This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: SyIrsfXDAYiPa4gzntzoZH8YiPnY74H6GwntrUKziwY= Subject key identifier: F0:DD:44:50:84:8F:3B:8C:24:F6:47:0A:22:77:52:9D:9E:03:79:33 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 086A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 0863 Signing time: Sat 24 Jan 2026 20:04:13 +0000 Manifest this update: Sat 24 Jan 2026 20:04:12 +0000 Manifest next update: Sat 31 Jan 2026 20:04:12 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: WYMJFqjgXPIsNSbXo79u9d89lzUlbR/qsh83zgry/4c=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: TEdKwP64TuQMUa2RFZqVEQD/HQzdAAlp9eIMPDVHh5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Jan 24 20:04:12 2026 GMT Not After : Jan 31 20:04:12 2026 GMT Subject: CN=697525bd-7909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6b:8e:68:53:f9:51:1e:c4:48:3a:7e:e7:b4: c2:74:4c:31:d7:9d:f2:34:c7:47:cc:ba:a1:6b:43: e1:b6:21:06:7c:58:8e:d1:4e:af:46:97:2d:07:fa: 1c:f0:24:9d:d7:9f:09:77:91:e1:80:52:25:3a:e2: 2e:f3:8b:df:33:11:d0:dc:8d:e4:04:8f:cc:ee:b1: 97:3e:d6:cc:02:7a:e6:1f:c3:44:cb:5a:75:95:1a: e7:46:59:0e:2c:25:f6:10:2e:cc:23:9f:f7:32:89: 63:57:b7:fe:32:08:25:6e:e2:ee:19:d7:be:d9:a6: 0c:c9:cb:01:62:3c:9c:7f:df:44:87:95:47:68:7f: dc:8d:e1:6b:6f:69:5b:e7:81:65:ba:20:ef:21:8a: 42:b0:66:00:c1:bb:bd:ec:71:01:8f:ce:1d:a3:c0: 82:03:81:9b:68:3d:4d:44:d0:87:51:cb:ed:de:61: 5c:1a:81:70:a2:50:0d:88:bf:e3:33:d8:4c:62:79: f6:c4:cc:4a:48:3c:ee:c0:11:b6:37:c8:3b:a6:fc: 12:cf:9d:10:21:aa:e4:a7:aa:b8:7e:ab:6a:92:a6: c1:22:3f:b7:72:18:d0:07:62:fc:9a:53:24:41:ca: 4f:7f:ae:f4:9b:58:c7:f8:9e:d7:2e:a4:99:8f:00: 9c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DD:44:50:84:8F:3B:8C:24:F6:47:0A:22:77:52:9D:9E:03:79:33 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:4c:cb:53:f7:b8:96:25:1b:e0:36:d2:e5:e6:5e:e2:13:8b: 9a:5b:fd:ad:c1:36:16:62:73:e6:81:a9:5c:10:bd:91:e9:61: 1b:56:26:37:87:6c:b3:84:61:2a:2b:c0:12:06:56:42:92:a0: b5:a7:68:48:4d:d4:d7:1e:45:d0:44:4b:f4:16:31:b4:a8:f6: 86:ee:3d:a0:a1:4b:4c:7f:ed:7e:c4:66:0f:36:c4:68:3c:02: 14:15:a0:91:b2:29:d0:bd:c7:26:6b:cd:52:b8:f8:f5:d8:9f: 36:2d:46:1e:62:07:e7:a5:46:0c:ed:11:87:15:58:40:fd:10: 0a:3f:fe:ba:ad:03:2b:72:fd:81:8f:fd:b7:bf:8d:31:c5:94: e8:fd:b8:c8:3d:c2:5c:2f:ab:ad:b1:7d:ba:50:f5:37:00:8f: b4:05:5a:b9:7c:27:7d:69:19:59:9a:80:28:3e:f9:95:6e:63: e0:54:d4:5c:67:30:66:c1:ac:dc:9d:61:7c:2a:77:22:45:92: f4:fd:5f:8b:07:34:0a:ae:58:a3:fe:16:3b:49:d0:a4:29:ff: fd:31:f4:db:11:0d:bb:82:a7:b7:fd:6b:80:e7:7f:f1:5e:6c: 80:75:bb:92:e7:a6:02:de:42:85:fe:ec:15:d4:08:2c:71:39: 34:db:6e:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjYwMTI0MjAwNDEyWhcNMjYwMTMxMjAwNDEyWjAYMRYwFAYD VQQDDA02OTc1MjViZC03OTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGuOaFP5UR7ESDp+57TCdEwx153yNMdHzLqha0PhtiEGfFiO0U6vRpctB/oc 8CSd158Jd5HhgFIlOuIu84vfMxHQ3I3kBI/M7rGXPtbMAnrmH8NEy1p1lRrnRlkO LCX2EC7MI5/3MoljV7f+MgglbuLuGde+2aYMycsBYjycf99Eh5VHaH/cjeFrb2lb 54FluiDvIYpCsGYAwbu97HEBj84do8CCA4GbaD1NRNCHUcvt3mFcGoFwolANiL/j M9hMYnn2xMxKSDzuwBG2N8g7pvwSz50QIarkp6q4fqtqkqbBIj+3chjQB2L8mlMk QcpPf670m1jH+J7XLqSZjwCcXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDdRFCE jzuMJPZHCiJ3Up2eA3kzMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2TMtT97iWJRvgNtLl5l7iE4uaW/2twTYWYnPmgalcEL2R6WEbViY3 h2yzhGEqK8ASBlZCkqC1p2hITdTXHkXQREv0FjG0qPaG7j2goUtMf+1+xGYPNsRo PAIUFaCRsinQvccma81SuPj12J82LUYeYgfnpUYM7RGHFVhA/RAKP/66rQMrcv2B j/23v40xxZTo/bjIPcJcL6utsX26UPU3AI+0BVq5fCd9aRlZmoAoPvmVbmPgVNRc ZzBmwazcnWF8KnciRZL0/V+LBzQKrlij/hY7SdCkKf/9MfTbEQ27gqe3/WuA53/x XmyAdbuS56YC3kKF/uwV1AgscTk0225e -----END CERTIFICATE-----Generated at Sun Jan 25 06:18:12 2026 by rpki-client