This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: zirj6iQtqMGHBMdiwfbWTQJifPwKoplEMiADrS9Yl18= Subject key identifier: D2:F6:A0:9C:37:43:E0:EA:04:50:53:EC:35:22:B5:28:C8:F8:8A:60 Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 06F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 06E8 Signing time: Sat 24 Jan 2026 21:21:32 +0000 Manifest this update: Sat 24 Jan 2026 21:21:31 +0000 Manifest next update: Sat 31 Jan 2026 21:21:31 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: s7GyPtlVQehecpvxhtVxj6ZfSw3Yb431q9kkqm/7kV4=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: Sxl9Vw9Z+DTDShpFQB0WpYJiHDd/mA9uIojiho1C+jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Jan 24 21:21:31 2026 GMT Not After : Jan 31 21:21:31 2026 GMT Subject: CN=697537db-b947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:da:79:4b:95:e0:3b:55:99:ad:82:f8:fb: 30:3e:6a:6e:ac:d7:4d:d5:1d:c6:ec:ce:2e:f6:1d: b2:ae:16:29:57:6d:dc:b5:52:ae:13:a7:3a:29:b2: fe:60:f1:2d:77:17:e5:db:68:70:4a:e0:27:a6:74: a9:94:76:17:2d:2e:d6:b0:20:30:54:6c:71:3e:32: 0f:28:54:aa:1c:86:a1:aa:79:dc:24:b0:ea:a9:5c: da:f8:68:5c:a1:09:fb:83:e4:4f:e8:fc:7a:5c:90: 91:2b:b6:0f:a5:70:e7:ca:37:a2:ac:3a:34:d8:57: 3f:73:41:0c:a7:ba:b7:6e:01:0a:43:49:f3:63:32: 42:bb:fe:62:cd:c3:a4:1e:3b:2d:b1:2e:2c:0f:8a: c2:eb:2c:e8:00:e8:18:46:aa:a6:3a:86:c7:b1:bb: 0c:60:5a:c2:65:d8:4e:c1:99:33:21:fa:ff:e1:98: c4:fc:91:cf:9f:4c:b9:86:e8:32:a1:48:f2:53:80: b3:ce:fe:d6:ad:7c:60:2a:91:f7:a2:b2:23:6b:20: cd:07:b4:b5:3f:27:89:99:bf:bb:be:1a:b7:26:98: 7c:be:d5:83:ff:23:16:4d:f2:00:76:84:56:e8:5b: 1f:fd:8f:a8:b1:f6:80:d7:c2:94:2e:36:e6:ce:07: c3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F6:A0:9C:37:43:E0:EA:04:50:53:EC:35:22:B5:28:C8:F8:8A:60 X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:55:c5:8c:0c:ec:ed:c5:71:30:fd:b6:20:57:bc:8a:eb:05: 47:0b:46:84:1a:7d:0e:12:9d:a3:47:d9:fe:e6:3f:b9:04:94: 1b:3f:6a:b8:cc:f1:80:b5:1f:49:09:ed:f7:9b:10:24:97:98: 10:14:67:1b:26:d4:b6:d8:18:7d:64:2b:07:f6:b0:26:de:39: ed:ac:7d:8c:c8:08:08:ee:5e:98:54:ee:7e:a7:f7:04:17:30: cd:58:56:84:fe:cb:6a:03:ff:00:87:d3:84:26:58:ab:88:43: 1d:a0:db:f8:19:40:b4:ef:48:ff:81:32:dd:f7:7a:da:6a:3c: ea:0e:2b:18:43:4d:62:4f:a7:a0:26:9a:1f:4b:1d:a8:b6:be: b9:db:50:df:25:8c:33:72:22:96:d5:20:d3:81:4e:91:6f:e8: 6c:e9:d0:50:cf:09:66:64:02:b6:a1:9b:b3:65:3b:be:74:d5: d8:ec:52:c9:3d:a8:ee:1d:a7:ba:41:8c:2b:0e:80:6f:cd:cf: c4:d8:80:21:03:26:58:6b:48:38:08:14:2a:52:7f:d4:08:9a: 60:97:6d:e1:74:7a:7d:df:15:a3:e4:ad:09:87:b5:3c:3b:dc: 8d:46:63:0b:b8:02:fa:72:5e:4f:64:6b:52:b6:32:26:9b:4d: 14:f6:59:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjYwMTI0MjEyMTMxWhcNMjYwMTMxMjEyMTMxWjAYMRYwFAYD VQQDDA02OTc1MzdkYi1iOTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/zaeUuV4DtVma2C+PswPmpurNdN1R3G7M4u9h2yrhYpV23ctVKuE6c6KbL+ YPEtdxfl22hwSuAnpnSplHYXLS7WsCAwVGxxPjIPKFSqHIahqnncJLDqqVza+Ghc oQn7g+RP6Px6XJCRK7YPpXDnyjeirDo02Fc/c0EMp7q3bgEKQ0nzYzJCu/5izcOk HjstsS4sD4rC6yzoAOgYRqqmOobHsbsMYFrCZdhOwZkzIfr/4ZjE/JHPn0y5hugy oUjyU4Czzv7WrXxgKpH3orIjayDNB7S1PyeJmb+7vhq3Jph8vtWD/yMWTfIAdoRW 6Fsf/Y+osfaA18KULjbmzgfDOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNL2oJw3 Q+DqBFBT7DUitSjI+IpgMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiVcWMDOztxXEw/bYgV7yK6wVHC0aEGn0OEp2jR9n+5j+5BJQbP2q4 zPGAtR9JCe33mxAkl5gQFGcbJtS22Bh9ZCsH9rAm3jntrH2MyAgI7l6YVO5+p/cE FzDNWFaE/stqA/8Ah9OEJliriEMdoNv4GUC070j/gTLd93raajzqDisYQ01iT6eg JpofSx2otr6521DfJYwzciKW1SDTgU6Rb+hs6dBQzwlmZAK2oZuzZTu+dNXY7FLJ PajuHae6QYwrDoBvzc/E2IAhAyZYa0g4CBQqUn/UCJpgl23hdHp93xWj5K0Jh7U8 O9yNRmMLuAL6cl5PZGtStjImm00U9lmi -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:05 2026 by rpki-client