This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: fc3R4/E41bjNDqT6fZ84NkFAxi7IscCeCWTTSB0o1Xo= Subject key identifier: A2:40:6C:3F:45:66:1F:C3:F6:1F:86:2F:E0:4F:5F:0D:9B:03:EC:8E Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 0708 Signing time: Sat 24 Jan 2026 21:13:27 +0000 Manifest this update: Sat 24 Jan 2026 21:13:27 +0000 Manifest next update: Sat 31 Jan 2026 21:13:27 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: DRmaIgYnmNX0DpaVvZiCSpR+hBcM5p/OlcpVKKhIE3c=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: YZjAMIKzrQGmvLaN81HGMkVswmWuULphivjXeZ2sT84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Jan 24 21:13:27 2026 GMT Not After : Jan 31 21:13:27 2026 GMT Subject: CN=697535f7-9a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:a2:cd:99:53:47:47:fb:1e:a9:20:34:8c: 35:57:e8:08:ce:2a:f2:c1:88:8f:94:2b:05:18:a3: ad:7e:34:e0:f3:2d:74:ee:61:8d:2c:69:e2:72:82: 01:95:15:05:f7:a4:d5:e5:80:3a:b1:94:1d:d0:dc: e5:9b:f3:07:ca:06:a5:bf:e9:7f:1f:1c:b7:f1:69: fb:f1:ab:dc:85:71:f3:b2:65:17:d7:8a:9a:96:97: a6:6f:39:09:b9:37:96:73:f0:9f:aa:c3:a8:0b:58: 84:97:cd:d7:2b:a5:c4:0f:d7:54:50:2b:d8:c6:bc: 89:29:8c:a9:f6:9f:1d:57:b6:78:85:90:64:23:55: be:9d:09:fb:21:30:dd:e4:0b:39:2d:4b:1b:c6:97: 27:b4:2b:52:56:ae:3d:0f:29:ca:d0:0a:74:0a:76: 1c:23:95:55:33:06:f5:d0:1d:fe:37:60:37:b4:44: e8:42:37:70:2c:fc:f0:4f:31:b6:97:b9:fc:da:76: c3:4b:97:af:0d:46:ae:25:b0:76:2b:f0:8e:8c:04: 69:0a:ec:0e:a9:6d:82:8d:69:dd:ba:81:dc:8d:fc: d9:1c:a4:3b:a4:96:b9:59:e3:66:6b:25:87:7d:d5: b7:6c:a4:02:af:03:e8:7a:5f:41:0b:0f:62:7f:a1: 6c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:40:6C:3F:45:66:1F:C3:F6:1F:86:2F:E0:4F:5F:0D:9B:03:EC:8E X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:af:c7:e0:d9:ac:60:0b:0a:02:2c:2e:d3:7d:e2:76:62:fc: 7b:4a:65:d7:45:5b:ed:02:88:dd:3d:d7:b5:ce:9e:9d:43:ca: c6:8c:3c:21:8f:f1:bb:8d:30:36:a3:d9:bc:dc:6d:40:37:45: 46:c9:87:46:26:2e:2f:a0:1c:75:a0:f6:a7:c0:71:19:e4:9a: 65:3f:96:b8:16:e6:39:42:cb:3e:6b:b0:2e:67:ac:58:b2:55: 62:95:43:2e:6a:9f:b6:0f:a4:96:ca:f1:68:57:08:13:2d:a1: b4:af:de:9c:ce:80:a9:06:3e:b6:44:77:64:6c:a1:a9:9f:bb: 05:7a:09:1b:75:19:87:d4:0d:d2:93:b8:7a:01:d2:57:92:96: 40:e0:4e:10:01:a2:f2:c7:99:04:3a:bd:66:77:44:29:f5:0f: 13:25:5c:e8:65:9a:c7:fc:d7:23:8a:25:b0:94:04:a0:b2:9d: 05:e0:78:8a:8c:5a:8f:d0:51:45:9c:d2:74:ac:cb:51:64:a1: e6:2b:20:2b:b8:d5:13:62:95:1e:6f:19:4d:69:48:34:3a:d6: 37:f6:f3:66:19:ff:5c:7f:60:15:5d:e1:c3:12:37:6d:a0:c3: d6:0d:01:5e:b6:b4:47:e9:66:5c:a3:99:6f:9b:b1:7b:80:cc: 1a:76:b9:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjYwMTI0MjExMzI3WhcNMjYwMTMxMjExMzI3WjAYMRYwFAYD VQQDDA02OTc1MzVmNy05YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4GizZlTR0f7HqkgNIw1V+gIzirywYiPlCsFGKOtfjTg8y107mGNLGnicoIB lRUF96TV5YA6sZQd0Nzlm/MHygalv+l/Hxy38Wn78avchXHzsmUX14qalpembzkJ uTeWc/CfqsOoC1iEl83XK6XED9dUUCvYxryJKYyp9p8dV7Z4hZBkI1W+nQn7ITDd 5As5LUsbxpcntCtSVq49DynK0Ap0CnYcI5VVMwb10B3+N2A3tEToQjdwLPzwTzG2 l7n82nbDS5evDUauJbB2K/COjARpCuwOqW2CjWnduoHcjfzZHKQ7pJa5WeNmayWH fdW3bKQCrwPoel9BCw9if6FsYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJAbD9F Zh/D9h+GL+BPXw2bA+yOMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXr8fg2axgCwoCLC7TfeJ2Yvx7SmXXRVvtAojdPde1zp6dQ8rGjDwh j/G7jTA2o9m83G1AN0VGyYdGJi4voBx1oPanwHEZ5JplP5a4FuY5Qss+a7AuZ6xY slVilUMuap+2D6SWyvFoVwgTLaG0r96czoCpBj62RHdkbKGpn7sFegkbdRmH1A3S k7h6AdJXkpZA4E4QAaLyx5kEOr1md0Qp9Q8TJVzoZZrH/NcjiiWwlASgsp0F4HiK jFqP0FFFnNJ0rMtRZKHmKyAruNUTYpUebxlNaUg0OtY39vNmGf9cf2AVXeHDEjdt oMPWDQFetrRH6WZco5lvm7F7gMwadrmn -----END CERTIFICATE-----Generated at Sun Jan 25 08:23:35 2026 by rpki-client