This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft File: zOnFYkus-dCYXj8tbjHmsthtgq4.mft (raw, json) Hash identifier: k3xCKiYMckE8p2sfnL73acAn8JWnCsHXhMxZTlFC/RA= Subject key identifier: 2E:AE:4C:82:0D:6D:2C:2D:FB:24:B7:D1:A9:8C:89:3E:B0:B4:09:7B Authority key identifier: CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE Certificate issuer: /CN=A9157B07/serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft Manifest number: 45 Signing time: Sun 25 Jan 2026 06:25:40 +0000 Manifest this update: Sun 25 Jan 2026 06:25:39 +0000 Manifest next update: Sun 01 Feb 2026 06:25:39 +0000 Files and hashes: 1: zOnFYkus-dCYXj8tbjHmsthtgq4.crl (hash: OhCln6e5GTnhhodnfBTkmI6rJyWa4k2RB8LTP42fgmk=) 2: 8CA88A568FD611F09FFCA92CC4F9AE02.roa (hash: X1O7W3t2SP7SDbQ67NRf7y+vow5VXeN/HZMH9HZxaRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B07, serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Validity Not Before: Jan 25 06:25:39 2026 GMT Not After : Feb 1 06:25:39 2026 GMT Subject: CN=6975b763-d0a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b9:e1:c0:bf:5e:44:bb:8e:89:38:98:5c:83: 3f:20:ad:9d:f7:ce:f2:43:73:46:90:ec:2c:45:e1: 6a:d5:01:70:e4:10:ae:57:f2:1b:d6:ac:5b:90:a5: b8:22:cc:ae:23:4f:69:56:3e:b8:57:94:3a:e2:03: 7d:bd:7c:8a:3a:79:8a:da:51:e3:a7:2f:da:3c:3c: 11:a7:05:74:25:75:96:c6:76:99:04:85:c0:91:1f: d8:5e:0b:7b:1e:19:1e:70:4f:0f:91:ef:da:8f:35: 67:87:78:e8:cc:35:1e:2a:2e:19:32:2f:d6:9f:83: 7b:36:87:90:d8:68:d6:e8:bb:d0:18:ce:ac:cf:11: a2:54:c3:6d:78:f6:44:22:c6:78:56:5d:d8:93:3d: bc:22:4b:43:fb:14:35:49:27:58:bd:66:3c:24:ef: 98:e3:8a:70:8d:4c:e9:45:e0:4c:bc:b6:be:34:af: 21:d8:8e:e9:ba:3f:f0:f3:39:0c:d4:66:9b:60:f5: 3b:6a:57:d8:35:fb:a8:86:c0:52:74:c6:f0:04:b5: 67:0e:c6:5f:b6:f4:9f:1d:55:52:a6:f4:2b:1c:19: 13:6d:5f:cc:dd:df:15:f3:0c:78:dd:d6:5a:45:ac: 9b:d4:4f:26:72:02:05:d2:93:8f:69:ba:4e:83:7c: 9b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AE:4C:82:0D:6D:2C:2D:FB:24:B7:D1:A9:8C:89:3E:B0:B4:09:7B X509v3 Authority Key Identifier: keyid:CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:7b:51:70:7d:74:4f:1c:ec:e1:98:71:ec:91:11:92:9d:12: 48:63:6e:21:b6:c0:72:af:76:8a:78:54:91:26:67:6a:1f:43: e9:8d:e7:84:6b:62:5b:b8:b1:ee:fa:96:1f:84:53:f6:47:a5: 67:ea:1e:6e:6c:b1:59:5a:ba:64:ca:df:51:95:27:25:8c:23: de:2a:38:91:35:bc:37:55:cf:d6:65:76:6a:79:a8:2a:36:9f: 26:07:ec:ea:8b:2f:b6:1f:cd:78:27:b9:19:fd:55:54:0d:4a: c8:e0:28:e9:bc:af:d0:cf:1a:ad:2b:10:21:76:b5:6a:1e:aa: e7:5b:f0:49:66:c0:74:c2:f5:ef:82:3a:db:8f:18:80:5f:33: ee:85:73:c5:14:a7:76:ae:6f:b2:e0:de:c0:c9:3c:71:03:13: 27:36:2f:a2:e3:23:7a:46:77:0a:2f:09:97:68:e1:7f:b4:cc: 3b:ed:ea:c0:4e:62:69:18:0e:89:99:95:41:d8:27:72:56:7e: 99:c2:61:20:0a:fa:a7:fb:ec:06:d1:90:fd:65:47:fa:b6:59: f0:c9:3d:0b:45:07:ff:e8:2a:78:19:95:e6:c7:6e:84:c0:79: 99:fe:c2:30:96:c5:7c:47:a0:56:5c:5f:1f:d7:56:60:fe:dc: e4:72:df:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0IwNzExMC8GA1UEBRMoQ0NFOUM1NjI0QkFDRjlEMDk4NUUzRjJENkUzMUU2QjJE ODZEODJBRTAeFw0yNjAxMjUwNjI1MzlaFw0yNjAyMDEwNjI1MzlaMBgxFjAUBgNV BAMMDTY5NzViNzYzLWQwYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbueHAv15Eu46JOJhcgz8grZ33zvJDc0aQ7CxF4WrVAXDkEK5X8hvWrFuQpbgi zK4jT2lWPrhXlDriA329fIo6eYraUeOnL9o8PBGnBXQldZbGdpkEhcCRH9heC3se GR5wTw+R79qPNWeHeOjMNR4qLhkyL9afg3s2h5DYaNbou9AYzqzPEaJUw2149kQi xnhWXdiTPbwiS0P7FDVJJ1i9Zjwk75jjinCNTOlF4Ey8tr40ryHYjum6P/DzOQzU Zptg9TtqV9g1+6iGwFJ0xvAEtWcOxl+29J8dVVKm9CscGRNtX8zd3xXzDHjd1lpF rJvUTyZyAgXSk49puk6DfJtvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULq5Mgg1t LC37JLfRqYyJPrC0CXswHwYDVR0jBBgwFoAUzOnFYkus+dCYXj8tbjHmsthtgq4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjA3L0Q4ODU0NDkyOEZE NTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRDWVhqOHRiakhtc3RodGdx NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek9uRllrdXMtZENZWGo4dGJqSG1zdGh0Z3E0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjA3L0Q4ODU0NDkyOEZENTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRD WVhqOHRiakhtc3RodGdxNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC57UXB9dE8c7OGYceyREZKdEkhjbiG2wHKvdop4VJEmZ2ofQ+mN54Rr Ylu4se76lh+EU/ZHpWfqHm5ssVlaumTK31GVJyWMI94qOJE1vDdVz9Zldmp5qCo2 nyYH7OqLL7YfzXgnuRn9VVQNSsjgKOm8r9DPGq0rECF2tWoequdb8ElmwHTC9e+C OtuPGIBfM+6Fc8UUp3aub7Lg3sDJPHEDEyc2L6LjI3pGdwovCZdo4X+0zDvt6sBO YmkYDomZlUHYJ3JWfpnCYSAK+qf77AbRkP1lR/q2WfDJPQtFB//oKngZlebHboTA eZn+wjCWxXxHoFZcXx/XVmD+3ORy3/Q= -----END CERTIFICATE-----Generated at Sun Jan 25 20:17:20 2026 by rpki-client