This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: G5MjyDlGaWaMgmQ5pj1DdzWjXij1PfldD/vvb+WNbEw= Subject key identifier: 45:75:69:67:D8:CA:1E:15:C1:D0:B7:B1:F1:39:0B:E4:53:43:3F:8B Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 3527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 3513 Signing time: Sat 24 Jan 2026 14:33:59 +0000 Manifest this update: Sat 24 Jan 2026 14:33:58 +0000 Manifest next update: Sat 31 Jan 2026 14:33:58 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 5xucGyJHVRbQ6i1hewmsuMplzZBeaUGvKNwExmpOBhk=) 2: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 3: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) 4: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 5: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13607 (0x3527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Jan 24 14:33:58 2026 GMT Not After : Jan 31 14:33:58 2026 GMT Subject: CN=6974d857-784a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c5:89:5a:7b:1b:e6:8e:32:21:3d:d0:ea:26: 8f:18:33:e2:23:e2:23:db:ee:f4:f0:66:48:23:f1: 7a:5c:0d:18:7d:0c:92:a5:6b:59:2b:3e:e5:3f:bc: 0b:0e:af:24:11:c9:ec:70:19:6c:24:90:5e:4a:e5: 1a:62:26:f3:4c:5a:fd:60:bc:95:c5:5f:0f:b5:f5: 1b:96:29:97:a0:87:c0:ef:3b:70:f5:9d:9d:e3:90: 85:4d:b8:e4:49:f1:1f:43:73:ad:f8:ff:9b:b0:5a: bc:3a:b9:7d:d3:81:8d:db:3f:b5:cf:56:43:86:f6: 13:b6:a2:89:a9:6a:8e:76:65:55:ae:80:32:91:ab: 3d:be:6c:e8:fc:c4:47:d7:ea:e8:2c:18:4e:ad:a4: f0:96:b8:2a:48:95:01:10:0c:c5:49:5f:3f:35:59: cb:13:d8:88:c0:ef:a7:9c:f9:09:41:83:8d:5f:ef: 45:ae:97:b0:95:70:33:fe:28:0e:71:4d:ad:e3:df: 39:3d:e5:d2:9d:f1:89:8b:80:9c:82:da:9e:ce:f4: 10:f1:e8:63:de:95:c8:f2:3c:5f:c0:43:45:6b:20: d9:b2:ae:1b:96:bc:c1:ea:ac:8f:3b:00:70:fd:e5: 53:2f:d7:56:62:6f:5f:de:68:c2:bd:49:ae:1e:f1: f7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:75:69:67:D8:CA:1E:15:C1:D0:B7:B1:F1:39:0B:E4:53:43:3F:8B X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:eb:9a:3b:97:a7:ca:57:b7:b8:e8:0b:e3:eb:c5:ac:40:28: 33:42:e1:e3:3d:52:f6:a2:68:ac:7d:dd:e6:12:f5:9f:f9:03: 6d:c8:d6:51:5a:2d:14:07:62:b0:03:47:c8:3d:71:e5:e4:62: 8e:77:1c:6e:ca:24:17:65:10:87:33:07:65:d9:24:d7:c1:73: b8:d0:24:ea:d7:b9:93:4d:7b:fe:21:fa:71:5d:ce:14:46:6d: e9:69:5e:a2:c1:7d:1e:2f:f6:7e:00:16:3a:df:9e:38:ad:2c: d6:45:d5:a3:48:9a:7d:53:02:41:ec:73:f7:7e:2e:5c:5d:89: 0a:a8:a9:dc:d8:1d:11:82:85:bd:0c:b0:01:11:ab:08:ca:db: db:ed:5a:b5:59:cb:58:11:83:b7:3b:0e:3f:0b:4b:49:38:0d: 49:62:aa:a1:d2:fc:a2:ef:6a:84:c6:e1:71:0d:dc:4a:0e:64: 1e:8a:e7:b7:ae:3c:fa:ac:ee:4c:de:ea:7d:64:e1:6d:0b:08: ce:91:1c:dd:78:5a:3d:43:9d:f1:85:de:6f:83:de:c3:46:e0: c3:05:c9:38:5c:13:5e:5b:1c:c7:17:0e:18:5c:af:5d:40:ca: a9:0e:d6:cb:38:35:3b:af:e0:aa:70:b2:f7:65:c9:6a:18:95: 9e:e7:57:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwMTI0MTQzMzU4WhcNMjYwMTMxMTQzMzU4WjAYMRYwFAYD VQQDDA02OTc0ZDg1Ny03ODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMWJWnsb5o4yIT3Q6iaPGDPiI+Ij2+708GZII/F6XA0YfQySpWtZKz7lP7wL Dq8kEcnscBlsJJBeSuUaYibzTFr9YLyVxV8PtfUblimXoIfA7ztw9Z2d45CFTbjk SfEfQ3Ot+P+bsFq8Orl904GN2z+1z1ZDhvYTtqKJqWqOdmVVroAykas9vmzo/MRH 1+roLBhOraTwlrgqSJUBEAzFSV8/NVnLE9iIwO+nnPkJQYONX+9FrpewlXAz/igO cU2t4985PeXSnfGJi4CcgtqezvQQ8ehj3pXI8jxfwENFayDZsq4blrzB6qyPOwBw /eVTL9dWYm9f3mjCvUmuHvH3+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEV1aWfY yh4VwdC3sfE5C+RTQz+LMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA965o7l6fKV7e46Avj68WsQCgzQuHjPVL2omisfd3mEvWf+QNtyNZR Wi0UB2KwA0fIPXHl5GKOdxxuyiQXZRCHMwdl2STXwXO40CTq17mTTXv+IfpxXc4U Rm3paV6iwX0eL/Z+ABY63544rSzWRdWjSJp9UwJB7HP3fi5cXYkKqKnc2B0RgoW9 DLABEasIytvb7Vq1WctYEYO3Ow4/C0tJOA1JYqqh0vyi72qExuFxDdxKDmQeiue3 rjz6rO5M3up9ZOFtCwjOkRzdeFo9Q53xhd5vg97DRuDDBck4XBNeWxzHFw4YXK9d QMqpDtbLODU7r+CqcLL3ZclqGJWe51fO -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:34 2026 by rpki-client