This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: /8rwJMkqZp1vRV0rH6+xq9MJShryGk/OOdXhNf4cZBk= Subject key identifier: 5F:D0:29:CB:73:0F:BA:D0:A7:50:9D:99:AA:C4:A4:6E:95:0A:58:B2 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09D5 Signing time: Sat 24 Jan 2026 19:24:06 +0000 Manifest this update: Sat 24 Jan 2026 19:24:06 +0000 Manifest next update: Sat 31 Jan 2026 19:24:06 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: XT6m2qBz9KjL95MKPg12vrGyzesaAA95sSoRWTPySCU=) 2: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 3: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: 39xXi+BE3qKyQgrVuislk1mPEFnbEpJPwLiHtitE6BQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Jan 24 19:24:06 2026 GMT Not After : Jan 31 19:24:06 2026 GMT Subject: CN=69751c56-76c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f0:7a:1f:e7:56:f7:98:6e:6e:2b:1e:08:87: 73:de:69:e9:8b:cb:83:bf:b0:02:11:64:4e:ec:98: 87:95:00:80:ec:67:02:d7:c9:68:81:80:2f:de:9c: 2c:d5:02:6a:bb:52:42:ff:6d:96:69:fe:e8:1c:b3: fb:91:3c:f3:41:24:03:81:36:37:71:ec:6e:44:ec: 22:99:8b:23:19:d0:6a:ae:07:36:08:db:18:ec:65: 21:78:1c:27:63:cf:35:f2:3b:df:b9:32:6d:c1:13: ee:90:e1:85:e1:98:13:4e:b5:e2:e8:6f:6c:3c:a8: e7:2a:06:0c:ed:85:df:24:7e:86:35:16:41:f0:15: d8:9f:86:6f:04:8d:a9:b1:a1:0e:b0:31:7f:44:c2: dc:23:ab:2a:4b:01:43:57:0c:e3:c0:5c:c9:43:48: aa:0d:c5:a1:37:6c:b2:7d:95:2a:92:cd:b1:64:a6: 41:73:b4:76:76:52:cb:31:27:8d:00:ec:e3:c2:67: d9:d0:10:2b:79:46:a4:53:90:26:8c:c6:74:3a:5f: 06:ad:a7:68:f4:e5:3c:76:fa:07:93:78:07:ad:bf: 5a:45:84:35:41:bb:c0:1f:9d:43:15:82:ad:51:d8: 30:f8:14:25:b9:01:92:08:33:98:01:53:b7:ca:8d: 62:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D0:29:CB:73:0F:BA:D0:A7:50:9D:99:AA:C4:A4:6E:95:0A:58:B2 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:49:0a:17:f2:9c:c6:a6:ec:b1:53:b2:74:0d:79:44:54:d0: c4:3d:e9:b5:63:6b:e2:59:6a:0d:7d:72:cf:aa:72:95:1e:75: e4:1b:b8:be:6f:90:26:a2:aa:93:ad:88:d1:d2:d6:d5:63:86: 8f:31:66:0d:11:07:1c:12:f2:69:19:63:0a:3c:e3:63:75:ad: 02:73:3f:9c:b3:4b:2b:35:be:8d:14:7c:b3:cc:e8:54:ad:70: 0f:32:5d:aa:35:e0:a4:74:bd:4f:52:a7:3b:0c:f9:8f:da:4f: 97:13:50:17:2c:99:33:ad:0b:0f:08:02:f4:2c:1d:f9:2d:03: e0:72:e4:a9:ea:52:cf:b5:91:0e:e5:40:26:1c:eb:b2:be:ea: 51:c7:37:18:ca:17:2b:fe:3e:e9:88:d4:2f:9f:3d:99:dc:e2: be:c8:a2:d8:70:87:9d:fc:51:b2:22:00:ba:ee:06:a0:dc:86: 6d:1e:30:01:78:ec:a9:33:be:12:8f:6e:88:1a:3b:58:14:1a: 3a:59:29:00:d4:45:22:c0:45:f0:0d:23:8e:97:1d:3c:c6:42: 3d:5c:6a:b9:af:99:92:76:cb:ef:cc:76:5f:d1:e5:6d:f5:8a: 09:8c:7b:dd:08:9c:7a:19:86:4d:2e:38:d5:71:cb:4a:9c:bb: ab:59:73:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwMTI0MTkyNDA2WhcNMjYwMTMxMTkyNDA2WjAYMRYwFAYD VQQDDA02OTc1MWM1Ni03NmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfB6H+dW95hubiseCIdz3mnpi8uDv7ACEWRO7JiHlQCA7GcC18logYAv3pws 1QJqu1JC/22Waf7oHLP7kTzzQSQDgTY3cexuROwimYsjGdBqrgc2CNsY7GUheBwn Y8818jvfuTJtwRPukOGF4ZgTTrXi6G9sPKjnKgYM7YXfJH6GNRZB8BXYn4ZvBI2p saEOsDF/RMLcI6sqSwFDVwzjwFzJQ0iqDcWhN2yyfZUqks2xZKZBc7R2dlLLMSeN AOzjwmfZ0BAreUakU5AmjMZ0Ol8Grado9OU8dvoHk3gHrb9aRYQ1QbvAH51DFYKt Udgw+BQluQGSCDOYAVO3yo1ioQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/QKctz D7rQp1CdmarEpG6VCliyMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuSQoX8pzGpuyxU7J0DXlEVNDEPem1Y2viWWoNfXLPqnKVHnXkG7i+ b5AmoqqTrYjR0tbVY4aPMWYNEQccEvJpGWMKPONjda0Ccz+cs0srNb6NFHyzzOhU rXAPMl2qNeCkdL1PUqc7DPmP2k+XE1AXLJkzrQsPCAL0LB35LQPgcuSp6lLPtZEO 5UAmHOuyvupRxzcYyhcr/j7piNQvnz2Z3OK+yKLYcIed/FGyIgC67gag3IZtHjAB eOypM74Sj26IGjtYFBo6WSkA1EUiwEXwDSOOlx08xkI9XGq5r5mSdsvvzHZf0eVt 9YoJjHvdCJx6GYZNLjjVcctKnLurWXPV -----END CERTIFICATE-----Generated at Sun Jan 25 15:46:50 2026 by rpki-client