This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: TyrG+NgSQkIehy751YBHAXs6BHl2Wz6QTDprMseg7pU= Subject key identifier: 82:BE:50:D8:78:8E:E6:B6:C8:63:AF:62:48:45:92:D6:48:64:40:13 Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 5E Signing time: Sun 25 Jan 2026 06:14:29 +0000 Manifest this update: Sun 25 Jan 2026 06:14:29 +0000 Manifest next update: Sun 01 Feb 2026 06:14:29 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: sE/1e7EEsT7DpivsOFIQtzWNjNIQ+kWoI4vyJQtUKfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Jan 25 06:14:29 2026 GMT Not After : Feb 1 06:14:29 2026 GMT Subject: CN=6975b4c5-f7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a6:f0:98:da:7f:16:6a:9a:dd:ab:e2:61:b3: 78:a3:c9:b1:97:cf:96:91:3b:e1:3f:73:ed:95:14: be:18:81:c4:d8:28:4a:ea:cf:61:1c:29:45:28:fd: a5:b8:fb:46:1c:c7:60:6e:da:3a:5a:1d:c1:ae:84: 99:d3:13:63:cc:0b:b4:0d:d6:0a:bc:bc:9c:d4:5b: 1e:55:6b:a7:73:6b:b8:99:8f:a1:d5:73:3c:1f:4e: 24:eb:2b:8d:f6:24:4a:be:5b:45:be:63:17:75:96: 4e:d0:5e:ee:e0:4e:9d:9d:2b:9d:9f:34:e5:95:29: fe:13:b2:e0:27:83:0f:96:81:71:22:5f:7e:01:c4: de:80:46:5f:3a:67:19:e9:31:ba:b0:82:2c:2f:17: 1b:6e:e2:40:93:cf:4c:0b:4f:0d:82:07:fc:dd:ef: 61:4d:8f:22:fc:e3:e3:e7:63:70:2c:e8:46:be:77: c5:22:a0:31:e7:97:3e:d8:d1:cf:9b:fa:c9:1b:2e: 96:be:bd:3b:76:5b:3b:80:3f:76:e4:0a:58:80:42: 8a:14:1b:18:90:2f:42:d1:88:1f:c5:77:4f:43:e7: 7f:46:51:c8:6b:ed:71:46:c2:38:ec:b8:84:6d:4e: f2:d6:cd:04:34:db:6f:9c:95:4a:29:96:1c:8b:d8: 19:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BE:50:D8:78:8E:E6:B6:C8:63:AF:62:48:45:92:D6:48:64:40:13 X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:6e:c6:36:35:2f:71:a5:7c:16:fe:a8:9d:a4:53:37:10:50: ae:cf:d0:79:9e:be:d0:5e:cc:1c:3d:32:49:69:e4:7f:b4:96: a6:3e:e4:ee:93:7e:e6:41:c4:01:02:9b:69:8a:c0:50:10:01: 04:f1:6e:21:58:54:e9:71:10:dc:7a:7a:68:44:36:04:81:c3: 04:7f:fa:25:91:70:63:f0:f8:24:5c:ee:aa:cf:c0:bd:3c:29: 30:53:46:03:e8:7d:4f:50:87:3a:c0:6d:d4:6e:12:1e:d9:1d: fb:15:64:62:1e:ae:f8:f1:84:d9:0c:cf:d9:bf:41:49:33:a2: 5c:68:a7:ed:39:1d:6b:94:4e:31:62:3c:ec:50:21:23:7f:ed: c0:ec:cc:93:d9:1d:18:7e:e1:b0:9a:f5:c3:63:aa:d4:0c:3b: ff:4a:ce:53:e9:5a:8e:0e:2c:a7:4a:56:1c:a4:d7:cc:20:a7: 50:ba:36:eb:7d:80:67:cf:1d:7a:09:10:4b:3d:cc:af:44:cb: e2:dd:72:98:c4:3f:e4:6a:d8:fd:ad:16:90:a0:83:89:80:97: 88:27:f4:9f:3a:c3:e8:22:48:dc:38:15:47:83:eb:0d:d9:e6: a8:6b:6b:f8:d1:3c:6b:e8:10:0d:2c:49:cf:ff:4b:e5:76:b7: aa:3b:50:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NBODExMC8GA1UEBRMoREQyODA4MjhGRjA5OTZBOENCRUYyOUJGMEQ5MTRERjI1 MkRGMUNCRDAeFw0yNjAxMjUwNjE0MjlaFw0yNjAyMDEwNjE0MjlaMBgxFjAUBgNV BAMMDTY5NzViNGM1LWY3ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmpvCY2n8Waprdq+Jhs3ijybGXz5aRO+E/c+2VFL4YgcTYKErqz2EcKUUo/aW4 +0Ycx2Bu2jpaHcGuhJnTE2PMC7QN1gq8vJzUWx5Va6dza7iZj6HVczwfTiTrK432 JEq+W0W+Yxd1lk7QXu7gTp2dK52fNOWVKf4TsuAngw+WgXEiX34BxN6ARl86Zxnp MbqwgiwvFxtu4kCTz0wLTw2CB/zd72FNjyL84+PnY3As6Ea+d8UioDHnlz7Y0c+b +skbLpa+vTt2WzuAP3bkCliAQooUGxiQL0LRiB/Fd09D539GUchr7XFGwjjsuIRt TvLWzQQ022+clUoplhyL2BklAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgr5Q2HiO 5rbIY69iSEWS1khkQBMwHwYDVR0jBBgwFoAU3SgIKP8JlqjL7ym/DZFN8lLfHL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0E4LzZBOUU5MTVDNkVF OTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1NnSUtQOEpscWpMN3ltX0RaRk44bExmSEwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0E4LzZBOUU5MTVDNkVFOTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFq TDd5bV9EWkZOOGxMZkhMMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAABuxjY1L3GlfBb+qJ2kUzcQUK7P0HmevtBezBw9Mklp5H+0lqY+5O6T fuZBxAECm2mKwFAQAQTxbiFYVOlxENx6emhENgSBwwR/+iWRcGPw+CRc7qrPwL08 KTBTRgPofU9QhzrAbdRuEh7ZHfsVZGIervjxhNkMz9m/QUkzolxop+05HWuUTjFi POxQISN/7cDszJPZHRh+4bCa9cNjqtQMO/9KzlPpWo4OLKdKVhyk18wgp1C6Nut9 gGfPHXoJEEs9zK9Ey+LdcpjEP+Rq2P2tFpCgg4mAl4gn9J86w+giSNw4FUeD6w3Z 5qhra/jRPGvoEA0sSc//S+V2t6o7UPA= -----END CERTIFICATE-----Generated at Sun Jan 25 09:37:16 2026 by rpki-client