This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: tfiUQncS3cjAz3yrFbKmVJDpEEfNg+qI1sVLAaKApZE= Subject key identifier: 03:1F:0D:68:A3:2C:D2:C6:E4:90:75:45:88:8C:F4:24:05:02:FD:98 Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: 015C Signing time: Sun 25 Jan 2026 03:22:30 +0000 Manifest this update: Sun 25 Jan 2026 03:22:30 +0000 Manifest next update: Sun 01 Feb 2026 03:22:30 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: njCmgaQOfjoq5O4KBKmw1FJImc97OgrbVxeraFNqhRM=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: Jan 25 03:22:30 2026 GMT Not After : Feb 1 03:22:30 2026 GMT Subject: CN=69758c76-b7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:37:9a:ba:d0:7b:3f:87:6e:cb:df:15:b4:42: 75:f8:da:24:60:99:06:d5:ba:43:ab:33:fa:bc:b6: 46:c2:b5:01:01:4f:c6:31:51:a9:cd:06:e2:f5:8a: 26:56:70:73:3b:2a:22:6e:76:c8:11:61:b0:c8:ed: 0c:10:04:22:a5:80:64:05:eb:a0:54:b9:ee:6d:20: d5:cf:ba:8b:f4:85:6d:15:80:c0:2d:2a:db:a5:cd: 59:3f:08:15:a2:d9:1a:59:2c:0b:3c:2b:e8:14:0e: d2:72:a3:ad:81:0e:d3:41:20:ce:c0:82:4b:41:2c: 82:a8:05:40:a4:f7:e8:46:f8:88:3c:7e:76:64:2b: 50:81:f9:8b:8c:18:c6:e9:8b:c2:d3:94:e7:f5:08: 19:86:c1:4f:20:fa:b7:1c:02:55:3f:ef:b1:be:f4: 5d:97:6d:45:19:14:75:ea:62:3f:e9:e8:d2:0b:df: cd:84:9b:84:43:08:e7:5c:e1:a8:16:0f:3f:72:44: b2:99:a4:6f:ef:33:b2:ce:75:d6:e7:b7:fa:a3:4d: 00:52:ac:5d:a5:82:9d:ff:6c:0d:1e:c7:24:8c:e5: b7:c3:fd:df:c8:77:2d:46:ee:04:82:bd:0e:5d:2c: 99:4c:ee:f8:3f:85:eb:bb:8f:05:64:93:ce:92:ea: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1F:0D:68:A3:2C:D2:C6:E4:90:75:45:88:8C:F4:24:05:02:FD:98 X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:83:f0:0e:f8:f7:de:60:69:6a:e8:75:0f:21:0e:8b:52:1e: ae:28:c7:34:40:4d:1d:fd:aa:31:ec:83:bb:d6:5d:3f:40:d1: e6:31:c9:68:3a:8b:ba:3a:ea:01:10:af:89:57:31:fe:aa:e7: d2:fd:0e:0a:9a:77:44:94:9d:21:c1:18:0f:81:0e:9f:15:a4: fe:aa:f3:a8:75:1e:f9:67:9e:0c:56:ab:c1:ef:3a:7a:52:ab: 53:d6:95:9c:9e:b4:3e:a2:88:05:6c:93:b6:0d:41:95:bd:2f: 2f:58:68:c4:a7:75:5d:bc:9f:dc:e5:2f:62:76:61:49:88:a2: 62:79:16:0d:b1:e6:6b:e4:21:2c:7f:8f:05:14:3b:26:b1:35: d4:11:0a:83:1e:3c:c0:ca:0f:57:ed:96:db:d5:c6:57:31:44: 5a:ee:f7:35:90:77:a6:b9:00:18:a2:42:f1:84:29:60:1e:e8: 55:ba:86:ac:6b:ae:a0:c8:02:86:e3:30:e7:fc:8f:1d:5e:18: b7:cd:ed:18:48:3d:b0:dd:5d:41:ba:50:72:56:63:14:10:21: 83:90:09:c7:bf:e8:3a:39:45:84:de:89:50:99:5a:2b:9a:d5: 45:43:60:02:e9:c7:4f:20:23:3e:2c:a8:0f:a9:cf:49:f8:22: 34:56:a6:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjYwMTI1MDMyMjMwWhcNMjYwMjAxMDMyMjMwWjAYMRYwFAYD VQQDDA02OTc1OGM3Ni1iN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjDeautB7P4duy98VtEJ1+NokYJkG1bpDqzP6vLZGwrUBAU/GMVGpzQbi9Yom VnBzOyoibnbIEWGwyO0MEAQipYBkBeugVLnubSDVz7qL9IVtFYDALSrbpc1ZPwgV otkaWSwLPCvoFA7ScqOtgQ7TQSDOwIJLQSyCqAVApPfoRviIPH52ZCtQgfmLjBjG 6YvC05Tn9QgZhsFPIPq3HAJVP++xvvRdl21FGRR16mI/6ejSC9/NhJuEQwjnXOGo Fg8/ckSymaRv7zOyznXW57f6o00AUqxdpYKd/2wNHsckjOW3w/3fyHctRu4Egr0O XSyZTO74P4Xru48FZJPOkupV3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMfDWij LNLG5JB1RYiM9CQFAv2YMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJg/AO+PfeYGlq6HUPIQ6LUh6uKMc0QE0d/aox7IO71l0/QNHmMclo Oou6OuoBEK+JVzH+qufS/Q4KmndElJ0hwRgPgQ6fFaT+qvOodR75Z54MVqvB7zp6 UqtT1pWcnrQ+oogFbJO2DUGVvS8vWGjEp3VdvJ/c5S9idmFJiKJieRYNseZr5CEs f48FFDsmsTXUEQqDHjzAyg9X7Zbb1cZXMURa7vc1kHemuQAYokLxhClgHuhVuoas a66gyAKG4zDn/I8dXhi3ze0YSD2w3V1BulByVmMUECGDkAnHv+g6OUWE3olQmVor mtVFQ2AC6cdPICM+LKgPqc9J+CI0Vqbw -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:45 2026 by rpki-client