This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: 7ot5R3kJlJ+mrm+gzVUyvFwoqVMGvLinzGErww0D6Ik= Subject key identifier: 8E:1A:D3:22:BF:AD:8E:2F:44:E8:1C:DE:25:B5:4D:8C:61:C2:23:D0 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 3525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 3514 Signing time: Sat 24 Jan 2026 14:59:35 +0000 Manifest this update: Sat 24 Jan 2026 14:59:35 +0000 Manifest next update: Sat 31 Jan 2026 14:59:35 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: kNYuULBVhhPSqEljcR//q3aI1lspYjHLqnoMvxh6S/4=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: l+r465/YNbsSePCYzOqNrThMuqt7t44YKkUIR4UnTJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13605 (0x3525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Jan 24 14:59:35 2026 GMT Not After : Jan 31 14:59:35 2026 GMT Subject: CN=6974de57-4b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:33:75:65:09:af:43:4c:e4:15:58:a1:ec:35: db:f8:db:c5:97:59:2b:e7:98:b5:3a:2a:fe:9f:95: 6d:fe:3f:73:ab:5a:cf:5a:e5:25:c3:56:17:44:8b: 1b:4f:02:8e:33:5b:b2:4a:1f:58:dc:01:66:90:43: 36:08:67:c8:0b:ff:83:5a:92:97:25:6b:1b:2e:c2: a5:66:4c:4a:41:0b:a4:2e:6d:34:4a:94:37:c6:7c: cb:c2:f2:c9:e4:93:0c:bb:6e:7f:57:09:dc:de:f3: a3:5a:4d:28:cb:92:f7:6c:ec:f2:61:36:0c:46:40: 9f:f9:ff:fe:f6:13:5c:9d:a0:39:79:0c:06:f5:91: a8:ac:79:b9:77:64:f0:50:8a:9a:f2:f3:b1:af:9d: ed:91:ab:7d:99:5d:b6:97:61:10:a8:93:de:b0:5f: 6c:74:af:5e:f6:c1:b8:58:fa:11:61:42:53:c9:ff: b1:39:1a:7e:3a:b7:1c:76:06:2f:64:6e:92:69:5e: 74:0f:88:b7:63:a0:52:d4:1a:92:e4:4f:4f:9b:a4: 70:73:6c:4e:9c:a8:f9:71:b9:1d:46:3f:af:ed:1f: 25:e4:61:b4:82:a1:f3:40:4a:b8:cf:a9:15:0e:06: 22:cf:97:ef:51:34:94:54:58:04:16:1a:4a:2f:64: 0e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1A:D3:22:BF:AD:8E:2F:44:E8:1C:DE:25:B5:4D:8C:61:C2:23:D0 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f5:b8:4b:ac:a5:f6:f8:dd:d9:21:c3:9c:95:4f:9d:c0:ed: eb:68:c1:37:9f:da:10:bd:4e:f9:5e:f8:e7:8a:2b:75:b7:3b: 91:ba:5b:9c:08:62:60:61:6a:71:a7:c1:15:82:1f:b7:69:c0: 86:97:0b:71:18:50:ec:62:9c:b0:ff:0e:b3:b6:d7:50:58:7e: c6:4f:24:f1:0c:5c:46:22:d3:8f:56:75:97:5a:f1:84:04:60: b4:21:7c:ee:e0:1b:63:b8:a9:86:5b:b7:1d:20:14:9a:5e:18: 95:fd:cf:4b:f3:9f:2b:07:5a:d0:da:cd:a7:a6:a1:cb:42:23: 40:04:39:cf:db:0b:1a:5e:14:62:20:63:9b:5d:a4:49:ad:ae: e5:39:0c:44:77:fb:41:2c:98:db:50:3d:a3:a9:a2:92:1a:36: 06:1b:d0:96:78:07:ea:e8:2c:e1:1f:53:6d:46:a6:4d:d3:49: 0f:73:77:de:8d:f0:b4:e3:12:ee:01:4f:3d:ba:f3:9e:b0:f9: 8a:1b:a5:22:c1:99:ae:15:82:cf:ca:f9:e3:1d:0f:da:c1:5e: 20:4e:84:2c:f8:04:bb:ed:95:1b:bb:cd:89:d0:77:c7:2f:5a: 56:c7:08:2e:1b:c5:ff:12:f9:46:9e:87:e7:ec:25:ea:f2:43: ed:9f:81:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjYwMTI0MTQ1OTM1WhcNMjYwMTMxMTQ1OTM1WjAYMRYwFAYD VQQDDA02OTc0ZGU1Ny00Yjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzN1ZQmvQ0zkFVih7DXb+NvFl1kr55i1Oir+n5Vt/j9zq1rPWuUlw1YXRIsb TwKOM1uySh9Y3AFmkEM2CGfIC/+DWpKXJWsbLsKlZkxKQQukLm00SpQ3xnzLwvLJ 5JMMu25/Vwnc3vOjWk0oy5L3bOzyYTYMRkCf+f/+9hNcnaA5eQwG9ZGorHm5d2Tw UIqa8vOxr53tkat9mV22l2EQqJPesF9sdK9e9sG4WPoRYUJTyf+xORp+OrccdgYv ZG6SaV50D4i3Y6BS1BqS5E9Pm6Rwc2xOnKj5cbkdRj+v7R8l5GG0gqHzQEq4z6kV DgYiz5fvUTSUVFgEFhpKL2QOqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4a0yK/ rY4vROgc3iW1TYxhwiPQMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo9bhLrKX2+N3ZIcOclU+dwO3raME3n9oQvU75Xvjniit1tzuRuluc CGJgYWpxp8EVgh+3acCGlwtxGFDsYpyw/w6zttdQWH7GTyTxDFxGItOPVnWXWvGE BGC0IXzu4BtjuKmGW7cdIBSaXhiV/c9L858rB1rQ2s2npqHLQiNABDnP2wsaXhRi IGObXaRJra7lOQxEd/tBLJjbUD2jqaKSGjYGG9CWeAfq6CzhH1NtRqZN00kPc3fe jfC04xLuAU89uvOesPmKG6UiwZmuFYLPyvnjHQ/awV4gToQs+AS77ZUbu82J0HfH L1pWxwguG8X/EvlGnofn7CXq8kPtn4FF -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:52 2026 by rpki-client