This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft File: TDZeNqZHnY6wtQ2Q820dexnvhNM.mft (raw, json) Hash identifier: VejTNxtsooXnEcpcsx6JnTw41jpaw7D8ZVFnLjvljgY= Subject key identifier: 75:BA:FD:2D:C0:03:A1:9C:2B:73:E7:EA:B8:EC:64:D0:7B:2F:C1:CF Authority key identifier: 4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 Certificate issuer: /CN=A9135B49/serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft Manifest number: 0173 Signing time: Sun 25 Jan 2026 03:38:37 +0000 Manifest this update: Sun 25 Jan 2026 03:38:36 +0000 Manifest next update: Sun 01 Feb 2026 03:38:36 +0000 Files and hashes: 1: TDZeNqZHnY6wtQ2Q820dexnvhNM.crl (hash: GdZznM9brjSNS9h1Bye8qgKb7d67Mn5g2oZm3/IL/jw=) 2: 4699D9EADB0B11F0B7B5790A82D3641D.roa (hash: hA2nmqeI4Xeh7Xzy4bd0FAlgC6xD0j8RLqT895g4ZsI=) 3: CAF0BBBCDB0811F0A3EA0CD881D3641D.roa (hash: 2a4cneMYcKI2Cb2qBm3u+TuolEyY9URQGQwLAufLa2Y=) 4: 26B79D64E9FE11EF8751AE17C4F9AE02.roa (hash: NULOku/CvbYw5IOfjTaQvBo6VWzOs275P+hl1nUeepE=) 5: ECDF4CE2DB0911F0B89EBE0382D3641D.roa (hash: UTAvnmEW6r7eBMP6DLfJ/0muwD4QdkbLl5Yizqkuujg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135B49, serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Validity Not Before: Jan 25 03:38:36 2026 GMT Not After : Feb 1 03:38:36 2026 GMT Subject: CN=6975903d-9b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:de:4e:33:06:d7:39:2d:48:64:40:91:0a:2e: 26:ac:48:46:7c:4c:8b:9f:b1:e6:66:a7:f1:ac:b8: e1:10:d7:5b:4a:73:6e:84:00:3c:fa:f4:87:ef:b6: 7a:bb:8c:4a:8c:00:0b:08:1c:a1:4b:49:7f:fb:c7: 3b:fd:7d:8d:39:f0:fc:fb:95:ce:54:34:4f:90:2f: 69:55:9e:f6:b9:8e:41:e9:af:59:42:2b:69:31:48: 91:72:a6:c8:24:b6:96:42:93:c2:97:c6:30:04:a9: d0:5f:aa:df:18:f0:1e:11:0f:25:31:9b:72:d3:62: f2:cf:e6:99:6e:f4:51:42:28:14:82:80:ab:24:58: d7:f6:6f:f7:be:f6:34:5d:2d:15:e6:c4:ce:23:e3: 51:f4:bd:c6:fb:a4:5b:f4:f7:67:dd:3f:56:39:97: 3c:7b:a6:c0:d9:9e:88:c9:4b:65:ee:9f:d4:1f:17: 89:b4:56:99:7c:a3:3e:2a:1a:62:31:72:bd:55:99: 95:79:2d:c6:e2:7b:1d:44:ec:a4:8b:75:4a:b1:d2: 50:df:44:d4:68:32:95:73:ed:d5:5a:70:ff:d8:52: 22:e8:ac:31:01:56:58:71:6c:77:17:69:ec:57:8a: 9d:e4:e2:cd:35:3d:9f:65:36:08:d6:79:3a:49:6e: 76:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BA:FD:2D:C0:03:A1:9C:2B:73:E7:EA:B8:EC:64:D0:7B:2F:C1:CF X509v3 Authority Key Identifier: keyid:4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:0c:d4:d5:2b:4b:5c:c3:71:e3:50:2e:0f:07:02:a7:88:12: 