This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: BuA8N5QT3A2taqSl8lse0KRk5k7BYr1iS4cAYwoQoGU= Subject key identifier: 63:88:AA:DD:6E:97:3B:86:FB:E3:D2:88:37:3E:87:20:1F:52:6A:4F Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 085A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0849 Signing time: Sat 24 Jan 2026 20:10:10 +0000 Manifest this update: Sat 24 Jan 2026 20:10:10 +0000 Manifest next update: Sat 31 Jan 2026 20:10:10 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: KcVF0X1mrT7H+WIWwi3nMIGnEfEIpjHhdpflkq2wMwc=) 2: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Jan 24 20:10:10 2026 GMT Not After : Jan 31 20:10:10 2026 GMT Subject: CN=69752722-a405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:62:bd:15:19:cc:e7:b9:2c:c9:f2:c3:0c:c0: 5e:5e:5a:83:01:16:12:17:c5:fe:62:e4:05:01:a1: 80:3d:96:f7:e2:0e:bd:41:41:e2:3d:3a:c7:27:23: 8a:74:47:df:e8:72:dd:13:7d:5b:66:a0:29:53:5d: 9f:32:e4:e7:ee:40:a5:06:ca:29:f1:22:ec:a7:43: df:d3:71:f6:88:d7:1c:94:00:39:7e:de:a4:a2:db: be:4e:18:97:f1:9b:79:44:8a:70:12:8f:4c:b9:82: 89:5d:8f:c0:f7:dd:e6:23:50:67:fa:f1:ec:50:69: ca:4b:f8:f7:46:18:9d:a4:d8:32:10:d3:cb:21:f1: 8b:12:45:cd:d8:1e:c3:d6:dd:62:16:4c:de:0b:1b: 57:2a:06:c4:2c:4a:21:15:cc:b6:5b:91:b6:15:2f: 13:91:f9:70:1c:77:53:21:c3:21:7c:4e:eb:b4:3c: 30:e5:1c:06:95:e2:5f:83:8e:8b:d0:fc:6b:ba:16: 3f:7c:fb:ca:ee:5d:6b:02:90:e8:6d:2b:c2:b4:9c: 37:ba:5a:84:fa:bb:df:87:92:66:0a:ca:aa:71:60: eb:f1:05:ff:ee:df:15:83:23:f3:6a:35:1b:96:cc: 60:3e:de:e0:69:06:2d:0d:8b:fc:5f:4a:95:2b:93: 04:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:88:AA:DD:6E:97:3B:86:FB:E3:D2:88:37:3E:87:20:1F:52:6A:4F X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:44:d1:b2:30:22:0d:26:2b:98:01:3b:36:73:89:ca:0c:2e: a7:34:12:ef:fe:7a:bb:6e:a5:6b:69:2b:4d:fa:d9:6b:b6:76: ff:c5:af:be:09:e2:77:ea:24:5d:20:7f:37:5a:d4:b2:12:08: 38:c8:cf:7d:f3:fc:eb:5b:51:3a:ec:6d:9f:5b:63:40:2b:81: 79:33:41:62:c3:34:47:09:a3:6f:ba:36:84:fc:c8:4e:c4:7e: e3:ef:d3:7e:bd:62:38:35:85:2d:c5:21:ea:a5:23:bf:d8:6e: 20:3d:1c:73:f5:0b:65:11:ed:de:61:34:ba:ff:b5:69:32:e2: 76:a7:8c:4b:08:1f:e0:81:df:04:76:d8:c1:84:b5:0f:30:4a: 46:65:08:47:80:d9:ff:30:06:46:20:b6:47:6a:ef:b0:55:19: db:36:a1:bc:8c:75:5f:89:8c:07:6e:26:ef:57:33:27:50:ad: 8e:fb:fa:e9:c5:f0:ce:02:c1:f7:29:c0:e0:66:b7:03:fc:35: d2:2d:b8:c7:ab:c1:25:e5:03:32:a3:78:6e:ca:63:5c:be:8b: 85:ab:77:b3:7b:82:3d:a8:36:9e:0d:14:a3:4d:2f:3f:b8:4d: f4:f2:40:cf:37:d9:d9:50:e9:e3:21:dd:3d:93:de:7d:04:9c: f9:75:48:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwMTI0MjAxMDEwWhcNMjYwMTMxMjAxMDEwWjAYMRYwFAYD VQQDDA02OTc1MjcyMi1hNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWK9FRnM57ksyfLDDMBeXlqDARYSF8X+YuQFAaGAPZb34g69QUHiPTrHJyOK dEff6HLdE31bZqApU12fMuTn7kClBsop8SLsp0Pf03H2iNcclAA5ft6kotu+ThiX 8Zt5RIpwEo9MuYKJXY/A993mI1Bn+vHsUGnKS/j3RhidpNgyENPLIfGLEkXN2B7D 1t1iFkzeCxtXKgbELEohFcy2W5G2FS8TkflwHHdTIcMhfE7rtDww5RwGleJfg46L 0PxruhY/fPvK7l1rApDobSvCtJw3ulqE+rvfh5JmCsqqcWDr8QX/7t8VgyPzajUb lsxgPt7gaQYtDYv8X0qVK5ME1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOIqt1u lzuG++PSiDc+hyAfUmpPMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHRNGyMCINJiuYATs2c4nKDC6nNBLv/nq7bqVraStN+tlrtnb/xa++ CeJ36iRdIH83WtSyEgg4yM998/zrW1E67G2fW2NAK4F5M0FiwzRHCaNvujaE/MhO xH7j79N+vWI4NYUtxSHqpSO/2G4gPRxz9QtlEe3eYTS6/7VpMuJ2p4xLCB/ggd8E dtjBhLUPMEpGZQhHgNn/MAZGILZHau+wVRnbNqG8jHVfiYwHbibvVzMnUK2O+/rp xfDOAsH3KcDgZrcD/DXSLbjHq8El5QMyo3huymNcvouFq3eze4I9qDaeDRSjTS8/ uE308kDPN9nZUOnjId09k959BJz5dUjG -----END CERTIFICATE-----Generated at Sun Jan 25 19:04:07 2026 by rpki-client