This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: XMQLKBdX22zdBhL15BFmqsgi6Ui4S0qKcCUNI/iGz24= Subject key identifier: B6:72:F5:4D:B8:8A:AD:CE:A8:04:33:C7:11:6F:B8:CA:80:6F:96:6E Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 023D Signing time: Sun 25 Jan 2026 01:10:45 +0000 Manifest this update: Sun 25 Jan 2026 01:10:44 +0000 Manifest next update: Sun 01 Feb 2026 01:10:44 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: ZdFvHg9eB0JY4xtwkyVGR2n9BPQmc9vDcBFSLcyNwd4=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: kAqnoDuT1FRw+qJcWxPVKBShBLWYG7bNoS5ZqNm5qoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Jan 25 01:10:44 2026 GMT Not After : Feb 1 01:10:44 2026 GMT Subject: CN=69756d94-e684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:39:da:ee:b7:94:fa:70:f6:07:40:1a:8b:58: ab:50:e2:4e:b2:24:b8:e3:d7:4e:bb:86:e5:d7:8c: 61:5c:d2:03:3b:84:b8:01:90:ab:0c:54:8f:aa:d2: d6:01:77:97:ca:87:54:33:8b:76:e4:00:50:53:01: 1f:a1:85:8b:7b:eb:3c:a3:1a:19:ab:a2:50:d4:a3: 6a:2d:6e:4b:51:0d:6c:5b:64:56:9d:77:69:63:3f: 38:9c:f1:f4:91:a4:0d:0f:0e:27:be:29:4c:ca:83: 3e:11:fb:0b:92:3e:f5:3c:2c:99:5a:f9:1d:25:ed: 93:69:31:5b:c2:e4:cb:65:0e:84:af:04:64:09:98: 73:1d:0b:a0:6c:9f:d0:66:d3:a1:86:2a:c9:68:b1: 1e:f1:f3:bb:66:e6:0e:90:25:2a:fa:c0:e7:48:55: f5:af:ad:99:57:97:0d:4c:05:e1:8f:d4:76:15:64: 6c:cf:d7:f6:85:b3:e8:51:70:8e:09:42:99:49:9c: 50:d3:47:27:0a:55:88:a6:74:43:e3:09:c3:c7:e4: af:5d:2f:80:1b:66:78:6e:b2:6d:ac:bc:6d:51:e4: 37:93:51:de:72:0a:50:51:da:e8:1e:4a:f9:09:5a: b9:cc:cf:33:b4:ee:a6:fa:2d:e9:1a:ba:24:b2:7a: 22:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:72:F5:4D:B8:8A:AD:CE:A8:04:33:C7:11:6F:B8:CA:80:6F:96:6E X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:56:f9:7a:51:6c:e5:d3:76:64:ab:81:1c:68:8f:2f:2c:cb: 9d:e5:05:da:4f:5d:91:06:ea:1d:c2:f4:3b:0c:cb:93:f5:89: d3:40:c8:fa:7f:bd:10:c9:78:3d:df:33:16:3a:33:9a:b7:9d: 8e:2e:4e:58:a6:bd:57:2e:b9:82:f1:6c:09:36:de:5a:3c:73: 52:85:96:bd:d9:7f:bb:91:3d:43:2d:4d:9e:ca:94:6d:cd:67: 19:f2:16:32:26:9a:a6:f4:b0:52:eb:f9:7a:3e:f0:f3:b8:90: 13:bb:84:7e:1f:50:02:14:02:73:91:28:06:1a:06:2a:6c:dd: 29:32:f9:2e:89:0c:2d:6d:c1:79:81:92:ae:e2:94:39:7d:a8: b1:fb:eb:12:49:b1:f0:e0:0b:bb:44:18:a9:0c:56:34:d9:30: e5:a5:b2:ff:43:64:ae:8f:88:5d:93:b4:f6:e6:60:a7:1a:b7: c4:0b:81:a2:d5:be:bf:1f:99:02:45:00:72:03:2c:2b:1d:bf: d3:e4:71:4b:a7:09:24:95:77:15:e9:c0:cf:73:d8:d5:92:d2: 46:c7:b8:bc:73:58:cf:f4:35:99:03:93:5a:b5:33:f4:55:88: dd:b3:7e:f1:26:99:75:5c:54:09:c4:ce:9f:dd:e9:cc:e2:ff: 54:68:f6:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwMTI1MDExMDQ0WhcNMjYwMjAxMDExMDQ0WjAYMRYwFAYD VQQDDA02OTc1NmQ5NC1lNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dna7reU+nD2B0Aai1irUOJOsiS449dOu4bl14xhXNIDO4S4AZCrDFSPqtLW AXeXyodUM4t25ABQUwEfoYWLe+s8oxoZq6JQ1KNqLW5LUQ1sW2RWnXdpYz84nPH0 kaQNDw4nvilMyoM+EfsLkj71PCyZWvkdJe2TaTFbwuTLZQ6ErwRkCZhzHQugbJ/Q ZtOhhirJaLEe8fO7ZuYOkCUq+sDnSFX1r62ZV5cNTAXhj9R2FWRsz9f2hbPoUXCO CUKZSZxQ00cnClWIpnRD4wnDx+SvXS+AG2Z4brJtrLxtUeQ3k1HecgpQUdroHkr5 CVq5zM8ztO6m+i3pGroksnoi7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZy9U24 iq3OqAQzxxFvuMqAb5ZuMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFVvl6UWzl03Zkq4EcaI8vLMud5QXaT12RBuodwvQ7DMuT9YnTQMj6 f70QyXg93zMWOjOat52OLk5Ypr1XLrmC8WwJNt5aPHNShZa92X+7kT1DLU2eypRt zWcZ8hYyJpqm9LBS6/l6PvDzuJATu4R+H1ACFAJzkSgGGgYqbN0pMvkuiQwtbcF5 gZKu4pQ5faix++sSSbHw4Au7RBipDFY02TDlpbL/Q2Suj4hdk7T25mCnGrfEC4Gi 1b6/H5kCRQByAywrHb/T5HFLpwkklXcV6cDPc9jVktJGx7i8c1jP9DWZA5NatTP0 VYjds37xJpl1XFQJxM6f3enM4v9UaPYQ -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:26 2026 by rpki-client