This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: m0fmxpdb3rGrdfuGRxDl7KEP6IcVBgGD8JQNP1X4p38= Subject key identifier: 2B:A8:EB:FC:E9:B3:A9:97:D6:5D:8E:BF:3C:F8:A4:B5:D7:23:F4:76 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 0481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 0475 Signing time: Sat 24 Jan 2026 23:19:00 +0000 Manifest this update: Sat 24 Jan 2026 23:18:59 +0000 Manifest next update: Sat 31 Jan 2026 23:18:59 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: kB70FF84XtWU8WBszWmTm0zDrjlDshog5rWfCpC36yY=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: ciNIImuAbj1AO0K4GihG7jlhzLEKvAURaWl26eH889E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Jan 24 23:18:59 2026 GMT Not After : Jan 31 23:18:59 2026 GMT Subject: CN=69755364-83ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:e6:e3:f8:40:cf:27:bf:f4:1c:82:63:6a: 93:80:42:d4:62:31:ce:91:41:01:71:e6:84:85:e1: 77:c0:b6:d5:30:a1:69:1e:2a:fc:0c:97:a0:a7:e8: a5:c5:6a:14:cb:e2:b9:e2:7a:b9:5f:c2:a1:c7:16: 75:f4:f5:03:4b:59:27:da:ab:3e:20:d7:87:74:1e: 40:e1:15:18:5b:b4:11:a8:84:76:e8:50:14:d3:2e: b3:61:20:2d:55:38:5e:92:91:3d:55:e7:47:d4:26: 29:6e:68:64:49:17:1c:a1:10:2a:42:3a:32:96:0d: 9e:d8:e4:ec:1f:1c:4c:20:21:2e:83:f6:1d:1d:10: f5:e4:5b:85:67:19:09:b7:f7:95:bc:c0:dc:e1:6e: 60:3b:8c:29:2e:be:3d:62:e5:80:b7:d5:77:be:cd: c9:7e:2c:11:13:3d:1e:a7:59:c8:24:35:bb:89:35: aa:9f:07:47:48:c0:b1:2c:45:dc:d8:de:da:4b:c8: e1:a3:f1:11:fd:4a:a1:15:b0:b6:ab:0e:d0:66:f0: e1:df:91:83:c1:27:48:b7:5c:cc:3d:5b:74:8f:5b: 5e:c9:76:ce:8e:89:17:2f:bb:a9:36:7d:fd:0c:16: 3e:d4:41:d3:9b:85:5f:29:2b:aa:64:69:1c:3c:2c: 37:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A8:EB:FC:E9:B3:A9:97:D6:5D:8E:BF:3C:F8:A4:B5:D7:23:F4:76 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:75:1b:e1:b7:fe:4c:34:6f:4a:c2:2c:87:48:d8:c3:d8:62: 37:35:4f:dd:a9:8d:d2:b6:be:30:94:86:2d:07:74:20:a2:c8: 8a:6c:e5:8e:e8:52:87:79:a2:f1:a4:4e:88:63:30:31:46:9e: 2e:3e:67:b6:e7:de:9c:bd:4e:e7:e0:9e:de:3f:96:23:b3:0a: 2e:21:45:d8:c1:21:29:74:b7:19:c0:13:0f:00:84:42:cf:14: 22:cc:f9:cd:dc:19:91:76:54:ec:7d:85:d1:ef:2d:f5:64:7e: d3:37:8c:49:58:f0:54:fe:5c:b9:58:77:f5:73:b6:cf:c3:af: a4:9e:e1:46:f4:ba:95:06:3d:33:16:e3:12:92:bb:ad:90:24: 86:8e:fd:83:42:0c:31:44:05:37:01:06:53:e7:15:ea:43:b6: d3:b9:0c:eb:0c:78:56:06:a0:13:10:7b:81:da:94:f8:b1:b2: 84:ed:05:be:b5:fe:25:e8:64:97:66:1e:46:06:c7:5e:89:c3: 95:d3:28:c9:12:e2:5c:64:01:3d:bc:a7:2a:33:c3:8e:a3:dd: f9:95:15:50:83:f3:c7:30:c8:f8:9a:91:bf:28:f5:ae:b9:97: 48:c6:63:9a:0b:29:75:ad:1d:2a:69:73:d4:55:05:b9:e8:e3: d4:cb:67:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjYwMTI0MjMxODU5WhcNMjYwMTMxMjMxODU5WjAYMRYwFAYD VQQDDA02OTc1NTM2NC04M2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN/m4/hAzye/9ByCY2qTgELUYjHOkUEBceaEheF3wLbVMKFpHir8DJegp+il xWoUy+K54nq5X8KhxxZ19PUDS1kn2qs+INeHdB5A4RUYW7QRqIR26FAU0y6zYSAt VThekpE9VedH1CYpbmhkSRccoRAqQjoylg2e2OTsHxxMICEug/YdHRD15FuFZxkJ t/eVvMDc4W5gO4wpLr49YuWAt9V3vs3JfiwREz0ep1nIJDW7iTWqnwdHSMCxLEXc 2N7aS8jho/ER/UqhFbC2qw7QZvDh35GDwSdIt1zMPVt0j1teyXbOjokXL7upNn39 DBY+1EHTm4VfKSuqZGkcPCw3xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuo6/zp s6mX1l2Ovzz4pLXXI/R2MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRdRvht/5MNG9KwiyHSNjD2GI3NU/dqY3Str4wlIYtB3QgosiKbOWO 6FKHeaLxpE6IYzAxRp4uPme2596cvU7n4J7eP5YjswouIUXYwSEpdLcZwBMPAIRC zxQizPnN3BmRdlTsfYXR7y31ZH7TN4xJWPBU/ly5WHf1c7bPw6+knuFG9LqVBj0z FuMSkrutkCSGjv2DQgwxRAU3AQZT5xXqQ7bTuQzrDHhWBqATEHuB2pT4sbKE7QW+ tf4l6GSXZh5GBsdeicOV0yjJEuJcZAE9vKcqM8OOo935lRVQg/PHMMj4mpG/KPWu uZdIxmOaCyl1rR0qaXPUVQW56OPUy2fB -----END CERTIFICATE-----Generated at Sun Jan 25 04:28:49 2026 by rpki-client