This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: GNQu698eFlurRhfMfCs5wtjM4u+m3C7q5bEeF8kpyN8= Subject key identifier: 67:F1:14:88:31:10:81:1F:A8:FA:29:47:7B:6A:98:B1:91:35:59:00 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0CE0 Signing time: Sat 24 Jan 2026 17:46:56 +0000 Manifest this update: Sat 24 Jan 2026 17:46:55 +0000 Manifest next update: Sat 31 Jan 2026 17:46:55 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: UbOtkedlMTeOqqRu4h4bYf7CTa7Yfo3dKEMzGOhJ6MY=) 2: 44FEC394589711F0B981A181C4F9AE02.roa (hash: czF1g9Ex6VYm+KxfQ/94CmFck1ccrgeMZN09KqEwv5g=) 3: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: 84DuWQA+97cDdeAiob2yXUJKVlhHSu21Cq4u1ZPXmWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Jan 24 17:46:55 2026 GMT Not After : Jan 31 17:46:55 2026 GMT Subject: CN=69750590-9a2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:92:f3:be:ae:52:7a:0b:af:a8:e5:09:95:97: cb:1a:f4:aa:db:97:79:40:59:36:7e:aa:d1:d1:8c: b4:06:ed:9f:49:f8:cb:a7:8b:bd:86:c0:53:6e:08: 5f:f1:33:a7:3b:2d:f0:2d:9f:21:72:b9:5a:11:14: 82:70:73:f9:43:5e:34:3b:ac:c6:6c:08:fb:41:4d: fb:83:fa:f7:eb:ae:56:81:8e:51:13:cd:27:e6:38: f4:cc:41:04:fb:fd:e1:1d:56:b6:57:0e:d1:0a:2a: d7:8e:29:f9:e0:66:90:b7:31:ca:cf:6d:10:98:a0: fc:ce:2b:cb:21:00:61:6f:fc:40:b2:20:fa:06:6f: 98:9a:31:4c:d1:51:02:f5:ab:35:fd:c0:d7:44:99: c9:03:66:79:b3:36:53:58:42:05:77:08:8b:60:ec: 1f:ad:52:a2:23:d0:ef:b3:c7:ac:0e:3c:b1:25:6a: e6:e2:42:02:83:dc:62:af:0f:fe:31:d8:c7:ac:4e: dc:d7:c8:9e:5a:80:38:62:56:78:d5:7c:db:38:30: 25:35:bb:fd:54:62:50:6d:26:dc:a7:c8:e3:ce:6a: 66:7a:14:37:6a:0b:f4:5e:46:e5:42:e8:0b:dd:d0: 25:b8:bd:0b:4c:67:09:4d:95:ce:f1:81:c8:4c:f5: c8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F1:14:88:31:10:81:1F:A8:FA:29:47:7B:6A:98:B1:91:35:59:00 X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a2:7f:8f:00:6b:96:04:3a:10:f5:09:22:8e:0c:d5:94:0a: 60:37:9d:ce:a9:51:d5:5c:51:40:53:54:18:df:44:84:7a:f2: 12:28:2d:a8:4a:ab:31:14:a1:e4:08:8a:45:20:e4:ac:66:cf: 24:ba:b9:4e:f3:8f:d8:bb:4d:55:eb:0c:36:bb:71:82:36:b3: 03:3b:3f:ca:ee:c7:3e:fb:4a:63:c5:32:8d:08:41:c2:14:b2: 41:40:51:70:5f:fe:22:94:b4:c2:70:30:48:0d:ee:26:1a:31: 4a:a6:f6:74:5b:d2:64:f3:5f:a6:86:02:19:32:4c:41:7a:2e: ad:c6:f8:72:e0:90:6c:3a:7e:1b:7b:58:56:43:d3:5f:57:b2: 8e:7b:56:4f:1a:2f:d6:96:a2:40:f5:74:e4:29:3a:ae:07:16: e4:ee:e1:fb:70:80:26:6e:fa:26:dd:48:b5:d6:b6:11:8d:28: bc:77:4a:d7:ef:d2:25:fb:5c:53:35:0f:f9:d9:b7:13:ee:4e: c1:2b:a7:bf:45:c7:2a:3a:72:9e:a1:37:73:54:91:22:90:3b: 27:47:a7:e4:e5:68:46:eb:a5:9a:1e:7f:c0:41:b3:50:39:32: 65:ac:6c:fd:75:08:87:ec:11:89:c8:ae:ce:e4:53:0e:50:c4: ab:dd:84:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjYwMTI0MTc0NjU1WhcNMjYwMTMxMTc0NjU1WjAYMRYwFAYD VQQDDA02OTc1MDU5MC05YTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpLzvq5SeguvqOUJlZfLGvSq25d5QFk2fqrR0Yy0Bu2fSfjLp4u9hsBTbghf 8TOnOy3wLZ8hcrlaERSCcHP5Q140O6zGbAj7QU37g/r3665WgY5RE80n5jj0zEEE +/3hHVa2Vw7RCirXjin54GaQtzHKz20QmKD8zivLIQBhb/xAsiD6Bm+YmjFM0VEC 9as1/cDXRJnJA2Z5szZTWEIFdwiLYOwfrVKiI9Dvs8esDjyxJWrm4kICg9xirw/+ MdjHrE7c18ieWoA4YlZ41XzbODAlNbv9VGJQbSbcp8jjzmpmehQ3agv0XkblQugL 3dAluL0LTGcJTZXO8YHITPXI+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfxFIgx EIEfqPopR3tqmLGRNVkAMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASon+PAGuWBDoQ9QkijgzVlApgN53OqVHVXFFAU1QY30SEevISKC2o SqsxFKHkCIpFIOSsZs8kurlO84/Yu01V6ww2u3GCNrMDOz/K7sc++0pjxTKNCEHC FLJBQFFwX/4ilLTCcDBIDe4mGjFKpvZ0W9Jk81+mhgIZMkxBei6txvhy4JBsOn4b e1hWQ9NfV7KOe1ZPGi/WlqJA9XTkKTquBxbk7uH7cIAmbvom3Ui11rYRjSi8d0rX 79Il+1xTNQ/52bcT7k7BK6e/RccqOnKeoTdzVJEikDsnR6fk5WhG66WaHn/AQbNQ OTJlrGz9dQiH7BGJyK7O5FMOUMSr3YSL -----END CERTIFICATE-----Generated at Sun Jan 25 04:37:23 2026 by rpki-client