This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: gTAcC27JTrjHfaGOt9tWEirRsrsUM+cGw/qAIDZVsvM= Subject key identifier: 4A:09:57:C8:D9:1B:10:08:29:4D:AE:FD:DB:8D:AA:FC:D5:26:0D:E7 Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 010C Signing time: Sun 25 Jan 2026 04:14:10 +0000 Manifest this update: Sun 25 Jan 2026 04:14:10 +0000 Manifest next update: Sun 01 Feb 2026 04:14:10 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: U1XyN2tuuBEirhuSp23MA8nyTfdGOTvBaDztaVU3B/Y=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: ssSab392rUEklfenSvYRYq8TUWajk4XJZygnBh6m+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Jan 25 04:14:10 2026 GMT Not After : Feb 1 04:14:10 2026 GMT Subject: CN=69759892-6c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:41:23:28:f7:af:ce:34:b4:b3:c9:7f:4d:fb: 93:c9:29:b4:8a:8f:b1:8e:63:8f:3a:e3:8a:6f:68: 8f:a4:26:d2:64:9b:ba:8f:28:0f:ea:b4:f6:b4:31: bb:38:d9:4b:50:04:9e:d9:fe:b1:97:3f:42:1f:ef: 32:12:4a:8f:87:58:5e:43:02:9c:53:0a:c6:97:d3: 05:e0:ec:16:82:d5:8c:2a:e9:cc:a4:2e:6f:61:39: e9:1d:14:9e:d7:e6:b5:c7:80:a1:fa:8f:3a:36:20: 53:f7:92:1c:ab:70:33:a1:ee:40:49:ba:7a:e4:3f: 9a:bc:f3:89:89:07:37:5b:12:f8:af:cd:33:56:4b: af:7c:db:54:55:fc:6a:de:d6:44:15:02:55:80:a4: a2:08:a8:e5:d3:1b:21:a7:f9:e1:ef:12:c9:30:d9: 1f:18:85:b0:0b:dd:b3:bc:0a:ba:23:52:61:09:fb: f9:57:cc:67:b5:f8:69:38:e6:c0:c0:0e:3a:b1:09: 4f:83:10:91:50:9f:63:20:1a:a6:17:e3:48:81:2d: bc:2b:e0:44:81:a3:a9:d6:17:05:ed:ff:db:92:ac: 41:4c:d2:f9:6f:a2:7e:2b:39:7c:20:9e:6f:1b:cc: 7d:64:5e:63:90:13:3d:97:1a:28:5c:18:f6:fc:2f: ec:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:09:57:C8:D9:1B:10:08:29:4D:AE:FD:DB:8D:AA:FC:D5:26:0D:E7 X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a9:3c:be:6c:ec:31:82:02:1e:59:11:9e:5a:ec:a8:87:a1: 63:b5:c3:bf:86:77:77:86:c4:85:29:c9:20:c3:bd:d5:70:60: 99:a0:28:13:99:dd:6c:92:75:8c:9a:b4:0e:c8:c7:cc:4c:2b: 2d:0d:4d:26:cd:0c:7d:98:a5:3b:c4:85:18:81:c9:ed:fd:99: 1e:8d:59:cc:f9:f8:95:2a:40:3e:e6:65:86:e2:1c:b5:20:f2: b6:40:2a:2a:c9:25:62:81:a1:dd:92:ed:0e:8b:cb:bf:0d:88: 2e:73:01:dc:f8:1a:0b:2a:3d:fa:34:2f:4f:7b:1b:ba:c1:e0: cc:7b:e5:c9:ff:bb:0a:fb:0d:dd:a8:f9:c4:ec:f5:ac:2e:a1: f4:96:f3:24:9c:45:5c:cd:58:e3:9a:7b:b7:f1:ae:9b:49:00: 9a:7b:6b:bc:23:1c:e0:bc:7b:03:62:37:3f:1d:74:b5:1b:86: b6:e4:bb:9a:50:5c:95:09:ba:46:2a:60:ca:de:3a:06:56:ee: a5:5d:da:65:e7:4f:a2:5f:a5:52:cd:19:56:49:a0:59:cd:d2: f9:22:90:10:97:50:a2:74:7e:06:5a:32:52:11:99:db:56:8d: b6:8b:6a:1a:f1:c7:99:cd:e1:96:38:e0:0b:68:5a:6d:22:6e: 90:17:3c:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwMTI1MDQxNDEwWhcNMjYwMjAxMDQxNDEwWjAYMRYwFAYD VQQDDA02OTc1OTg5Mi02YzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukEjKPevzjS0s8l/TfuTySm0io+xjmOPOuOKb2iPpCbSZJu6jygP6rT2tDG7 ONlLUASe2f6xlz9CH+8yEkqPh1heQwKcUwrGl9MF4OwWgtWMKunMpC5vYTnpHRSe 1+a1x4Ch+o86NiBT95Icq3Azoe5ASbp65D+avPOJiQc3WxL4r80zVkuvfNtUVfxq 3tZEFQJVgKSiCKjl0xshp/nh7xLJMNkfGIWwC92zvAq6I1JhCfv5V8xntfhpOObA wA46sQlPgxCRUJ9jIBqmF+NIgS28K+BEgaOp1hcF7f/bkqxBTNL5b6J+Kzl8IJ5v G8x9ZF5jkBM9lxooXBj2/C/sUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoJV8jZ GxAIKU2u/duNqvzVJg3nMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlqTy+bOwxggIeWRGeWuyoh6FjtcO/hnd3hsSFKckgw73VcGCZoCgT md1sknWMmrQOyMfMTCstDU0mzQx9mKU7xIUYgcnt/ZkejVnM+fiVKkA+5mWG4hy1 IPK2QCoqySVigaHdku0Oi8u/DYgucwHc+BoLKj36NC9Pexu6weDMe+XJ/7sK+w3d qPnE7PWsLqH0lvMknEVczVjjmnu38a6bSQCae2u8IxzgvHsDYjc/HXS1G4a25Lua UFyVCbpGKmDK3joGVu6lXdpl50+iX6VSzRlWSaBZzdL5IpAQl1CidH4GWjJSEZnb Vo22i2oa8ceZzeGWOOALaFptIm6QFzz7 -----END CERTIFICATE-----Generated at Sun Jan 25 06:04:54 2026 by rpki-client