This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: REjAndPz6+vGpsyJy/NskFeUxqrWArFcpxc+F0hmtZ4= Subject key identifier: C0:E1:C3:8B:42:B2:0C:75:5C:71:F8:09:B7:77:F2:9E:FF:CD:27:E6 Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0B2E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0B2C Signing time: Sat 24 Jan 2026 16:23:49 +0000 Manifest this update: Sat 24 Jan 2026 16:23:48 +0000 Manifest next update: Sat 31 Jan 2026 16:23:48 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: YnUHIpqWaRgXQouYJV/SuNZaODfxtWZn6SRWrHhZcXQ=) 2: DC25591636C011F0A9DAF53EC4F9AE02.roa (hash: X6qLGESMHlCjgInNJuuQgeTL462kIXu1+dGUahA9Gs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: Jan 24 16:23:48 2026 GMT Not After : Jan 31 16:23:48 2026 GMT Subject: CN=6974f214-80ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6b:ac:81:e4:ca:d2:9a:11:46:76:b4:7c:ed: 30:f9:22:67:33:38:9d:d8:55:3d:b4:d4:0a:e7:fe: 96:45:5a:71:36:60:62:ea:07:0c:e9:81:34:12:72: ac:15:3d:9c:5e:cf:1b:6e:ba:32:e0:b7:b7:7d:20: b7:5a:dd:2b:bc:4c:7a:4c:ea:20:39:16:7e:9e:b5: 58:ab:99:92:3e:f9:4e:a0:87:d2:5a:12:3d:bf:9d: 58:e3:0d:57:cb:95:ef:34:aa:c5:00:cf:d3:9b:da: b5:14:7a:13:3e:c5:97:23:06:44:34:93:0a:cd:c4: 39:01:32:1b:a8:1f:87:a2:f3:4d:3a:f6:7c:16:47: 42:2b:dd:44:c6:dc:36:97:c6:65:cb:68:43:41:f6: a7:12:fc:a9:d4:af:8c:8a:be:74:53:3d:b6:60:d7: fa:a1:e0:a6:7a:6a:4f:b8:f3:17:8b:81:71:38:9e: 44:84:0b:1b:e6:c9:8f:e4:6c:e1:01:0a:a4:17:73: c9:8a:b7:ff:ed:fa:81:e3:a2:ec:76:77:00:ff:e6: e1:87:65:8f:c2:88:90:2a:f2:4a:47:e0:4c:5c:bd: 68:5d:5e:ee:fd:93:3c:ea:1e:74:4b:41:20:3a:51: fd:78:da:52:4f:40:59:82:93:a0:0b:3f:36:24:d5: fe:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E1:C3:8B:42:B2:0C:75:5C:71:F8:09:B7:77:F2:9E:FF:CD:27:E6 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d9:a5:1b:b0:9f:ad:28:58:a5:fa:20:8f:80:21:2b:72:aa: 44:fe:13:7d:9e:ed:72:6c:7e:25:b7:e5:ee:ec:79:5b:0b:5e: e8:df:65:76:60:23:65:8b:2d:eb:20:a4:10:3f:c5:3b:7d:c7: 85:64:73:4e:c0:ab:24:88:9f:02:2c:46:6c:e7:3f:f9:a2:35: 3d:3f:70:ae:57:40:fa:fe:c3:6c:a7:0f:cf:94:5b:de:7f:c9: 8d:81:53:35:d8:cb:27:c6:c1:91:aa:b3:d8:32:a6:60:c2:6d: fc:1d:d1:a8:64:32:23:84:0a:b2:e4:53:41:12:6b:89:bc:6d: a4:d1:f2:f0:cb:b0:a4:6b:d4:f9:0a:f3:6e:1f:02:d3:05:55: 95:ed:a7:4f:e0:a9:de:a2:61:26:81:a0:1e:54:de:05:ee:01: 64:e9:48:b0:09:f9:07:9f:9c:af:34:ee:8c:90:9a:08:5f:5e: a3:24:6b:9f:df:14:dd:20:15:a0:88:7a:90:5a:50:36:c8:ca: 6b:38:05:0f:b3:da:ad:5b:52:8c:92:c1:9e:69:e3:23:0a:89: eb:ec:b7:96:a4:a2:37:84:ae:1a:77:e4:53:ee:6b:29:3d:06: 06:30:90:dd:ae:65:eb:b2:04:57:d0:52:53:d0:5d:8d:3a:7e: 32:33:c8:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjYwMTI0MTYyMzQ4WhcNMjYwMTMxMTYyMzQ4WjAYMRYwFAYD VQQDDA02OTc0ZjIxNC04MGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGusgeTK0poRRna0fO0w+SJnMzid2FU9tNQK5/6WRVpxNmBi6gcM6YE0EnKs FT2cXs8bbroy4Le3fSC3Wt0rvEx6TOogORZ+nrVYq5mSPvlOoIfSWhI9v51Y4w1X y5XvNKrFAM/Tm9q1FHoTPsWXIwZENJMKzcQ5ATIbqB+HovNNOvZ8FkdCK91Extw2 l8Zly2hDQfanEvyp1K+Mir50Uz22YNf6oeCmempPuPMXi4FxOJ5EhAsb5smP5Gzh AQqkF3PJirf/7fqB46LsdncA/+bhh2WPwoiQKvJKR+BMXL1oXV7u/ZM86h50S0Eg OlH9eNpST0BZgpOgCz82JNX+DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDhw4tC sgx1XHH4Cbd38p7/zSfmMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC2aUbsJ+tKFil+iCPgCErcqpE/hN9nu1ybH4lt+Xu7HlbC17o32V2 YCNliy3rIKQQP8U7fceFZHNOwKskiJ8CLEZs5z/5ojU9P3CuV0D6/sNspw/PlFve f8mNgVM12MsnxsGRqrPYMqZgwm38HdGoZDIjhAqy5FNBEmuJvG2k0fLwy7Cka9T5 CvNuHwLTBVWV7adP4KneomEmgaAeVN4F7gFk6UiwCfkHn5yvNO6MkJoIX16jJGuf 3xTdIBWgiHqQWlA2yMprOAUPs9qtW1KMksGeaeMjConr7LeWpKI3hK4ad+RT7msp PQYGMJDdrmXrsgRX0FJT0F2NOn4yM8jb -----END CERTIFICATE-----Generated at Sun Jan 25 11:05:10 2026 by rpki-client