3d:2c:5c:4e:9d:4c:0d:84:f1:f2:5b:6e:ec:a5:6e:34:25:c2: fd:fb:af:0b:cf:4a:16:fb:18:32:fd:54:f5:e4:06:83:aa:c7: 3e:45:0e:eb:a9:32:6d:1f:65:51:f9:4c:b5:34:50:35:7c:6d: 24:58:18:a1:f0:95:65:76:1d:ba:fc:58:05:7f:03:d2:e8:93: 8a:e0:c1:b6:b4:6c:5c:46:32:59:57:9e:f3:ef:d7:c5:c0:b6: b1:25:ec:c7:62:98:61:46:29:88:f6:f3:82:39:6d:fd:b0:16: a2:64:6a:d2:7c:e9:15:8e:2c:3b:8c:69:ac:6d:10:a7:36:1c: 55:89:3f:4b:f8:2d:96:eb:65:f6:ce:d9:33:70:45:b6:17:77: 17:f6:ef:b5:39:f2:43:1b:c7:f5:9b:12:b7:c9:32:21:20:00: 77:f0:98:ed:4f:e2:c8:c2:4a:79:a4:24:51:32:eb:81:7d:05: db:88:10:84:5b:b2:aa:3f:93:60:cd:bb:06:15:3a:8c:bb:1b: 76:a9:d0:fc:d7:70:a6:85:07:59:cf:b8:52:9b:de:0e:29:b8: d1:2a:98:97:cc:f4:53:ce:32:24:f5:21:8e:b8:f5:ef:32:e1: 80:03:e0:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MzVCNDkxMTAvBgNVBAUTKDRDMzY1RTM2QTY0NzlEOEVCMEI1MEQ5MEYzNkQxRDdC MTlFRjg0RDMwHhcNMjYwMTI1MDMzODM2WhcNMjYwMjAxMDMzODM2WjAYMRYwFAYD VQQDDA02OTc1OTAzZC05YjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmN5OMwbXOS1IZECRCi4mrEhGfEyLn7HmZqfxrLjhENdbSnNuhAA8+vSH77Z6 u4xKjAALCByhS0l/+8c7/X2NOfD8+5XOVDRPkC9pVZ72uY5B6a9ZQitpMUiRcqbI JLaWQpPCl8YwBKnQX6rfGPAeEQ8lMZty02Lyz+aZbvRRQigUgoCrJFjX9m/3vvY0 XS0V5sTOI+NR9L3G+6Rb9Pdn3T9WOZc8e6bA2Z6IyUtl7p/UHxeJtFaZfKM+Khpi MXK9VZmVeS3G4nsdROyki3VKsdJQ30TUaDKVc+3VWnD/2FIi6KwxAVZYcWx3F2ns V4qd5OLNNT2fZTYI1nk6SW52UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW6/S3A A6GcK3Pn6rjsZNB7L8HPMB8GA1UdIwQYMBaAFEw2XjamR52OsLUNkPNtHXsZ74TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUI0OS81MzE4QTEwODEy MDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5ZNnd0UTJRODIwZGV4bnZo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REWmVOcVpIblk2d3RRMlE4MjBkZXhudmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUI0OS81MzE4QTEwODEyMDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5Z Nnd0UTJRODIwZGV4bnZoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTDNTVK0tcw3HjUC4PBwKniBI9LFxOnUwNhPHyW27spW40JcL9+68L z0oW+xgy/VT15AaDqsc+RQ7rqTJtH2VR+Uy1NFA1fG0kWBih8JVldh26/FgFfwPS 6JOK4MG2tGxcRjJZV57z79fFwLaxJezHYphhRimI9vOCOW39sBaiZGrSfOkVjiw7 jGmsbRCnNhxViT9L+C2W62X2ztkzcEW2F3cX9u+1OfJDG8f1mxK3yTIhIAB38Jjt T+LIwkp5pCRRMuuBfQXbiBCEW7KqP5NgzbsGFTqMuxt2qdD813CmhQdZz7hSm94O KbjRKpiXzPRTzjIk9SGOuPXvMuGAA+CB -----END CERTIFICATE-----Generated at Sun Jan 25 06:18:18 2026 by rpki-client