This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft File: -Xh9LKFDLKbpMzLg7e9rB7JF17A.mft (raw, json) Hash identifier: QtimaWokKXyJabpe6gZqhM0LjpUqISADwJBQjhevgks= Subject key identifier: E1:BB:FA:A2:B0:AA:AA:38:2D:AB:4A:15:DB:58:12:EC:54:22:B1:18 Authority key identifier: F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 Certificate issuer: /CN=A912DA1F/serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Certificate serial: 0891 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft Manifest number: 0888 Signing time: Sat 24 Jan 2026 19:56:13 +0000 Manifest this update: Sat 24 Jan 2026 19:56:12 +0000 Manifest next update: Sat 31 Jan 2026 19:56:12 +0000 Files and hashes: 1: -Xh9LKFDLKbpMzLg7e9rB7JF17A.crl (hash: Op8bote9oO2Cbh67fW3AabXdCQSgj6OPX+j92MRSbm4=) 2: D6883996DABE11EAB12A5209C4F9AE02.roa (hash: uybnkX1k8gPyTR5CU7p1ceux1tCfl8jTIgkNDS2MSjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2193 (0x891) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1F, serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Validity Not Before: Jan 24 19:56:12 2026 GMT Not After : Jan 31 19:56:12 2026 GMT Subject: CN=697523dd-3651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:cb:0c:df:41:be:8f:63:55:e1:8e:f0:5a: a6:9c:fe:04:59:90:2a:f9:46:67:37:02:39:f6:82: ff:a7:44:b2:ac:19:06:9e:21:0a:39:71:83:bf:e3: df:32:56:ab:5d:dc:b7:f2:16:65:84:fd:9d:11:b3: 92:c7:45:7e:d6:ae:42:68:46:0d:19:bd:4c:2b:02: f9:7c:7a:22:63:7c:2b:c1:d8:b8:07:1f:44:df:12: 85:0d:41:22:23:4c:d6:06:85:50:fd:f5:3f:3b:19: 07:72:e3:c1:d9:5e:b0:d9:d3:81:79:15:86:a8:4d: 06:17:da:f8:5b:0b:32:40:4e:ea:12:54:dd:c5:54: 65:88:ea:5f:da:ca:88:17:47:5f:65:be:85:74:d5: 1c:39:9a:26:f3:9c:eb:a8:76:c5:a3:aa:2d:0a:d1: 46:6e:c5:38:2c:f0:0f:ff:ba:31:f2:dc:40:31:0e: 15:95:01:45:79:c2:9e:10:44:94:cb:75:18:4d:c4: c8:57:45:4b:13:0e:cc:bc:d0:fa:4d:66:1c:e5:7e: 54:15:98:5c:86:6c:a3:3b:1d:b7:c3:d8:79:f3:cc: 36:46:62:3d:8b:18:59:b9:aa:96:b2:7f:16:f9:bf: ab:ec:f8:11:c7:b9:c4:fa:60:fe:be:e6:a7:19:01: 72:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BB:FA:A2:B0:AA:AA:38:2D:AB:4A:15:DB:58:12:EC:54:22:B1:18 X509v3 Authority Key Identifier: keyid:F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:81:29:1b:ab:63:5f:08:32:06:63:b6:25:e0:7c:f6:d2:ea: 11:ab:59:9c:21:1b:1d:2d:2b:a2:14:26:a3:3d:04:2a:a8:ee: 4d:e3:12:f7:f7:ed:00:b5:e1:08:34:08:04:29:2e:d9:30:7b: c0:8d:12:b0:7a:b0:7a:a4:79:9d:a5:ac:77:fc:c5:cf:1e:72: cb:3b:e1:bc:29:51:69:af:a5:47:c8:37:04:79:18:7e:1b:7b: bb:ce:45:f2:e1:49:ef:de:e2:18:8b:c4:a0:e0:73:7b:ef:0d: 80:26:24:f6:bb:ac:c1:57:9a:e4:47:84:34:ee:3e:0a:98:c5: e5:d9:19:f8:8c:c3:18:83:0c:5c:14:85:cd:cf:d3:6d:da:49: 1d:e5:27:3b:46:10:a2:70:18:e7:85:8c:2c:69:c6:c2:fa:13: 4d:ac:45:dc:7c:3d:c1:be:45:fc:7a:de:53:6b:b1:08:a9:de: 5c:ad:b0:53:28:4d:2d:c9:d7:0b:5f:19:45:b2:d8:84:43:53: 02:86:94:bf:f2:d3:fd:1e:66:1f:da:02:f6:ae:e9:21:50:4c: 66:1b:e3:26:ca:dd:dc:b6:2a:d1:4a:76:cd:4f:3d:d7:e7:45: df:a5:90:f8:f3:e4:3c:24:4f:57:7b:24:e6:bd:ab:74:27:7f: b8:a7:80:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUYxMTAvBgNVBAUTKEY5Nzg3RDJDQTE0MzJDQTZFOTMzMzJFMEVERUY2QjA3 QjI0NUQ3QjAwHhcNMjYwMTI0MTk1NjEyWhcNMjYwMTMxMTk1NjEyWjAYMRYwFAYD VQQDDA02OTc1MjNkZC0zNjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGTLDN9Bvo9jVeGO8FqmnP4EWZAq+UZnNwI59oL/p0SyrBkGniEKOXGDv+Pf MlarXdy38hZlhP2dEbOSx0V+1q5CaEYNGb1MKwL5fHoiY3wrwdi4Bx9E3xKFDUEi I0zWBoVQ/fU/OxkHcuPB2V6w2dOBeRWGqE0GF9r4WwsyQE7qElTdxVRliOpf2sqI F0dfZb6FdNUcOZom85zrqHbFo6otCtFGbsU4LPAP/7ox8txAMQ4VlQFFecKeEESU y3UYTcTIV0VLEw7MvND6TWYc5X5UFZhchmyjOx23w9h588w2RmI9ixhZuaqWsn8W +b+r7PgRx7nE+mD+vuanGQFykwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG7+qKw qqo4LatKFdtYEuxUIrEYMB8GA1UdIwQYMBaAFPl4fSyhQyym6TMy4O3vaweyRdew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRi9GQjE0QTg4MkRB QkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExLYnBNekxnN2U5ckI3SkYx N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YaDlMS0ZETEticE16TGc3ZTlyQjdKRjE3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REExRi9GQjE0QTg4MkRBQkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExL YnBNekxnN2U5ckI3SkYxN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/gSkbq2NfCDIGY7Yl4Hz20uoRq1mcIRsdLSuiFCajPQQqqO5N4xL3 9+0AteEINAgEKS7ZMHvAjRKwerB6pHmdpax3/MXPHnLLO+G8KVFpr6VHyDcEeRh+ G3u7zkXy4Unv3uIYi8Sg4HN77w2AJiT2u6zBV5rkR4Q07j4KmMXl2Rn4jMMYgwxc FIXNz9Nt2kkd5Sc7RhCicBjnhYwsacbC+hNNrEXcfD3BvkX8et5Ta7EIqd5crbBT KE0tydcLXxlFstiEQ1MChpS/8tP9HmYf2gL2rukhUExmG+Mmyt3ctirRSnbNTz3X 50XfpZD48+Q8JE9XeyTmvat0J3+4p4AM -----END CERTIFICATE-----Generated at Sun Jan 25 06:13:03 2026 by rpki-client