This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: Uy/NY9ntsfz5AYlj44c0Ezo7AmR+NNNDpmgbHy+Nx0k= Subject key identifier: 07:2B:1F:A4:50:E1:83:D8:3D:CA:36:9C:11:6A:9C:8F:75:6F:F6:CB Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 046F Signing time: Sat 24 Jan 2026 23:19:39 +0000 Manifest this update: Sat 24 Jan 2026 23:19:39 +0000 Manifest next update: Sat 31 Jan 2026 23:19:39 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: 3gaTcDeYcMLJaTjBTpd73wPux6YIpcTPQ9pghomgIuU=) 2: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: qmwN8rcAR3vpucG22PWqt5m5wyg2eb8IRpdszpsFVNQ=) 3: 4B167396E74111EC80E35542C4F9AE02.roa (hash: m7bVPzA+H6T0BPfqPAwWK53E3FJsQccTswfglW7TmvM=) 4: EF33F6CCD16911F08AEFD95BC4F9AE02.roa (hash: AgsRF6p4UteSopIb7cnx5B7Juyq+ola/RIaCBtlF3KQ=) 5: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: SaWX6hkIcJ4pgsrGygV8fgQyGHt1YhbbUvZTPYJ4JwU=) 6: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: 0U8T0RS4mF6dClIl1xSb8fK6zofTOSe8/dMSQaDIi34=) 7: EFAA6C1CD16911F08A99D95BC4F9AE02.roa (hash: cgcaSIqIOhLCa5iTVKO9pJcq6xRCHOFoE69sC8NIq7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Jan 24 23:19:39 2026 GMT Not After : Jan 31 23:19:39 2026 GMT Subject: CN=6975538b-bc89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:06:ed:07:8b:bd:d3:b6:37:54:b4:6a:95:76: 6e:f7:02:83:ce:28:47:33:e6:66:20:9a:cc:2e:90: 10:84:54:2f:3d:bd:ee:d1:46:14:95:28:7d:4c:1a: 89:0a:0e:ab:e5:24:17:e3:2a:9d:92:ac:5f:b6:a6: 7d:e0:b7:67:eb:36:f8:5d:20:ff:f0:f5:e6:e6:a4: 99:40:7e:c1:22:76:8f:21:c1:b7:a4:a0:6b:f1:96: cd:af:2d:d7:0e:40:a3:d1:85:7a:4d:e3:1d:04:66: d5:b5:9c:4a:f2:46:06:c0:e9:2c:07:39:20:85:72: 6a:e2:fe:f2:4a:e5:74:06:da:a2:62:1f:28:a2:5e: 02:30:44:66:00:2b:a5:3b:ce:e4:8c:06:44:5a:c9: 3f:60:40:16:26:73:f9:36:df:86:43:50:c7:21:33: b8:46:a5:dd:97:20:03:58:e3:cc:f2:8f:94:23:12: bf:21:cf:05:a4:7b:d4:5e:5a:e7:3d:3a:97:9b:a9: a0:b4:0d:c6:7f:b7:68:a8:72:53:d8:ea:08:6e:41: c2:e5:9a:47:ea:46:fe:92:0a:fb:92:13:09:e1:05: 78:7d:48:2e:0f:57:bf:dd:b4:9e:b5:de:fe:2e:fe: 95:67:f9:be:82:75:53:a7:8d:f7:01:00:c5:8f:2a: 51:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2B:1F:A4:50:E1:83:D8:3D:CA:36:9C:11:6A:9C:8F:75:6F:F6:CB X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:bb:be:ea:ab:27:97:49:74:e0:2c:e4:46:85:c1:d6:17:c3: 1f:1b:b3:1b:ab:b0:b7:47:59:37:d3:1c:95:c7:cb:5e:89:f7: 10:87:20:af:89:1f:1e:3f:2f:c1:67:d3:82:01:56:45:8a:e7: 28:0e:b9:da:92:97:2a:99:2d:81:e6:14:53:4d:5a:37:d6:c1: a4:3f:c6:9f:c7:a2:03:ab:8d:68:df:20:d2:ca:1c:47:7e:59: 70:fd:ec:0d:97:46:09:e4:ff:ad:02:4f:40:70:ec:db:b7:cb: 08:08:e6:1d:8c:7d:b9:d3:02:a8:97:fc:0d:a6:9e:52:22:d1: 92:c0:2e:e8:c6:c7:1f:5a:7d:6b:20:d5:ae:7d:e1:12:05:78: 15:30:1a:61:62:52:5a:30:b1:38:f5:c4:22:c2:4f:63:eb:a6: e2:30:46:16:47:2c:d0:72:f7:07:98:da:5a:3c:b6:aa:81:b0: 5c:5a:5e:fc:4c:68:06:41:08:5b:41:53:7b:ff:66:00:19:5b: c4:55:2d:30:ab:b8:74:18:f9:83:6b:3c:c5:c5:20:e3:a2:26: 1e:aa:31:c9:cf:01:d2:ec:44:07:45:1e:36:4e:e5:88:35:e4: 5e:01:dc:44:bb:aa:fd:f1:ee:80:6f:c6:7b:29:2a:7c:ea:e2: b7:c5:51:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjYwMTI0MjMxOTM5WhcNMjYwMTMxMjMxOTM5WjAYMRYwFAYD VQQDDA02OTc1NTM4Yi1iYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgbtB4u907Y3VLRqlXZu9wKDzihHM+ZmIJrMLpAQhFQvPb3u0UYUlSh9TBqJ Cg6r5SQX4yqdkqxftqZ94Ldn6zb4XSD/8PXm5qSZQH7BInaPIcG3pKBr8ZbNry3X DkCj0YV6TeMdBGbVtZxK8kYGwOksBzkghXJq4v7ySuV0BtqiYh8ool4CMERmACul O87kjAZEWsk/YEAWJnP5Nt+GQ1DHITO4RqXdlyADWOPM8o+UIxK/Ic8FpHvUXlrn PTqXm6mgtA3Gf7doqHJT2OoIbkHC5ZpH6kb+kgr7khMJ4QV4fUguD1e/3bSetd7+ Lv6VZ/m+gnVTp433AQDFjypRswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcrH6RQ 4YPYPco2nBFqnI91b/bLMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeu77qqyeXSXTgLORGhcHWF8MfG7Mbq7C3R1k30xyVx8teifcQhyCv iR8ePy/BZ9OCAVZFiucoDrnakpcqmS2B5hRTTVo31sGkP8afx6IDq41o3yDSyhxH fllw/ewNl0YJ5P+tAk9AcOzbt8sICOYdjH250wKol/wNpp5SItGSwC7oxscfWn1r INWufeESBXgVMBphYlJaMLE49cQiwk9j66biMEYWRyzQcvcHmNpaPLaqgbBcWl78 TGgGQQhbQVN7/2YAGVvEVS0wq7h0GPmDazzFxSDjoiYeqjHJzwHS7EQHRR42TuWI NeReAdxEu6r98e6Ab8Z7KSp86uK3xVHb -----END CERTIFICATE-----Generated at Sun Jan 25 12:21:48 2026 by rpki-client