This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: 4Ou7f0AATPMu8kAHeRcn0psrcUQitem6zzsusZWtt4c= Subject key identifier: B9:67:4C:51:8F:18:55:08:A7:2B:AE:00:16:54:CB:77:12:C7:A1:4A Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B5B Signing time: Sat 24 Jan 2026 16:04:09 +0000 Manifest this update: Sat 24 Jan 2026 16:04:09 +0000 Manifest next update: Sat 31 Jan 2026 16:04:09 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: QibNuBJXoWCfOYBTzkeeVv6sYw8YW8OdPIIf88rig/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7006 (0x1b5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Jan 24 16:04:09 2026 GMT Not After : Jan 31 16:04:09 2026 GMT Subject: CN=6974ed79-9d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7f:18:d3:20:52:6c:e6:e4:cb:9a:55:de:48: f7:c2:05:b2:c1:5f:4d:01:3b:c8:0e:03:c7:12:4c: eb:c6:83:4e:4a:be:77:f9:54:f3:63:09:01:ea:87: 50:6b:a0:16:5c:aa:b7:f4:20:a7:d7:58:32:88:a5: e3:5d:96:94:e5:c2:4e:dc:b7:77:1f:57:ae:8f:75: f9:a7:86:5b:46:fe:98:c3:20:2a:63:4b:ad:4a:fc: 83:0c:32:b7:51:c3:4a:38:16:57:30:ca:42:80:59: fe:f1:d5:18:31:f8:be:8f:e6:1d:b9:2a:6b:54:13: c4:9e:5f:36:5c:86:50:07:d4:6b:7e:0e:f3:f8:cf: 19:55:44:1e:d7:c5:6a:ec:7b:6d:f5:29:53:c0:bb: d8:84:b1:1b:72:78:39:3c:4c:ec:df:b2:57:de:e5: f0:6a:32:01:6e:82:99:2c:55:4f:15:46:79:63:2b: 8e:e6:27:97:20:ee:13:83:7e:10:8f:de:a7:d2:76: d5:23:eb:08:8f:d3:ea:b6:d3:e0:2d:fa:54:0e:5e: 0a:03:be:c0:09:5a:98:eb:62:fa:4b:0c:c3:67:1c: 68:5e:2f:01:2c:34:16:f9:b3:93:36:bf:5d:78:db: 8f:0d:ae:80:cc:23:79:90:66:2b:2d:a3:1c:33:8b: 2b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:67:4C:51:8F:18:55:08:A7:2B:AE:00:16:54:CB:77:12:C7:A1:4A X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:34:2e:37:9d:51:bb:9f:cf:1d:85:cf:6e:0a:cc:a2:5c:7a: d8:dd:dc:bb:7e:a3:48:d8:57:a1:d6:cf:f2:12:13:32:17:eb: e7:95:97:c7:cc:40:1b:8f:d8:44:29:f4:15:10:6d:23:c9:30: 22:6b:b9:66:3b:3a:b7:f7:b5:6c:ab:95:25:8e:20:40:4a:a0: 64:c0:87:63:79:f5:d3:fe:7f:14:19:08:33:05:d5:b6:3c:75: da:0f:02:b0:3b:ae:64:f4:05:4a:25:96:89:0e:7e:f3:77:6e: a0:4d:cd:06:03:96:15:a4:2c:28:e4:51:33:74:1e:dc:8f:79: 10:c4:6e:b9:e6:c4:e7:75:8c:85:2a:37:bb:da:9a:54:24:df: 2f:a7:ff:cd:b7:f7:17:f2:7e:22:a4:0b:2c:47:14:44:ec:f4: 64:45:07:cb:b1:28:90:bb:dd:9a:77:30:b6:18:7f:0a:f5:d1: 3d:87:33:a1:bf:b5:e8:9d:25:02:c9:47:da:53:d3:1b:6c:9e: c4:4e:aa:d0:fa:9a:7a:cc:02:77:4b:58:89:28:79:b4:80:89: 16:66:ab:58:71:6d:2a:32:f2:bb:13:e8:f3:14:d0:3d:cb:e9: 4d:b9:17:62:ff:6a:df:a8:af:eb:87:11:00:31:6e:33:f2:51: 9f:fe:dc:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjYwMTI0MTYwNDA5WhcNMjYwMTMxMTYwNDA5WjAYMRYwFAYD VQQDDA02OTc0ZWQ3OS05ZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApX8Y0yBSbObky5pV3kj3wgWywV9NATvIDgPHEkzrxoNOSr53+VTzYwkB6odQ a6AWXKq39CCn11gyiKXjXZaU5cJO3Ld3H1euj3X5p4ZbRv6YwyAqY0utSvyDDDK3 UcNKOBZXMMpCgFn+8dUYMfi+j+YduSprVBPEnl82XIZQB9Rrfg7z+M8ZVUQe18Vq 7Htt9SlTwLvYhLEbcng5PEzs37JX3uXwajIBboKZLFVPFUZ5YyuO5ieXIO4Tg34Q j96n0nbVI+sIj9PqttPgLfpUDl4KA77ACVqY62L6SwzDZxxoXi8BLDQW+bOTNr9d eNuPDa6AzCN5kGYrLaMcM4srvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlnTFGP GFUIpyuuABZUy3cSx6FKMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDNC43nVG7n88dhc9uCsyiXHrY3dy7fqNI2Feh1s/yEhMyF+vnlZfH zEAbj9hEKfQVEG0jyTAia7lmOzq397Vsq5UljiBASqBkwIdjefXT/n8UGQgzBdW2 PHXaDwKwO65k9AVKJZaJDn7zd26gTc0GA5YVpCwo5FEzdB7cj3kQxG655sTndYyF Kje72ppUJN8vp//Nt/cX8n4ipAssRxRE7PRkRQfLsSiQu92adzC2GH8K9dE9hzOh v7XonSUCyUfaU9MbbJ7ETqrQ+pp6zAJ3S1iJKHm0gIkWZqtYcW0qMvK7E+jzFNA9 y+lNuRdi/2rfqK/rhxEAMW4z8lGf/twL -----END CERTIFICATE-----Generated at Sun Jan 25 09:00:24 2026 by rpki-client