This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: qvQiTjTx7RxBR+nZJeg7zk6QiwgYCCQKoi0c1K20X78= Subject key identifier: EA:48:E3:98:92:78:19:30:92:39:84:D9:9D:9B:83:6D:39:CB:31:42 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D1A Signing time: Sat 24 Jan 2026 17:43:55 +0000 Manifest this update: Sat 24 Jan 2026 17:43:55 +0000 Manifest next update: Sat 31 Jan 2026 17:43:55 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: k6JW3kuEc/+QgMZCjtwK9xEvK2/YyjjOZY/yAkxjOQ4=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: bJm8x/jB8mtzKPQKI3Nnf1xFyPp1oMwYrBpRRhfwUbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3378 (0xd32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Jan 24 17:43:55 2026 GMT Not After : Jan 31 17:43:55 2026 GMT Subject: CN=697504db-e8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a8:c9:12:5e:fb:76:ea:3a:11:5f:ba:e5:8a: 00:30:77:71:3d:fa:a1:fb:d5:c1:40:ce:0d:85:8b: 44:d1:ff:92:a7:4e:16:6c:fb:d3:97:37:1a:fa:1f: bf:d9:58:94:08:b1:07:9b:96:d6:be:0e:77:99:8a: 49:3f:9d:a4:b5:52:d6:25:c7:d2:c1:6c:6a:e5:2d: 6d:a6:c8:b9:76:ae:48:9d:92:76:96:d5:0e:7a:f5: c4:35:23:40:76:b1:a6:31:71:f2:11:cb:8a:28:05: 86:df:f0:37:e2:4a:4b:19:6e:f5:01:60:2d:80:40: 14:8d:17:92:dc:a9:64:e4:14:59:6b:40:aa:40:9c: 8e:1f:57:94:e2:a1:1d:75:a8:7f:ab:67:a3:b1:52: c9:68:43:17:c0:24:08:0a:ae:af:37:b2:17:f8:7d: 61:e5:13:46:dd:bb:ce:a7:e9:71:66:b0:d6:51:45: 9e:20:9c:c0:dd:86:97:d7:d9:4a:89:c7:ac:81:00: d3:c4:c1:07:20:2b:d6:2e:cc:7b:81:bb:04:c7:ce: 65:d1:5c:80:40:bb:d6:6a:39:66:0c:fe:08:f9:89: fe:ce:54:5a:6a:24:d3:4e:4f:c1:44:a0:13:eb:eb: db:f8:5c:36:65:bf:e0:d6:57:df:ce:4a:93:f8:2d: 06:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:48:E3:98:92:78:19:30:92:39:84:D9:9D:9B:83:6D:39:CB:31:42 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:f2:36:e3:1b:9b:a9:c2:55:38:b2:ff:6a:fc:d5:71:0d:84: 56:75:66:46:64:fb:5c:32:bd:b2:81:fb:5b:33:da:5e:9b:0e: 80:fb:de:6e:ba:2a:41:9b:6c:9e:5f:84:08:5b:90:c0:c8:ad: 1f:cd:20:7c:f2:fc:cb:71:59:bb:23:47:3b:f3:39:f1:1d:c0: de:16:0b:bc:09:7d:56:44:c4:e2:bd:32:c1:34:db:86:4d:f8: f0:af:db:7d:74:4a:3a:89:9e:2a:86:da:35:7c:6f:33:c7:f6: 64:e0:fd:46:f7:7d:40:69:d0:51:a4:d1:03:79:be:b8:72:c0: 72:c6:5c:6b:51:99:1a:74:99:52:a3:3d:e5:b8:67:c2:ad:44: 66:8a:c9:6e:c9:41:01:5a:eb:85:46:3b:cb:26:8a:e9:88:9c: f6:3a:41:00:c0:ee:bf:6e:76:67:c0:72:f7:0d:00:46:5a:31: 72:36:11:5d:14:b8:ce:e3:e0:bc:5d:1c:e2:ae:01:b1:82:6c: a6:56:d2:24:85:22:06:df:1b:0b:c7:7e:69:2c:57:03:25:45: c7:05:6d:e3:a5:76:35:e8:b8:38:de:9f:5f:b3:52:d7:06:3f: 37:ea:e6:c1:36:5b:85:d0:bb:7e:0a:59:93:dc:f8:12:ef:aa: 97:20:fd:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjYwMTI0MTc0MzU1WhcNMjYwMTMxMTc0MzU1WjAYMRYwFAYD VQQDDA02OTc1MDRkYi1lOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqjJEl77duo6EV+65YoAMHdxPfqh+9XBQM4NhYtE0f+Sp04WbPvTlzca+h+/ 2ViUCLEHm5bWvg53mYpJP52ktVLWJcfSwWxq5S1tpsi5dq5InZJ2ltUOevXENSNA drGmMXHyEcuKKAWG3/A34kpLGW71AWAtgEAUjReS3Klk5BRZa0CqQJyOH1eU4qEd dah/q2ejsVLJaEMXwCQICq6vN7IX+H1h5RNG3bvOp+lxZrDWUUWeIJzA3YaX19lK icesgQDTxMEHICvWLsx7gbsEx85l0VyAQLvWajlmDP4I+Yn+zlRaaiTTTk/BRKAT 6+vb+Fw2Zb/g1lffzkqT+C0GYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpI45iS eBkwkjmE2Z2bg205yzFCMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq8jbjG5upwlU4sv9q/NVxDYRWdWZGZPtcMr2ygftbM9pemw6A+95u uipBm2yeX4QIW5DAyK0fzSB88vzLcVm7I0c78znxHcDeFgu8CX1WRMTivTLBNNuG Tfjwr9t9dEo6iZ4qhto1fG8zx/Zk4P1G931AadBRpNEDeb64csByxlxrUZkadJlS oz3luGfCrURmisluyUEBWuuFRjvLJorpiJz2OkEAwO6/bnZnwHL3DQBGWjFyNhFd FLjO4+C8XRzirgGxgmymVtIkhSIG3xsLx35pLFcDJUXHBW3jpXY16Lg43p9fs1LX Bj836ubBNluF0Lt+ClmT3PgS76qXIP1k -----END CERTIFICATE-----Generated at Sun Jan 25 17:23:53 2026 by rpki-client