr2+mEbT1rS drDKY9ysiE3QQLfC2frn256VtbRs/7PigTzXy+yeexve7Bw1BRYZ5FELfj/UDqVJ JDE1FgrC82nnZeWBUyiM6+9Zdy3MskBXnPf6F6NA/Z/SJ+xvL3yHlkjL24HNLN8f NCt7XKzLpvZ4fMkiRiiK3or8jZzRyly3YO2QOV+HDiGMd7QhAra2ATwwNYsKt7EX uDqXzj/yXj1feMPFGt8/Z0Va+CwBNBZMBMV5t69kGoyfV70vYUn6tTQTI9H+7TLW bM0KuDzJFy2lz6u6vvkOtg90MgXSiDca -----END CERTIFICATE-----Generated at Sun Jan 25 12:41:52 2026 by rpki-client