This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: xuxbknjJ8Z5Wr/kfvqEDOuJEoYLQD/pu9Z9srQ3R2xI= Subject key identifier: 86:CA:17:7B:02:3D:A1:76:3C:00:CD:5F:1D:07:7C:8E:80:42:F6:03 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 01F7 Signing time: Sat 24 Jan 2026 23:41:41 +0000 Manifest this update: Sat 24 Jan 2026 23:41:40 +0000 Manifest next update: Sat 31 Jan 2026 23:41:40 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: N80pdLvfi0K0DBPmdkgXhZg8uLMMMpgpaJByqnBhzks=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Jan 24 23:41:40 2026 GMT Not After : Jan 31 23:41:40 2026 GMT Subject: CN=697558b5-ec17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:1d:78:f9:15:17:5e:43:03:78:37:df:a3:48: 93:5f:30:8a:fa:5e:6d:5f:b1:b0:e4:24:56:af:2a: af:56:26:72:a2:20:2b:45:1a:9f:20:2a:24:67:52: 0a:fc:68:25:e7:ab:af:fd:46:9a:59:c6:55:b3:af: 60:de:eb:9e:3a:19:ab:11:43:34:5c:27:85:c2:a4: 30:88:76:02:3b:60:97:a8:53:ed:3a:96:46:7b:81: 71:c6:82:9e:19:94:28:43:30:87:5e:3d:46:8d:16: 09:b3:75:c1:94:38:02:2d:b5:c6:81:78:87:7d:37: 5f:71:cf:95:83:90:78:5f:7f:bf:d6:de:c1:6f:5a: 45:c6:b3:00:76:c9:a3:8d:6b:0f:ad:82:b5:3b:a0: b0:b9:ad:55:97:6f:02:46:b6:57:8a:dd:63:c4:46: 7a:af:bd:db:5d:d3:4e:01:14:21:ec:bf:4c:7d:33: 93:70:cd:9c:2e:34:93:c8:c9:a2:57:95:6c:78:ef: 39:a1:99:b2:86:aa:3c:af:7e:48:59:d1:7d:1e:5b: 53:a9:45:e6:8a:7e:87:27:f5:25:91:7e:c0:73:25: d9:4e:dc:18:59:77:dc:94:34:e6:79:38:d7:53:60: 15:78:1d:b3:08:2e:6c:6b:48:aa:bd:b2:90:6d:6c: 41:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CA:17:7B:02:3D:A1:76:3C:00:CD:5F:1D:07:7C:8E:80:42:F6:03 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:2e:8b:85:4d:d0:a6:c1:78:d4:58:9a:45:66:f7:76:3a:4d: 67:aa:4b:13:69:8b:05:8c:cd:11:5e:78:88:21:b7:0f:09:ae: ed:bf:d5:ca:41:ce:87:41:d4:fa:ff:86:e7:f0:71:dd:2f:a7: c9:0e:d6:da:68:57:9e:8f:c2:5f:4d:b1:c9:b2:52:73:9b:dc: 16:5d:2b:89:4d:43:1b:9c:34:f5:b8:1a:bd:bf:c0:df:42:74: 37:f4:5e:6d:ac:8e:d2:d3:d9:8b:22:15:1b:59:a5:d6:c7:09: ba:b1:0e:7f:28:f4:26:e0:ba:92:f6:1a:b2:82:ba:a1:87:39: 34:5b:44:27:e9:d1:61:04:ec:38:92:76:c3:63:5e:bc:0a:2b: 9c:e4:48:e7:d0:da:51:df:6f:da:4c:73:e9:cb:23:30:2f:3c: f3:ea:ad:f5:ce:42:04:1d:2e:27:ee:5d:4e:d4:38:eb:76:d7: 89:7c:d5:1b:69:1d:b4:f2:9a:f8:3c:38:e0:aa:a2:c3:aa:53: 9e:87:66:98:b7:65:20:80:17:f9:27:8b:b7:49:a1:8f:31:11: 0d:55:49:6f:c5:8e:d2:cc:af:44:83:68:6a:ac:14:50:3c:96: 12:89:99:8e:83:82:b4:cb:3f:67:a3:b8:77:e2:74:41:fc:f1: b9:f2:05:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwMTI0MjM0MTQwWhcNMjYwMTMxMjM0MTQwWjAYMRYwFAYD VQQDDA02OTc1NThiNS1lYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAix14+RUXXkMDeDffo0iTXzCK+l5tX7Gw5CRWryqvViZyoiArRRqfICokZ1IK /Ggl56uv/UaaWcZVs69g3uueOhmrEUM0XCeFwqQwiHYCO2CXqFPtOpZGe4FxxoKe GZQoQzCHXj1GjRYJs3XBlDgCLbXGgXiHfTdfcc+Vg5B4X3+/1t7Bb1pFxrMAdsmj jWsPrYK1O6Cwua1Vl28CRrZXit1jxEZ6r73bXdNOARQh7L9MfTOTcM2cLjSTyMmi V5VseO85oZmyhqo8r35IWdF9HltTqUXmin6HJ/UlkX7AcyXZTtwYWXfclDTmeTjX U2AVeB2zCC5sa0iqvbKQbWxBPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbKF3sC PaF2PADNXx0HfI6AQvYDMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoLouFTdCmwXjUWJpFZvd2Ok1nqksTaYsFjM0RXniIIbcPCa7tv9XK Qc6HQdT6/4bn8HHdL6fJDtbaaFeej8JfTbHJslJzm9wWXSuJTUMbnDT1uBq9v8Df QnQ39F5trI7S09mLIhUbWaXWxwm6sQ5/KPQm4LqS9hqygrqhhzk0W0Qn6dFhBOw4 knbDY168Ciuc5Ejn0NpR32/aTHPpyyMwLzzz6q31zkIEHS4n7l1O1DjrdteJfNUb aR208pr4PDjgqqLDqlOeh2aYt2UggBf5J4u3SaGPMRENVUlvxY7SzK9Eg2hqrBRQ PJYSiZmOg4K0yz9no7h34nRB/PG58gXq -----END CERTIFICATE-----Generated at Sun Jan 25 17:01:48 2026 by rpki-client