This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: HoT4F3mOJXmz2nfmvkaIzBoCEO4/ZMdx9M0q30G6jhU= Subject key identifier: DC:99:AE:0D:DA:30:CA:39:87:FC:2E:37:AB:4C:BA:21:F3:16:85:2B Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 0638 Signing time: Sat 24 Jan 2026 22:01:15 +0000 Manifest this update: Sat 24 Jan 2026 22:01:15 +0000 Manifest next update: Sat 31 Jan 2026 22:01:15 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: 9EEx33/GBnsZEs62rmOg3dwiJHW27jkZafOUumQSu2U=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Jan 24 22:01:15 2026 GMT Not After : Jan 31 22:01:15 2026 GMT Subject: CN=6975412b-4478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:6d:00:b7:3d:60:97:74:be:b0:71:4c:d7: b7:03:9e:21:9e:a7:db:dd:bd:e8:22:73:8b:da:99: ab:29:65:9d:e6:35:12:b7:76:9d:16:40:18:b0:1c: 50:e2:7e:a8:1e:69:c1:b5:ce:c6:37:70:7a:a3:4f: 75:59:20:0d:cd:fa:1c:20:e1:49:4f:ae:ed:4b:97: b9:68:46:94:dd:00:b0:c9:2e:fc:e0:4d:4c:d3:70: 8c:59:92:a3:4e:29:ec:d3:94:61:4a:a6:73:db:62: 8f:e8:86:e6:b5:0f:3f:39:d3:2a:88:36:b1:07:31: a2:35:6f:55:f5:26:6a:9b:1b:96:8c:05:ce:1c:81: f7:cc:2d:0d:d0:ac:f6:c1:3d:c3:1f:98:4c:ea:0b: 60:6e:12:f1:71:fb:2a:1b:e6:9d:f6:95:98:9f:bd: f9:9e:93:e7:3a:0a:f1:96:75:bf:09:d7:9e:ee:14: 3b:ba:17:b5:dd:ad:f3:f6:ae:7d:16:50:c1:65:dc: 36:b8:ea:cb:24:fb:d7:73:8d:c2:c8:0f:c6:9e:6a: 48:5c:20:be:d4:32:7e:cd:57:b6:5d:ad:8b:4b:59: 7e:66:f6:13:f4:9a:29:e7:5d:46:d5:7c:fa:c9:80: d9:f8:9e:93:72:7a:ae:87:bd:1a:bd:1f:c8:20:aa: 15:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:99:AE:0D:DA:30:CA:39:87:FC:2E:37:AB:4C:BA:21:F3:16:85:2B X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:76:0f:56:e6:0f:97:20:8a:8d:91:cc:01:b1:3f:a5:85:95: c4:2f:89:aa:6c:68:91:6e:bd:43:7d:45:54:cc:f1:55:87:3c: 95:7d:55:05:8a:9b:28:70:d9:96:2d:70:c8:77:f7:54:68:24: 70:1d:46:36:8b:5a:c6:5b:5f:55:5a:03:0a:77:35:3a:de:59: 9a:df:cd:f4:04:8e:7c:83:14:59:71:be:24:00:a6:b0:bf:5c: c8:a3:64:b6:c4:18:0c:c5:3e:0d:3d:a7:20:ee:7e:d2:ad:fb: 46:18:52:43:3b:b5:e9:da:c1:b2:9f:15:e6:77:06:e4:9d:75: f9:40:7f:be:9f:a6:a4:13:bc:2a:7c:67:56:9e:a3:62:44:24: 1a:c9:8c:a8:b7:9e:d3:83:36:7e:d4:8c:40:b9:4d:a6:39:1a: f0:4c:c0:f9:ba:9d:45:b8:97:0e:b9:65:20:48:0c:1f:a5:f1: 2b:3e:eb:48:ee:d7:b9:9d:02:f0:dc:da:e9:f1:1f:18:16:71: fc:05:6f:a2:db:0f:68:73:2d:90:f2:e9:a9:e9:68:f5:15:74: 28:0b:c3:e7:b5:3b:7f:ce:fe:be:41:8d:d4:78:d0:58:44:ea: ec:4d:82:ae:f2:af:15:71:06:81:4f:28:06:27:0d:0b:66:a2: 68:22:ab:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjYwMTI0MjIwMTE1WhcNMjYwMTMxMjIwMTE1WjAYMRYwFAYD VQQDDA02OTc1NDEyYi00NDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwJtALc9YJd0vrBxTNe3A54hnqfb3b3oInOL2pmrKWWd5jUSt3adFkAYsBxQ 4n6oHmnBtc7GN3B6o091WSANzfocIOFJT67tS5e5aEaU3QCwyS784E1M03CMWZKj Tins05RhSqZz22KP6IbmtQ8/OdMqiDaxBzGiNW9V9SZqmxuWjAXOHIH3zC0N0Kz2 wT3DH5hM6gtgbhLxcfsqG+ad9pWYn735npPnOgrxlnW/Cdee7hQ7uhe13a3z9q59 FlDBZdw2uOrLJPvXc43CyA/GnmpIXCC+1DJ+zVe2Xa2LS1l+ZvYT9Jop511G1Xz6 yYDZ+J6Tcnquh70avR/IIKoVlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyZrg3a MMo5h/wuN6tMuiHzFoUrMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXdg9W5g+XIIqNkcwBsT+lhZXEL4mqbGiRbr1DfUVUzPFVhzyVfVUF ipsocNmWLXDId/dUaCRwHUY2i1rGW19VWgMKdzU63lma3830BI58gxRZcb4kAKaw v1zIo2S2xBgMxT4NPacg7n7SrftGGFJDO7Xp2sGynxXmdwbknXX5QH++n6akE7wq fGdWnqNiRCQayYyot57TgzZ+1IxAuU2mORrwTMD5up1FuJcOuWUgSAwfpfErPutI 7te5nQLw3Nrp8R8YFnH8BW+i2w9ocy2Q8ump6Wj1FXQoC8PntTt/zv6+QY3UeNBY ROrsTYKu8q8VcQaBTygGJw0LZqJoIqt8 -----END CERTIFICATE-----Generated at Sun Jan 25 15:33:37 2026 by rpki-client