This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft File: z-PzHk8zetOBIBvzOgGmhfsBal4.mft (raw, json) Hash identifier: B3by6x+Fv1A2b2M6tgKenfeE6dG2pjmGCMSLjsRIUz8= Subject key identifier: 82:4A:B1:38:DE:73:9C:FE:E2:5F:3D:92:58:C1:DB:BD:C8:DE:FF:7F Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0D84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft Manifest number: 0D7C Signing time: Sat 24 Jan 2026 17:36:51 +0000 Manifest this update: Sat 24 Jan 2026 17:36:50 +0000 Manifest next update: Sat 31 Jan 2026 17:36:50 +0000 Files and hashes: 1: z-PzHk8zetOBIBvzOgGmhfsBal4.crl (hash: wkX2rtBpHLj9bOKrY1Tvwdyu9aep5m/wAdLzUFXaHY8=) 2: D23C5270E02111E9B4A3923FC4F9AE02.roa (hash: zkAhSZ57x5i2z1ecY4hViVs+riusX3XK2gSVsFUEBsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00, serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: Jan 24 17:36:50 2026 GMT Not After : Jan 31 17:36:50 2026 GMT Subject: CN=69750333-875b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:82:4f:94:71:c5:0a:63:70:ae:df:51:38: d4:bb:41:71:06:3d:3e:a6:e4:25:12:72:41:89:d9: af:56:74:bc:51:86:ef:c5:22:12:1e:b9:86:91:77: 55:55:f4:73:12:3f:36:25:f5:6d:11:63:10:b2:38: be:11:2c:21:52:f9:d7:ca:08:a5:7f:d6:ac:89:a9: d1:82:00:84:d1:3c:3c:91:42:c9:0d:8a:ec:e1:8b: fe:79:fc:c5:01:27:f7:0d:16:c6:61:85:97:93:d3: d3:12:8b:96:c7:f0:24:00:a4:fc:eb:33:57:89:2c: d3:cf:a7:94:61:dd:16:c1:af:6c:ff:cc:69:56:8c: 60:62:34:a8:a8:e8:2c:9e:32:6a:ed:ba:3d:b8:7c: b0:ce:b4:64:fa:64:8a:71:d5:1f:56:6f:1f:9c:c9: c8:27:ae:52:a9:50:8e:71:45:17:f8:4d:36:18:ce: ff:41:d9:87:83:98:31:e8:fc:55:4b:c3:b5:67:a8: b5:61:0c:84:1a:dd:4a:98:38:17:71:fb:ea:7c:9b: 91:e8:91:7c:3a:f6:60:79:f7:b5:94:4e:72:4a:ef: 3d:b2:58:a6:d3:b2:a9:38:82:df:a6:2b:28:2b:5c: 8e:7c:5a:5a:3e:20:5a:25:cc:bf:bd:06:db:33:f7: f7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4A:B1:38:DE:73:9C:FE:E2:5F:3D:92:58:C1:DB:BD:C8:DE:FF:7F X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ab:15:e5:e7:28:44:fb:36:c7:e9:04:12:af:85:62:72:8c: 41:7e:86:ae:2c:cc:7d:35:3e:06:2c:03:ea:af:cf:4a:0e:20: 71:5b:79:e3:6b:04:09:c1:26:32:d2:fd:fe:c8:ae:20:9d:2c: 48:f8:00:3c:8e:51:19:5f:f6:e4:a7:fb:8e:c3:d5:cb:c7:19: 6f:f1:2e:a8:fe:5a:0a:3e:3d:63:41:dc:ef:df:67:a1:23:9f: 45:25:cb:79:b5:dc:ea:e3:99:1e:27:ac:c2:5e:a7:2b:c0:dc: d7:d3:7e:33:19:6c:ca:16:4c:6e:5d:d2:21:87:cb:45:6e:8b: 5c:bf:e2:20:7a:73:51:39:00:d9:3a:b1:25:38:21:66:e9:85: ff:14:eb:4d:7a:32:9a:32:8e:0d:80:94:3e:1b:ef:c6:ee:e6: 62:f7:60:14:6b:78:84:e4:43:16:87:8e:06:43:a3:ce:6c:d1: 27:17:2c:44:09:95:1a:0d:03:70:69:ea:b7:e2:69:79:0b:37: 4d:23:41:11:6d:b3:92:83:07:78:ba:54:9f:26:61:c2:0a:1b: 7b:a1:9d:a1:ec:28:36:64:64:41:6b:f7:ae:fb:1d:1e:ff:ce: 38:60:98:50:eb:1f:9e:ad:62:ff:e1:1d:03:e5:d4:a6:50:84: 54:59:8d:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjYwMTI0MTczNjUwWhcNMjYwMTMxMTczNjUwWjAYMRYwFAYD VQQDDA02OTc1MDMzMy04NzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i2CT5RxxQpjcK7fUTjUu0FxBj0+puQlEnJBidmvVnS8UYbvxSISHrmGkXdV VfRzEj82JfVtEWMQsji+ESwhUvnXygilf9asianRggCE0Tw8kULJDYrs4Yv+efzF ASf3DRbGYYWXk9PTEouWx/AkAKT86zNXiSzTz6eUYd0Wwa9s/8xpVoxgYjSoqOgs njJq7bo9uHywzrRk+mSKcdUfVm8fnMnIJ65SqVCOcUUX+E02GM7/QdmHg5gx6PxV S8O1Z6i1YQyEGt1KmDgXcfvqfJuR6JF8OvZgefe1lE5ySu89slim07KpOILfpiso K1yOfFpaPiBaJcy/vQbbM/f3uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJKsTje c5z+4l89kljB273I3v9/MB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEUwMC84OTkxRUI5RUUwMjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0 T0JJQnZ6T2dHbWhmc0JhbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoqxXl5yhE+zbH6QQSr4VicoxBfoauLMx9NT4GLAPqr89KDiBxW3nj awQJwSYy0v3+yK4gnSxI+AA8jlEZX/bkp/uOw9XLxxlv8S6o/loKPj1jQdzv32eh I59FJct5tdzq45keJ6zCXqcrwNzX034zGWzKFkxuXdIhh8tFbotcv+IgenNROQDZ OrElOCFm6YX/FOtNejKaMo4NgJQ+G+/G7uZi92AUa3iE5EMWh44GQ6PObNEnFyxE CZUaDQNwaeq34ml5CzdNI0ERbbOSgwd4ulSfJmHCCht7oZ2h7Cg2ZGRBa/eu+x0e /844YJhQ6x+erWL/4R0D5dSmUIRUWY3X -----END CERTIFICATE-----Generated at Sun Jan 25 03:00:56 2026 by rpki-client