This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft File: cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft (raw, json) Hash identifier: k8ybORQkZbig70zf+OFw/Unwj0FgqYwCpRhNn4vOAa4= Subject key identifier: 28:3F:C1:58:27:4B:E0:1B:46:03:7D:C1:58:C4:D4:6C:E8:ED:E2:2B Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft Manifest number: 96 Signing time: Sun 25 Jan 2026 05:36:20 +0000 Manifest this update: Sun 25 Jan 2026 05:36:19 +0000 Manifest next update: Sun 01 Feb 2026 05:36:19 +0000 Files and hashes: 1: cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl (hash: V4xKgHBxTZjwJqH0ipGaXK760gAqf+68qHieHMzUWhk=) 2: 42CFB44C141411F0BAD16274C4F9AE02.roa (hash: SIbGv61TK6nlTBlpPzTxiHyFUxN8Qwjf/RzPAJKF8+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: Jan 25 05:36:19 2026 GMT Not After : Feb 1 05:36:19 2026 GMT Subject: CN=6975abd3-38f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b8:9b:d3:6b:ae:db:c3:47:23:73:57:56:ed: 86:19:1f:2e:58:55:5a:b1:08:a5:69:3d:e6:f6:d8: 81:1e:2a:cf:fa:67:a9:c6:a1:84:a0:6d:30:5b:87: a7:37:04:b9:0e:6c:ef:1e:7b:87:50:4a:fb:60:44: a8:49:da:0f:ff:f7:9d:64:ea:41:cf:49:f5:1d:df: 4b:10:5f:e9:10:21:2f:67:b2:95:cb:c7:cc:de:8a: 6e:86:49:c8:6a:bc:7e:59:f9:a5:27:d8:d2:0f:0a: ee:18:2a:82:aa:92:a2:1f:d9:fd:17:dc:de:b2:fc: dd:d5:e0:7e:09:b8:87:f7:b8:4d:d7:53:5d:04:be: 58:4b:41:bf:2d:15:98:69:0d:26:21:9f:ed:d6:e7: 06:61:52:e4:ab:10:94:c7:04:ee:35:52:b1:38:73: 3c:b4:81:60:39:bd:8c:83:af:fc:fe:bf:de:b6:61: f6:6f:30:22:24:e2:5f:57:e3:7d:56:a9:d5:6c:54: 2f:14:3a:97:cf:d9:ce:70:24:5a:63:51:e5:0e:0f: d8:af:96:8a:a4:78:5a:c7:ca:17:1d:b4:f8:4f:64: 82:3e:fc:99:a7:ae:3e:05:85:b6:ba:b1:61:11:a7: b0:fa:e0:b2:31:ed:a4:91:ff:bb:42:5e:94:78:60: 5f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3F:C1:58:27:4B:E0:1B:46:03:7D:C1:58:C4:D4:6C:E8:ED:E2:2B X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:6f:a6:44:f0:fc:39:3f:27:5c:35:f4:a5:56:9a:bc:4c:ab: 71:aa:2f:3b:ae:32:4e:08:0c:26:ef:65:41:87:e6:c6:f0:23: 4b:90:75:d0:2f:e0:a5:49:4a:f0:69:55:f1:dc:7a:c2:22:fb: 67:42:59:22:0b:3f:9b:3a:d2:6c:b5:69:3a:fb:27:aa:6e:75: 08:ec:80:ca:21:fe:90:a6:68:5e:e4:cb:c8:72:66:ab:a4:52: 30:4d:9f:a0:b9:d4:bd:7e:1a:e3:82:d3:d4:29:cd:69:21:a1: 4a:a2:ec:c3:93:43:2e:9c:d8:33:43:76:af:8f:d8:7a:26:a0: 72:3d:ee:41:cc:4b:3f:0e:8a:d3:e4:0b:19:d0:8e:3a:91:af: e3:3f:f0:cf:2e:b0:81:a6:51:79:c2:6d:c1:1b:6d:67:de:2b: 96:81:77:39:9a:f3:a6:99:96:c0:db:72:31:7c:d7:cd:ef:fb: 0a:4e:59:f6:bb:62:10:53:34:3d:44:b0:46:7c:6d:82:4c:4b: 1c:6b:0f:48:48:85:f0:d8:65:94:3c:c5:df:c5:d7:59:73:4c: cd:e0:2f:63:fa:eb:16:04:ce:e1:8b:33:0a:82:7b:9f:87:f9: 80:fb:a6:2e:3b:4f:7f:3c:13:b9:34:6b:09:5f:34:c2:d4:0e: 8c:fb:27:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGMjExMTAvBgNVBAUTKDcwRDI2MDFDQjBEMEZBNEY5QzVGMEUwMjg2RDhCNkFG RDkyMzVBMDYwHhcNMjYwMTI1MDUzNjE5WhcNMjYwMjAxMDUzNjE5WjAYMRYwFAYD VQQDDA02OTc1YWJkMy0zOGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7ib02uu28NHI3NXVu2GGR8uWFVasQilaT3m9tiBHirP+mepxqGEoG0wW4en NwS5DmzvHnuHUEr7YESoSdoP//edZOpBz0n1Hd9LEF/pECEvZ7KVy8fM3opuhknI arx+WfmlJ9jSDwruGCqCqpKiH9n9F9zesvzd1eB+CbiH97hN11NdBL5YS0G/LRWY aQ0mIZ/t1ucGYVLkqxCUxwTuNVKxOHM8tIFgOb2Mg6/8/r/etmH2bzAiJOJfV+N9 VqnVbFQvFDqXz9nOcCRaY1HlDg/Yr5aKpHhax8oXHbT4T2SCPvyZp64+BYW2urFh Eaew+uCyMe2kkf+7Ql6UeGBfwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCg/wVgn S+AbRgN9wVjE1Gzo7eIrMB8GA1UdIwQYMBaAFHDSYByw0PpPnF8OAobYtq/ZI1oG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEYyMS84NTE3RkIwODE0 MTMxMUYwOEYxQTFENzNDNEY5QUUwMi9jTkpnSExEUS1rLWNYdzRDaHRpMnI5a2pX Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOSmdITERRLWstY1h3NENodGkycjlraldnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEYyMS84NTE3RkIwODE0MTMxMUYwOEYxQTFENzNDNEY5QUUwMi9jTkpnSExEUS1r LWNYdzRDaHRpMnI5a2pXZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCb6ZE8Pw5PydcNfSlVpq8TKtxqi87rjJOCAwm72VBh+bG8CNLkHXQ L+ClSUrwaVXx3HrCIvtnQlkiCz+bOtJstWk6+yeqbnUI7IDKIf6Qpmhe5MvIcmar pFIwTZ+gudS9fhrjgtPUKc1pIaFKouzDk0MunNgzQ3avj9h6JqByPe5BzEs/DorT 5AsZ0I46ka/jP/DPLrCBplF5wm3BG21n3iuWgXc5mvOmmZbA23IxfNfN7/sKTln2 u2IQUzQ9RLBGfG2CTEscaw9ISIXw2GWUPMXfxddZc0zN4C9j+usWBM7hizMKgnuf h/mA+6YuO09/PBO5NGsJXzTC1A6M+yfj -----END CERTIFICATE-----Generated at Sun Jan 25 14:08:22 2026 by rpki-client