This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: PZi6fsgpRfcpg0IpS/d00ZhymK2gnbwh9OaZ4aVmlvQ= Subject key identifier: 63:C8:32:4A:29:71:DB:20:FA:FD:15:D0:7A:C0:C8:25:78:AD:8D:98 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34F9 Signing time: Sat 24 Jan 2026 15:01:39 +0000 Manifest this update: Sat 24 Jan 2026 15:01:39 +0000 Manifest next update: Sat 31 Jan 2026 15:01:39 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: e+7EkxBpzE7GQ3lUR5DU9DR1Gw9gkEwSOQlhtj1KLZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13564 (0x34fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Jan 24 15:01:39 2026 GMT Not After : Jan 31 15:01:39 2026 GMT Subject: CN=6974ded3-edb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:09:19:cf:03:a9:b7:4e:b4:03:a4:31:af:cf: 98:5b:6f:f7:62:0b:6f:da:fb:d3:42:ae:7f:78:c4: e6:b6:ec:22:38:00:14:4d:5b:4c:1d:66:6d:36:28: a7:3e:9b:76:d9:e6:86:c7:ff:da:4b:b4:4f:3a:ea: 85:2e:30:66:cc:c6:28:23:0d:71:56:b3:b0:24:56: 59:2e:eb:53:5a:b7:e5:d9:05:d8:bc:29:12:58:a5: c3:9c:bb:21:b5:64:64:2c:4e:d5:4f:b1:c6:18:1c: 1d:27:fa:57:4a:f6:3c:a4:08:07:8e:9e:5b:72:3e: 9a:4f:0c:06:d7:f0:f4:20:4b:68:df:ce:2d:b9:d4: 16:88:da:21:90:cf:02:15:05:95:eb:7d:30:d7:c6: 9c:4c:67:7b:65:b4:59:61:02:da:9a:de:d5:c7:df: a3:e5:d6:06:1a:8a:c9:59:f1:64:14:e3:fb:f1:49: a5:ce:83:89:3f:84:ff:d2:27:64:dc:06:3f:59:28: b3:b1:54:7f:dc:91:75:09:bf:95:da:1a:5a:57:1a: 30:3f:f2:ea:82:e7:ba:1f:9b:af:27:c1:48:02:d1: 4b:d0:69:12:dd:da:3e:6e:a6:a0:42:a3:84:b8:87: 26:9e:e9:1e:ff:0e:53:de:d5:6a:93:24:b5:83:36: 8e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C8:32:4A:29:71:DB:20:FA:FD:15:D0:7A:C0:C8:25:78:AD:8D:98 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:6b:3f:52:cf:25:8a:c1:25:b6:a9:fe:b6:30:b6:6d:8e:10: 5e:d3:f1:6a:35:3b:3c:35:e3:72:8d:df:59:bc:c5:fe:ae:e4: 68:fa:3a:35:0b:a5:08:17:1a:15:72:ba:1d:6c:ee:a1:ea:99: a5:a8:28:e5:6c:e2:f9:8b:f7:db:28:b3:b2:17:da:fe:da:82: 1c:29:9b:cc:91:43:c6:33:e3:5a:df:77:88:ac:f5:bb:c4:24: 30:23:03:55:93:36:fc:df:1d:0c:14:fc:40:0d:c6:b6:2e:c9: 80:58:32:72:be:b8:be:01:30:72:f0:62:5b:af:3c:46:92:4c: 77:d9:a0:6b:8c:da:3b:52:ab:50:e9:7b:5c:eb:6b:62:b5:7f: 00:8f:cc:bc:51:c0:89:7c:f3:9a:12:57:6e:59:85:52:0b:cb: 68:c5:7e:a4:54:1f:1b:a3:61:8a:52:19:80:2f:14:55:61:48: 86:ff:68:39:e1:82:66:78:e4:43:e4:84:7a:b1:e1:56:92:75: 4a:5b:18:01:f9:e5:51:c5:d1:46:f5:4a:dc:8b:d1:e1:80:ef: 70:59:39:ed:dc:3f:4a:75:e0:e6:26:6f:05:fe:0a:61:c0:8f: 18:a0:d8:f7:c7:1a:76:27:97:a6:19:6c:8e:ca:af:a2:cf:7b: d1:3b:19:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjYwMTI0MTUwMTM5WhcNMjYwMTMxMTUwMTM5WjAYMRYwFAYD VQQDDA02OTc0ZGVkMy1lZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwkZzwOpt060A6Qxr8+YW2/3Ygtv2vvTQq5/eMTmtuwiOAAUTVtMHWZtNiin Ppt22eaGx//aS7RPOuqFLjBmzMYoIw1xVrOwJFZZLutTWrfl2QXYvCkSWKXDnLsh tWRkLE7VT7HGGBwdJ/pXSvY8pAgHjp5bcj6aTwwG1/D0IEto384tudQWiNohkM8C FQWV630w18acTGd7ZbRZYQLamt7Vx9+j5dYGGorJWfFkFOP78UmlzoOJP4T/0idk 3AY/WSizsVR/3JF1Cb+V2hpaVxowP/Lqgue6H5uvJ8FIAtFL0GkS3do+bqagQqOE uIcmnuke/w5T3tVqkyS1gzaOjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPIMkop cdsg+v0V0HrAyCV4rY2YMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7az9SzyWKwSW2qf62MLZtjhBe0/FqNTs8NeNyjd9ZvMX+ruRo+jo1 C6UIFxoVcrodbO6h6pmlqCjlbOL5i/fbKLOyF9r+2oIcKZvMkUPGM+Na33eIrPW7 xCQwIwNVkzb83x0MFPxADca2LsmAWDJyvri+ATBy8GJbrzxGkkx32aBrjNo7UqtQ 6Xtc62titX8Aj8y8UcCJfPOaElduWYVSC8toxX6kVB8bo2GKUhmALxRVYUiG/2g5 4YJmeORD5IR6seFWknVKWxgB+eVRxdFG9Urci9HhgO9wWTnt3D9KdeDmJm8F/gph wI8YoNj3xxp2J5emGWyOyq+iz3vROxm8 -----END CERTIFICATE-----Generated at Sun Jan 25 18:31:54 2026 by rpki-client