This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: +S4Roo+Br9SDJ2r/4TX36C4aLgCK+uZnU9PUMJCSpio= Subject key identifier: EC:3B:03:E0:BB:24:C2:5C:15:87:54:2F:0C:57:81:43:BD:2E:A7:78 Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: D8 Signing time: Sun 25 Jan 2026 04:52:30 +0000 Manifest this update: Sun 25 Jan 2026 04:52:29 +0000 Manifest next update: Sun 01 Feb 2026 04:52:29 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: +OfcQgZfsRWVAOq6rVFyHaEkZ0zoa6RAYO1tW+2reYE=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: OPtqpqRnPLGJpIAYeUv7g54Eop2JkKe6/L6zebgYnmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Jan 25 04:52:29 2026 GMT Not After : Feb 1 04:52:29 2026 GMT Subject: CN=6975a18e-4683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:3e:d2:6f:f6:ff:ed:f7:c0:ce:de:d8:14:58: e9:61:14:c8:10:56:35:df:93:01:34:24:33:cd:10: c7:58:00:ff:77:fc:9b:ab:80:fe:87:49:04:a6:cb: 70:5b:5f:67:a2:59:e0:0e:25:84:53:88:39:c6:93: 62:4d:5a:54:08:bc:0e:57:1f:dd:b5:ab:a3:7b:da: 62:23:f5:ad:06:f7:03:16:63:14:31:57:5b:14:90: 61:fe:82:58:7a:71:4d:3a:c8:95:f2:48:3c:dc:b6: 1f:87:5a:dd:1a:69:71:9c:ef:04:15:c6:ce:9c:fb: e5:1d:e4:38:e2:fa:d0:dd:f4:fe:65:00:66:05:2d: a5:70:ac:aa:f5:a6:ff:2d:94:56:5a:95:7d:73:94: 9b:8c:be:b7:82:eb:4b:3a:79:54:ef:e4:83:74:32: f1:e5:fa:b1:e3:ef:aa:b7:48:7b:a9:27:c6:51:e1: 86:e5:59:9a:e5:f8:85:2c:96:77:09:97:7b:e7:28: dd:72:11:38:93:4e:f6:3d:3e:09:3c:b8:57:dc:56: 3b:58:82:c1:10:32:09:52:88:48:25:e4:37:ab:8c: 33:62:12:6c:52:c1:a3:19:77:b6:8a:98:52:72:20: 5c:fc:10:37:1e:c2:d0:19:25:19:5b:86:79:2e:2d: bd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:3B:03:E0:BB:24:C2:5C:15:87:54:2F:0C:57:81:43:BD:2E:A7:78 X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b4:a4:cd:7b:34:75:3a:1d:6a:ca:e8:67:be:7e:0c:7d:67: 9e:56:c3:58:34:21:98:80:d1:5b:42:8d:d7:0f:62:c5:88:2e: 89:ee:b7:11:41:ae:e5:86:ff:e8:f3:49:3c:53:66:60:05:41: 87:82:6b:96:b1:f0:1f:9b:3d:7c:ab:72:e2:b5:7b:a5:2e:fb: d6:51:8a:bf:47:20:69:1f:28:9b:17:a1:b3:15:91:3a:e6:d7: 19:de:5a:5b:a5:99:d1:da:76:dc:eb:a2:bf:13:ce:8c:d7:59: 79:79:b9:a6:be:38:57:61:74:54:32:8e:a1:c7:97:77:16:82: 99:7a:69:39:54:53:46:da:75:dd:1f:2f:b4:84:98:84:bb:7f: 2b:19:6d:e4:8e:ff:d3:f1:5c:68:1e:36:f1:e4:9f:91:89:bf: 99:42:33:a8:23:c3:99:60:6e:2d:48:ba:5b:f0:a4:7e:58:16: 25:55:b0:15:c0:1e:01:d3:a9:55:7d:9e:d2:f4:cc:11:0a:b1: 24:36:dc:e9:01:7f:c3:ed:58:a3:0f:bf:d1:68:3d:e5:04:53: 73:b3:3e:2a:ab:ec:a7:e3:ea:6d:5d:51:ee:0f:a7:17:64:6a: cf:cf:06:cf:63:29:ab:89:f3:37:cc:0c:2d:cb:9d:3d:97:39: bb:ba:1f:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjYwMTI1MDQ1MjI5WhcNMjYwMjAxMDQ1MjI5WjAYMRYwFAYD VQQDDA02OTc1YTE4ZS00NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8j7Sb/b/7ffAzt7YFFjpYRTIEFY135MBNCQzzRDHWAD/d/ybq4D+h0kEpstw W19nolngDiWEU4g5xpNiTVpUCLwOVx/dtauje9piI/WtBvcDFmMUMVdbFJBh/oJY enFNOsiV8kg83LYfh1rdGmlxnO8EFcbOnPvlHeQ44vrQ3fT+ZQBmBS2lcKyq9ab/ LZRWWpV9c5SbjL63gutLOnlU7+SDdDLx5fqx4++qt0h7qSfGUeGG5Vma5fiFLJZ3 CZd75yjdchE4k072PT4JPLhX3FY7WILBEDIJUohIJeQ3q4wzYhJsUsGjGXe2iphS ciBc/BA3HsLQGSUZW4Z5Li29+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOw7A+C7 JMJcFYdULwxXgUO9Lqd4MB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAitKTNezR1Oh1qyuhnvn4MfWeeVsNYNCGYgNFbQo3XD2LFiC6J7rcR Qa7lhv/o80k8U2ZgBUGHgmuWsfAfmz18q3LitXulLvvWUYq/RyBpHyibF6GzFZE6 5tcZ3lpbpZnR2nbc66K/E86M11l5ebmmvjhXYXRUMo6hx5d3FoKZemk5VFNG2nXd Hy+0hJiEu38rGW3kjv/T8VxoHjbx5J+Rib+ZQjOoI8OZYG4tSLpb8KR+WBYlVbAV wB4B06lVfZ7S9MwRCrEkNtzpAX/D7VijD7/RaD3lBFNzsz4qq+yn4+ptXVHuD6cX ZGrPzwbPYymrifM3zAwty509lzm7uh/U -----END CERTIFICATE-----Generated at Sun Jan 25 19:03:55 2026 by rpki-client