This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: TNyHVQG3aXEdPyaTRbZlkq594/juMqpt95UMBW5gC6o= Subject key identifier: 9D:0F:44:D1:D8:5B:72:75:22:78:08:91:38:6F:9C:3E:FC:93:62:A2 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 06E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 06E3 Signing time: Sat 24 Jan 2026 21:21:29 +0000 Manifest this update: Sat 24 Jan 2026 21:21:29 +0000 Manifest next update: Sat 31 Jan 2026 21:21:29 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: Bbqq3ez+S1zb4TkYN0NwnJCnDZwhUiVHUG/ZJ36aP+Y=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: 8goNJpX3SWLmR+a+Wvt1jnrzs1RIuPAmcWPIzJu1GEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1768 (0x6e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Jan 24 21:21:29 2026 GMT Not After : Jan 31 21:21:29 2026 GMT Subject: CN=697537d9-361e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0c:70:90:00:26:21:6e:4f:23:f6:df:50:0c: 8c:a4:d0:9e:86:6e:00:74:48:47:9a:9e:da:2f:11: 3c:02:18:4b:e5:32:29:d3:b2:5b:be:bd:bc:40:2a: a7:2d:bd:95:93:38:65:0c:9d:c6:6c:ca:3d:a0:e1: 8c:e9:57:1c:a5:0e:ec:31:4b:b5:c0:5e:8c:4e:87: 2b:eb:b5:1f:a0:5a:b8:e6:03:db:83:94:43:e8:ab: df:8a:44:39:cb:7c:cc:3e:c9:11:ff:0e:9e:0a:b2: 8c:f3:58:f3:e5:4d:2d:c6:ed:d9:88:24:d4:95:71: 6b:52:00:ba:f2:97:1e:c3:d0:c9:58:3c:2d:7d:f3: 5e:1e:68:2b:61:3b:43:69:7c:e7:1c:45:89:44:09: 55:14:84:d3:6a:f5:de:2e:fd:40:bc:ed:b8:c1:2d: 5b:59:d2:29:3e:25:58:b3:b4:93:0c:39:33:90:66: f1:b2:46:a9:3a:f5:94:5c:c0:9b:a1:f6:80:bd:89: fa:db:bf:86:a8:dc:51:86:72:99:be:ca:3c:14:0d: 8f:1f:13:fa:54:f1:94:46:75:58:4c:8d:01:94:87: b5:3a:3c:70:ff:16:56:5a:39:23:97:fb:6b:e9:28: ae:a1:cc:0e:36:7a:fc:8a:6f:9f:e1:f0:7d:94:ba: bc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:0F:44:D1:D8:5B:72:75:22:78:08:91:38:6F:9C:3E:FC:93:62:A2 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:24:96:e6:46:de:06:e2:21:e3:f5:c6:92:eb:37:3a:27:95: 49:a7:8c:86:c8:00:c5:4a:7d:15:60:a5:b0:75:d8:41:04:bb: 55:da:9e:92:8e:13:23:82:f6:fa:55:4c:15:1b:36:4f:a1:6d: 10:29:e4:8a:5e:5d:35:c1:dc:4d:ae:67:65:b8:a8:eb:c2:7d: 09:5e:43:72:a7:62:b8:ba:79:1b:24:ce:48:0b:6c:1e:2f:89: 05:3f:2f:f3:19:01:d0:80:fe:6b:df:8c:0c:5e:85:da:44:df: f0:18:14:4d:3a:b6:1e:d5:f9:f6:fc:fd:95:80:cc:da:89:3e: a6:73:06:13:61:77:74:78:1f:9d:15:e8:5c:1b:9b:bf:b9:37: 37:ec:11:0d:65:9b:bc:21:c2:c9:5a:1d:b9:0f:f7:b8:48:17: 87:f8:e8:a4:0f:ce:ce:66:0a:eb:2e:52:0d:bd:65:9f:7c:0a: a0:db:2c:3e:13:19:0f:b2:51:2d:d3:e0:3e:8f:15:5d:26:a1: 51:ad:8c:9c:16:8d:d9:fd:20:30:17:48:f5:23:5a:bb:68:88: fa:12:29:c0:0d:f9:61:f8:b9:3a:2f:93:73:ac:52:e8:88:72: f3:c2:25:03:a5:1d:b6:e4:9c:cb:c6:ba:f5:a9:e3:27:22:d3: 2c:1a:24:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjYwMTI0MjEyMTI5WhcNMjYwMTMxMjEyMTI5WjAYMRYwFAYD VQQDDA02OTc1MzdkOS0zNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAxwkAAmIW5PI/bfUAyMpNCehm4AdEhHmp7aLxE8AhhL5TIp07Jbvr28QCqn Lb2VkzhlDJ3GbMo9oOGM6VccpQ7sMUu1wF6MTocr67UfoFq45gPbg5RD6KvfikQ5 y3zMPskR/w6eCrKM81jz5U0txu3ZiCTUlXFrUgC68pcew9DJWDwtffNeHmgrYTtD aXznHEWJRAlVFITTavXeLv1AvO24wS1bWdIpPiVYs7STDDkzkGbxskapOvWUXMCb ofaAvYn627+GqNxRhnKZvso8FA2PHxP6VPGURnVYTI0BlIe1Ojxw/xZWWjkjl/tr 6SiuocwONnr8im+f4fB9lLq8SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0PRNHY W3J1IngIkThvnD78k2KiMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFJJbmRt4G4iHj9caS6zc6J5VJp4yGyADFSn0VYKWwddhBBLtV2p6S jhMjgvb6VUwVGzZPoW0QKeSKXl01wdxNrmdluKjrwn0JXkNyp2K4unkbJM5IC2we L4kFPy/zGQHQgP5r34wMXoXaRN/wGBRNOrYe1fn2/P2VgMzaiT6mcwYTYXd0eB+d FehcG5u/uTc37BENZZu8IcLJWh25D/e4SBeH+OikD87OZgrrLlINvWWffAqg2yw+ ExkPslEt0+A+jxVdJqFRrYycFo3Z/SAwF0j1I1q7aIj6EinADflh+Lk6L5NzrFLo iHLzwiUDpR225JzLxrr1qeMnItMsGiRJ -----END CERTIFICATE-----Generated at Mon Jan 26 01:09:27 2026 by rpki-client