This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: w5xQ7JzJSNeEl9w+tXgrvIxYCeFfSp/q2cIPZP23zfY= Subject key identifier: CF:0D:0B:20:F3:4B:D4:2B:71:48:85:DA:33:3B:E4:51:34:34:B1:F5 Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: C2 Signing time: Sun 25 Jan 2026 05:08:45 +0000 Manifest this update: Sun 25 Jan 2026 05:08:45 +0000 Manifest next update: Sun 01 Feb 2026 05:08:45 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: aWqYecwL06nidokiwARneWySCo7CgDF1vhCIrTLQX4M=) 2: 279A9510AB7811F09488DF65C4F9AE02.roa (hash: 7+ZOvaTWijF19fvrYhrbkrijLyfPn8jaNNPKHW6m280=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Jan 25 05:08:45 2026 GMT Not After : Feb 1 05:08:45 2026 GMT Subject: CN=6975a55d-6902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:30:da:15:a1:f9:ba:6b:95:41:c3:65:bb: 27:b9:57:73:d4:f8:e9:4c:12:e3:d5:6a:b7:2d:41: 0a:c9:75:c0:99:b8:27:7c:47:40:c8:77:3d:c1:37: e7:6c:68:94:11:fa:72:56:94:9f:d3:b1:b8:ee:35: 56:eb:0b:a7:33:cb:72:48:38:2a:9d:37:5a:d7:71: 1a:a1:3b:c6:23:b3:93:da:51:58:05:6d:29:4f:a8: 68:fa:ee:58:86:74:75:6c:e1:bf:92:fe:97:b3:61: 3e:1e:2a:c3:55:3e:3f:68:88:50:91:a3:0b:7c:86: 32:52:8f:3f:70:42:8a:ec:5e:ad:46:21:55:32:96: 7f:f8:64:8f:a6:25:df:1f:8a:e8:67:72:c3:a5:d9: 3a:1a:5d:7c:75:0c:d1:a4:1e:d8:38:ea:43:11:2a: f0:a5:19:d1:55:b3:03:77:5f:67:ef:5e:47:b9:d2: 71:e7:56:2f:c5:dd:9b:95:bc:ec:96:bb:3b:d0:2b: 62:00:c3:41:74:cc:72:1a:44:e6:f2:cc:02:0e:a6: 39:37:6b:52:43:65:05:4e:9c:f7:7b:89:d7:9d:10: 8e:1c:2d:23:67:43:4f:1a:bd:7c:5b:2f:a4:8d:e0: 24:8f:5b:6a:33:a7:53:57:06:f8:44:65:90:0c:7b: 08:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:0D:0B:20:F3:4B:D4:2B:71:48:85:DA:33:3B:E4:51:34:34:B1:F5 X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4a:27:f5:93:b2:bb:62:e6:23:9c:f5:95:bd:25:2c:4d:b9: 6e:a7:18:fc:db:c0:74:09:e0:14:de:ed:0d:14:e9:52:0d:97: f3:de:de:0b:85:9e:b6:3a:24:29:ee:f2:bd:a8:8f:4f:98:0b: 9c:32:65:b3:c2:65:bd:e7:75:6f:e4:68:8c:6e:d0:cf:a6:18: 85:e3:b8:47:96:48:ab:61:a3:66:b8:5e:3a:d4:27:59:c8:06: 61:b3:eb:7f:f7:9d:36:6b:76:9b:98:70:97:17:9e:ad:f2:4e: 89:a2:fa:2b:61:55:8b:ea:6b:32:90:84:e1:27:94:d5:fb:41: 1f:b1:a5:a5:e6:4b:b7:d3:62:0f:9d:66:79:f4:a4:34:fa:44: 96:45:df:f5:ba:8d:6b:83:7a:fc:e4:fd:0e:66:46:10:43:74: 6d:97:b6:22:66:be:73:d3:e3:62:7c:48:ef:77:ca:64:0d:55: c3:54:5e:32:55:64:7c:b5:9c:34:39:8a:5d:97:df:e6:3e:97: 88:bc:b3:30:93:a5:ad:96:70:3e:7b:df:f5:84:d1:d6:40:e4: f6:5d:36:cb:6e:a1:41:08:51:d8:68:3e:63:f3:3c:83:09:0c: f9:74:5b:05:b7:6e:68:c5:18:32:45:43:fc:94:8e:23:8e:fc: 5f:7f:4a:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDAzNzg4RUUyQkFFNEQ4MDVFQkNEQ0E2NjE4RTJFQzFB MThBNUM0RTIwHhcNMjYwMTI1MDUwODQ1WhcNMjYwMjAxMDUwODQ1WjAYMRYwFAYD VQQDDA02OTc1YTU1ZC02OTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUEw2hWh+bprlUHDZbsnuVdz1PjpTBLj1Wq3LUEKyXXAmbgnfEdAyHc9wTfn bGiUEfpyVpSf07G47jVW6wunM8tySDgqnTda13EaoTvGI7OT2lFYBW0pT6ho+u5Y hnR1bOG/kv6Xs2E+HirDVT4/aIhQkaMLfIYyUo8/cEKK7F6tRiFVMpZ/+GSPpiXf H4roZ3LDpdk6Gl18dQzRpB7YOOpDESrwpRnRVbMDd19n715HudJx51Yvxd2blbzs lrs70CtiAMNBdMxyGkTm8swCDqY5N2tSQ2UFTpz3e4nXnRCOHC0jZ0NPGr18Wy+k jeAkj1tqM6dTVwb4RGWQDHsIRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8NCyDz S9QrcUiF2jM75FE0NLH1MB8GA1UdIwQYMBaAFAN4juK65NgF683KZhji7BoYpcTi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CRTdDQUMxMkQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJBWHJ6Y3BtR09Mc0doaWx4 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CRTdDQUMxMkQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJB WHJ6Y3BtR09Mc0doaWx4T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbSif1k7K7YuYjnPWVvSUsTblupxj828B0CeAU3u0NFOlSDZfz3t4L hZ62OiQp7vK9qI9PmAucMmWzwmW953Vv5GiMbtDPphiF47hHlkirYaNmuF461CdZ yAZhs+t/9502a3abmHCXF56t8k6JovorYVWL6msykIThJ5TV+0EfsaWl5ku302IP nWZ59KQ0+kSWRd/1uo1rg3r85P0OZkYQQ3Rtl7YiZr5z0+NifEjvd8pkDVXDVF4y VWR8tZw0OYpdl9/mPpeIvLMwk6WtlnA+e9/1hNHWQOT2XTbLbqFBCFHYaD5j8zyD CQz5dFsFt25oxRgyRUP8lI4jjvxff0qP -----END CERTIFICATE-----Generated at Sun Jan 25 17:26:59 2026 by rpki-client