This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft File: lyuQ2cUZIlatlkdbOSurGnp5zC0.mft (raw, json) Hash identifier: x9ZHs71O8pPLXZl9qoi+A7+BQApas6TXWres4MEW/QE= Subject key identifier: 9B:52:31:98:F6:E1:91:DF:A7:54:B2:CE:B4:EA:9A:69:71:92:C8:BC Authority key identifier: 97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D Certificate issuer: /CN=A9132FD9/serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft Manifest number: 89 Signing time: Fri 23 Jan 2026 05:42:38 +0000 Manifest this update: Fri 23 Jan 2026 05:42:38 +0000 Manifest next update: Fri 30 Jan 2026 05:42:38 +0000 Files and hashes: 1: lyuQ2cUZIlatlkdbOSurGnp5zC0.crl (hash: KyhbetuBSemT1nIM7qmlen1xPIJkd0z+8vN/ZFRvTJ0=) 2: DCC2224A313011F0BE214A64C4F9AE02.roa (hash: boAAaQY0nzMtC8MdALGWU7uiMFPgsCoPJLOiVmNOgmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FD9, serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Validity Not Before: Jan 23 05:42:38 2026 GMT Not After : Jan 30 05:42:38 2026 GMT Subject: CN=69730a4e-26ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:63:7c:e9:4d:18:1f:d5:0b:bf:3b:66:c3:88: 2f:09:62:dd:84:58:2c:bd:af:44:88:fd:d7:af:27: 91:52:a2:74:5a:01:18:da:96:69:d9:5a:b5:44:bd: 7e:1a:0d:11:c6:2d:d0:9c:f4:9d:bf:d4:b9:57:69: e7:5d:b2:56:2a:fe:13:2c:dd:1c:26:fe:93:92:ca: 78:31:b9:07:29:d0:9a:93:e5:cc:f5:a0:b4:b8:bf: b1:ac:52:53:f1:2a:07:16:d9:c9:a3:47:ff:6d:54: 70:ea:bf:d3:92:65:0f:97:d3:b3:f4:f5:dd:0f:6f: 63:08:4d:6c:4b:92:ce:0e:35:9a:38:da:49:df:9d: 9c:83:b2:19:49:2e:0e:24:56:ed:4c:f0:b6:0c:d1: 56:9f:b8:b3:12:0a:db:28:83:7a:9d:bf:2b:64:98: e1:89:59:ab:a6:94:35:94:9b:dd:e4:b1:e3:9d:32: 34:21:93:60:c1:3a:34:0d:00:2e:dd:a4:03:bd:18: 37:26:87:f4:8c:99:91:82:b9:f5:b9:36:08:d9:04: fa:94:9b:4a:67:8e:0b:3a:b0:2a:e1:8e:ac:83:dc: 62:fd:6e:76:77:0a:f1:d7:55:03:4f:c5:14:9d:f0: c3:41:55:7e:e9:ce:97:01:6f:aa:0b:a8:cc:98:8e: 8f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:52:31:98:F6:E1:91:DF:A7:54:B2:CE:B4:EA:9A:69:71:92:C8:BC X509v3 Authority Key Identifier: keyid:97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:56:15:91:e8:fa:ce:74:c2:04:59:01:03:0a:66:e7:45:64: 92:2f:f7:42:b2:ff:54:e4:9b:a5:dd:1a:2a:65:03:8a:13:be: ab:f3:19:96:08:74:71:c4:c0:4d:98:5d:2e:36:5f:b6:a7:83: 35:ae:2d:be:a8:b1:6c:e1:ce:66:db:16:a4:c0:23:7c:03:b7: b7:64:d2:59:ca:a2:a5:c0:6f:24:7c:11:f7:90:7b:c2:34:65: 27:d2:5b:0a:23:b0:4d:cd:fd:ba:e5:1f:54:5e:42:f7:fc:78: ab:e3:25:6e:6f:61:13:c9:17:9d:27:77:34:9e:9c:b9:05:2e: 26:74:29:35:14:3d:bf:84:46:8b:f0:41:bb:26:84:92:cb:8a: df:69:24:6d:02:79:d2:7d:61:ff:0d:02:a8:3a:55:ac:6c:16: 7f:18:5c:d6:ee:ac:5e:2a:a4:aa:94:40:04:5c:9d:77:1b:75: 1d:7f:45:6a:09:ac:5d:6b:1e:5a:a7:42:d1:59:25:67:d2:a9: 7a:0e:5c:e8:b5:0e:22:f9:80:9c:7f:c5:a9:a8:df:cd:00:0f: 18:29:fc:56:fe:e7:ad:7b:72:f3:05:f8:75:18:81:7a:dc:b6: dc:bd:8a:89:e1:83:08:6b:8f:72:2c:69:19:07:49:1f:d2:f0: 9e:d9:db:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGRDkxMTAvBgNVBAUTKDk3MkI5MEQ5QzUxOTIyNTZBRDk2NDc1QjM5MkJBQjFB N0E3OUNDMkQwHhcNMjYwMTIzMDU0MjM4WhcNMjYwMTMwMDU0MjM4WjAYMRYwFAYD VQQDDA02OTczMGE0ZS0yNmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWN86U0YH9ULvztmw4gvCWLdhFgsva9EiP3XryeRUqJ0WgEY2pZp2Vq1RL1+ Gg0Rxi3QnPSdv9S5V2nnXbJWKv4TLN0cJv6Tksp4MbkHKdCak+XM9aC0uL+xrFJT 8SoHFtnJo0f/bVRw6r/TkmUPl9Oz9PXdD29jCE1sS5LODjWaONpJ352cg7IZSS4O JFbtTPC2DNFWn7izEgrbKIN6nb8rZJjhiVmrppQ1lJvd5LHjnTI0IZNgwTo0DQAu 3aQDvRg3Jof0jJmRgrn1uTYI2QT6lJtKZ44LOrAq4Y6sg9xi/W52dwrx11UDT8UU nfDDQVV+6c6XAW+qC6jMmI6PEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtSMZj2 4ZHfp1SyzrTqmmlxksi8MB8GA1UdIwQYMBaAFJcrkNnFGSJWrZZHWzkrqxp6ecwt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkZEOS83RjlBNzAzNDJC QjUxMUYwOURFNUJBNEVDNEY5QUUwMi9seXVRMmNVWklsYXRsa2RiT1N1ckducDV6 QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x5dVEyY1VaSWxhdGxrZGJPU3VyR25wNXpDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkZEOS83RjlBNzAzNDJCQjUxMUYwOURFNUJBNEVDNEY5QUUwMi9seXVRMmNVWkls YXRsa2RiT1N1ckducDV6QzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2VhWR6PrOdMIEWQEDCmbnRWSSL/dCsv9U5Jul3RoqZQOKE76r8xmW CHRxxMBNmF0uNl+2p4M1ri2+qLFs4c5m2xakwCN8A7e3ZNJZyqKlwG8kfBH3kHvC NGUn0lsKI7BNzf265R9UXkL3/Hir4yVub2ETyRedJ3c0npy5BS4mdCk1FD2/hEaL 8EG7JoSSy4rfaSRtAnnSfWH/DQKoOlWsbBZ/GFzW7qxeKqSqlEAEXJ13G3Udf0Vq Caxdax5ap0LRWSVn0ql6DlzotQ4i+YCcf8WpqN/NAA8YKfxW/uete3LzBfh1GIF6 3LbcvYqJ4YMIa49yLGkZB0kf0vCe2ds/ -----END CERTIFICATE-----Generated at Sun Jan 25 02:49:03 2026 by rpki-client