This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: Ha8ILfDcgJ7B6ksoiWXfRgbCNuFstGx9RlzBzH4/3YA= Subject key identifier: ED:1F:8D:8D:B6:F8:A4:DA:50:FE:6B:68:80:2E:D4:6D:54:4F:FD:00 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C66 Signing time: Sat 24 Jan 2026 18:13:09 +0000 Manifest this update: Sat 24 Jan 2026 18:13:09 +0000 Manifest next update: Sat 31 Jan 2026 18:13:09 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: AGyviMnQB8w7P+uIswUZO/mPkzZK1SbJUL8QziddwJs=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: gogrAGTq/ykGhVaNrMTatrWlz9qs3Xp20k79SBgW8QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jan 24 18:13:09 2026 GMT Not After : Jan 31 18:13:09 2026 GMT Subject: CN=69750bb5-fd27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e0:61:36:80:45:87:40:51:82:69:b8:31:7d: 73:0a:7d:91:32:6a:e8:00:d9:d2:d4:84:88:27:80: 44:da:14:c8:9e:42:7c:c9:23:f5:d0:3f:23:cf:bc: c9:b6:e3:9f:89:2d:15:40:98:b5:ee:aa:e7:17:2b: a1:6c:af:e3:0b:37:1c:d3:35:7e:cb:8a:b7:54:88: 6e:4f:da:4c:d0:ec:4a:5f:ee:a5:0b:c4:56:cf:ea: a3:c0:74:50:12:cc:cc:e6:ba:6f:96:af:f0:ac:d7: 9a:27:fb:bc:3c:8d:f0:ad:60:16:09:a7:52:22:e6: 9c:d4:a0:71:b6:58:f2:a6:20:8b:08:f7:e5:1c:b7: ae:4e:5d:27:87:cd:c5:36:02:af:ab:25:39:d1:93: bc:3e:9c:49:3d:a2:c9:d9:b6:d5:46:a6:8a:e4:a9: 39:7b:49:b2:a9:dc:ae:cf:cb:e8:4a:36:99:7e:fd: 89:51:d3:dd:30:74:6e:48:2b:af:2e:8f:3b:64:45: f2:73:19:88:5a:43:04:6e:13:68:76:97:62:be:5b: c4:35:bf:67:0f:63:32:f0:a4:33:b7:28:8a:ed:f0: 0b:e6:43:f8:d0:7f:81:f3:64:b0:84:12:38:09:e2: 21:5f:3f:b2:8e:3e:5f:c6:ad:59:0f:48:d9:ee:07: a4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:1F:8D:8D:B6:F8:A4:DA:50:FE:6B:68:80:2E:D4:6D:54:4F:FD:00 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5e:a4:39:d1:d4:82:6b:1d:81:27:20:fe:31:47:c8:4e:c9: 16:e5:a0:bd:37:10:48:84:9c:9d:f4:0b:8f:52:22:d8:9d:96: 85:e8:7e:e5:84:fe:a2:1b:1d:b1:44:20:f8:0b:4b:3b:23:59: 57:e1:b9:ae:a5:d0:54:bd:75:ac:83:e6:d2:cd:9f:4c:c4:22: ab:f7:cf:d7:ef:55:01:23:bf:c4:c6:e5:d8:e1:d6:1f:52:63: 7e:4f:e5:8a:58:32:31:6d:8f:0c:c4:33:9f:82:27:19:91:84: 51:28:d7:f4:df:b4:18:ef:65:35:b3:43:ba:b5:7b:0f:94:24: 63:5a:c6:0e:bf:3f:3e:11:7b:81:3e:7c:71:6a:00:3f:f4:0b: d3:80:78:cd:45:23:89:b7:a5:36:be:56:f8:70:3b:1c:f9:21: 5e:ff:34:b4:1c:42:a1:38:ac:b6:9e:47:ee:3a:b2:35:07:a5: 86:95:55:84:16:40:99:c2:ae:94:ca:20:e2:dd:3a:f9:f8:96: 45:81:55:6c:ad:c3:f0:e8:b6:df:8a:0c:90:a6:ba:8d:3c:9e: 9d:ab:bd:0d:33:74:e3:7a:21:fc:b5:81:dc:0f:e8:16:41:7d: 4c:cb:10:1a:c8:79:08:cb:1c:ff:34:23:b7:fa:a7:b5:fe:7f: df:9c:7a:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwMTI0MTgxMzA5WhcNMjYwMTMxMTgxMzA5WjAYMRYwFAYD VQQDDA02OTc1MGJiNS1mZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouBhNoBFh0BRgmm4MX1zCn2RMmroANnS1ISIJ4BE2hTInkJ8ySP10D8jz7zJ tuOfiS0VQJi17qrnFyuhbK/jCzcc0zV+y4q3VIhuT9pM0OxKX+6lC8RWz+qjwHRQ EszM5rpvlq/wrNeaJ/u8PI3wrWAWCadSIuac1KBxtljypiCLCPflHLeuTl0nh83F NgKvqyU50ZO8PpxJPaLJ2bbVRqaK5Kk5e0myqdyuz8voSjaZfv2JUdPdMHRuSCuv Lo87ZEXycxmIWkMEbhNodpdivlvENb9nD2My8KQztyiK7fAL5kP40H+B82SwhBI4 CeIhXz+yjj5fxq1ZD0jZ7gekqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0fjY22 +KTaUP5raIAu1G1UT/0AMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqXqQ50dSCax2BJyD+MUfITskW5aC9NxBIhJyd9AuPUiLYnZaF6H7l hP6iGx2xRCD4C0s7I1lX4bmupdBUvXWsg+bSzZ9MxCKr98/X71UBI7/ExuXY4dYf UmN+T+WKWDIxbY8MxDOfgicZkYRRKNf037QY72U1s0O6tXsPlCRjWsYOvz8+EXuB PnxxagA/9AvTgHjNRSOJt6U2vlb4cDsc+SFe/zS0HEKhOKy2nkfuOrI1B6WGlVWE FkCZwq6UyiDi3Tr5+JZFgVVsrcPw6LbfigyQprqNPJ6dq70NM3TjeiH8tYHcD+gW QX1MyxAayHkIyxz/NCO3+qe1/n/fnHry -----END CERTIFICATE-----Generated at Mon Jan 26 09:29:10 2026 by rpki-client