This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: 2q4cMxBVYI9Fv05lGZafPhXTbLlyYzgvBgqsFxoClrw= Subject key identifier: 24:89:2F:A5:80:54:A0:AE:4F:D0:62:47:6D:EC:03:D4:50:B0:45:84 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04CB Signing time: Sat 24 Jan 2026 16:46:55 +0000 Manifest this update: Sat 24 Jan 2026 16:46:54 +0000 Manifest next update: Sat 31 Jan 2026 16:46:54 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: 4dbKeqvbm4Pjmksk59swqWj6n0QvcNaHmkOHC8Wdq0Q=) 2: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: LSEFGm5YHmuzFm7AHwmKEbs7DnP8Z8GxvqismyoqpxY=) 3: 1479C514596A11ECB1394271C4F9AE02.roa (hash: Wyxy9+iCUkuevTtRSNVP3QalBsjOjf/cD3BqszIe2mo=) 4: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: DmIrGfhktKfgLCQnjaBl110FFfgBFAV9ezdr8MQEUXY=) 5: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: gnyXtw8DPj8NyIoRF5c+juRZssMLm6JD2BAlodHTge8=) 6: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: KlPccjW9S2oslSs/m9+b9l8M4oIVNWUx4ZPvJF9e3h0=) 7: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: pNXwK+NLW6WN3eFo++mYFK5ET5lmuZ4PR6VBVBIThu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Jan 24 16:46:54 2026 GMT Not After : Jan 31 16:46:54 2026 GMT Subject: CN=6974f77f-de2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:16:13:12:98:06:3e:63:e7:08:12:71:bd:60: a9:34:ea:27:6b:cc:0e:84:8d:ce:56:69:2a:ca:3b: 72:3f:c1:03:65:8c:e7:ab:9c:57:4d:bf:75:4d:0c: 69:43:9e:65:e5:2c:c6:c2:59:6f:28:d1:0f:50:b3: 8f:a8:04:2e:b4:1f:ac:ca:41:b1:0e:a2:80:7a:1b: 76:36:73:93:15:c0:73:94:9b:40:40:07:d1:64:00: b2:47:21:08:35:0c:a4:db:fb:2d:bd:df:5b:14:55: ba:13:9f:ea:9c:f8:56:95:82:88:c1:af:60:c8:41: 6e:5d:c1:3c:8b:94:e4:cb:8c:bb:cd:f8:c6:85:6c: 29:c1:09:e3:e1:b3:8f:73:96:c5:94:4d:09:3f:78: ad:c2:a9:69:d3:3c:44:55:26:aa:36:04:9f:f4:5f: d1:92:b5:04:2c:fb:98:bf:d9:12:20:8d:72:5c:c2: a4:98:19:73:b4:bb:95:2e:ac:99:7c:eb:59:70:c4: 0f:2b:a1:d6:9f:d8:e7:4b:82:79:78:d8:77:f0:20: 2f:05:96:71:31:8a:ab:fa:3d:9e:ca:1b:ae:99:b3: 15:31:d9:4b:35:45:68:3b:4b:53:fa:ee:87:99:77: 52:4f:92:87:5a:39:62:7b:b0:6f:5d:86:ba:74:96: 8c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:89:2F:A5:80:54:A0:AE:4F:D0:62:47:6D:EC:03:D4:50:B0:45:84 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:cc:5f:86:e3:9d:72:fb:de:89:18:0f:00:96:6b:79:83:3b: e3:43:c6:7e:fb:fa:4d:29:02:42:4b:8b:ef:f5:86:85:56:79: aa:ca:30:75:a9:c0:d9:4b:6e:56:51:04:f4:55:a8:9d:82:65: 87:c3:c0:a6:e8:d4:4d:03:3c:89:10:d8:20:22:81:1b:77:01: ce:12:95:48:72:1a:70:1f:8a:9d:c7:9e:61:56:b5:66:e7:46: 65:d3:84:62:a9:29:46:e2:e2:22:98:ba:e2:4a:22:63:57:8e: 51:e7:4a:bc:26:c0:f9:e4:5b:02:75:ae:a6:2a:1f:a4:04:5c: 48:93:af:61:f4:be:10:6a:12:a6:4b:0f:62:19:b0:ae:b5:f1: 30:62:71:73:35:e7:ba:7c:3c:5f:47:78:f5:f6:f2:1d:f4:96: 48:44:14:a8:8d:18:4d:13:3c:e6:4c:90:eb:78:32:2b:d2:e5: 2b:5b:ea:16:84:6d:6d:98:34:5b:d9:8e:50:cd:db:22:d0:da: e3:c3:82:43:b1:08:0f:60:82:18:cd:36:f6:d0:58:02:c1:02: 17:b9:09:1d:6e:7f:1e:37:ae:f5:02:15:d2:cd:92:b1:2d:17: eb:57:d9:ac:94:4c:6a:c7:34:64:94:b2:35:3b:29:5b:90:89: b5:86:ad:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjYwMTI0MTY0NjU0WhcNMjYwMTMxMTY0NjU0WjAYMRYwFAYD VQQDDA02OTc0Zjc3Zi1kZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRYTEpgGPmPnCBJxvWCpNOona8wOhI3OVmkqyjtyP8EDZYznq5xXTb91TQxp Q55l5SzGwllvKNEPULOPqAQutB+sykGxDqKAeht2NnOTFcBzlJtAQAfRZACyRyEI NQyk2/stvd9bFFW6E5/qnPhWlYKIwa9gyEFuXcE8i5Tky4y7zfjGhWwpwQnj4bOP c5bFlE0JP3itwqlp0zxEVSaqNgSf9F/RkrUELPuYv9kSII1yXMKkmBlztLuVLqyZ fOtZcMQPK6HWn9jnS4J5eNh38CAvBZZxMYqr+j2eyhuumbMVMdlLNUVoO0tT+u6H mXdST5KHWjlie7BvXYa6dJaMKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSJL6WA VKCuT9BiR23sA9RQsEWEMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDzF+G451y+96JGA8Almt5gzvjQ8Z++/pNKQJCS4vv9YaFVnmqyjB1 qcDZS25WUQT0VaidgmWHw8Cm6NRNAzyJENggIoEbdwHOEpVIchpwH4qdx55hVrVm 50Zl04RiqSlG4uIimLriSiJjV45R50q8JsD55FsCda6mKh+kBFxIk69h9L4QahKm Sw9iGbCutfEwYnFzNee6fDxfR3j19vId9JZIRBSojRhNEzzmTJDreDIr0uUrW+oW hG1tmDRb2Y5Qzdsi0Nrjw4JDsQgPYIIYzTb20FgCwQIXuQkdbn8eN671AhXSzZKx LRfrV9mslExqxzRklLI1OylbkIm1hq0g -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:29 2026 by rpki-client