This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: ha5tKqZbiDcOY4q4uv4sGCBTA+IpA2wH+PiKSNtkikU= Subject key identifier: DF:27:DF:72:C1:50:20:28:31:DA:FF:E5:36:47:A3:E6:BE:D1:CB:B2 Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0BE4 Signing time: Sat 24 Jan 2026 18:25:53 +0000 Manifest this update: Sat 24 Jan 2026 18:25:53 +0000 Manifest next update: Sat 31 Jan 2026 18:25:53 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: HIkNVipsSpgrXubofh1RYv8segxsOYNtf1s/aiEG9nY=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3054 (0xbee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Jan 24 18:25:53 2026 GMT Not After : Jan 31 18:25:53 2026 GMT Subject: CN=69750eb1-34dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ae:00:45:eb:b7:42:42:1a:76:87:c4:c2:be: 3f:2c:3d:b9:33:2b:75:13:f6:b5:2c:d9:7e:31:5f: 9d:a6:54:57:4d:23:ff:94:48:42:73:f3:31:0a:32: c9:b7:88:d7:b6:f7:04:15:61:fe:41:73:dc:54:9c: dc:19:94:99:91:e9:a6:53:21:a1:c4:38:b0:a5:d1: 70:2f:a0:da:c4:d8:fc:31:3f:22:11:11:74:ed:fd: 6c:b4:a0:07:06:ff:1c:1b:63:ef:1e:2c:89:ef:21: 26:96:5d:0a:34:50:00:a6:bc:6b:01:32:6d:d2:2d: ee:41:19:e2:e7:44:fa:4a:7b:9d:ea:6c:ad:42:c9: 62:cb:66:05:66:0b:ec:f4:2d:ce:20:61:56:85:af: 87:38:00:29:1a:a3:e5:8f:15:23:7c:47:8c:c3:09: 01:00:e6:66:1e:c2:af:38:0c:07:98:59:de:40:3e: dd:65:5c:d9:ac:f8:4f:c7:d0:a2:de:81:17:e6:8b: 8f:2d:f8:22:40:e1:57:b3:78:ef:c8:cb:09:8c:52: 3d:13:c1:43:1e:a5:c6:10:bb:2a:38:99:08:64:f3: 7d:16:48:c3:94:b6:7d:ca:6b:df:fe:00:0c:7b:26: a0:e6:ec:d1:d9:19:21:2b:76:d8:6d:1d:ff:b9:58: 1c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:27:DF:72:C1:50:20:28:31:DA:FF:E5:36:47:A3:E6:BE:D1:CB:B2 X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c7:aa:22:35:19:3c:04:98:51:28:4d:37:1b:25:4f:17:8a: 8e:ad:b1:47:34:da:05:d6:4a:a0:72:96:33:58:34:0d:fa:05: 27:67:f8:42:ed:cb:00:27:bd:e3:83:bf:bb:2e:86:af:05:77: e5:54:af:72:28:37:62:1a:c2:45:5d:24:43:27:e8:e6:aa:66: 33:59:07:32:f4:9b:57:c2:67:91:f4:83:08:99:54:68:39:a8: 89:3b:c1:5b:a9:d9:3f:21:b3:fa:b0:df:d0:2c:05:ca:cd:3f: 80:c0:f2:b8:e9:0d:9c:10:14:74:91:55:d4:0f:71:37:9f:dc: c8:c5:76:37:0b:1f:63:88:e7:53:b2:25:8c:9f:73:22:1b:1f: 4d:6e:ad:c0:cf:09:06:71:5a:ce:91:c0:f5:54:05:ac:23:2b: 01:67:3d:44:f7:4f:28:5e:b4:48:48:4e:ff:f6:a8:19:30:d2: a4:a0:83:37:c0:97:46:ca:94:32:e5:72:ae:81:49:3a:05:36: cb:8e:9c:28:4c:62:f7:85:b4:ff:9c:91:ed:5b:42:22:af:0d: 84:c5:bf:cf:19:e1:d5:94:61:eb:73:58:ba:c3:a2:3d:06:22: ba:16:5c:e9:f2:87:4f:2e:a0:b9:e9:b3:59:7c:e0:82:05:6b: d3:70:14:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjYwMTI0MTgyNTUzWhcNMjYwMTMxMTgyNTUzWjAYMRYwFAYD VQQDDA02OTc1MGViMS0zNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp64AReu3QkIadofEwr4/LD25Myt1E/a1LNl+MV+dplRXTSP/lEhCc/MxCjLJ t4jXtvcEFWH+QXPcVJzcGZSZkemmUyGhxDiwpdFwL6DaxNj8MT8iERF07f1stKAH Bv8cG2PvHiyJ7yEmll0KNFAAprxrATJt0i3uQRni50T6Snud6mytQsliy2YFZgvs 9C3OIGFWha+HOAApGqPljxUjfEeMwwkBAOZmHsKvOAwHmFneQD7dZVzZrPhPx9Ci 3oEX5ouPLfgiQOFXs3jvyMsJjFI9E8FDHqXGELsqOJkIZPN9FkjDlLZ9ymvf/gAM eyag5uzR2RkhK3bYbR3/uVgcnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8n33LB UCAoMdr/5TZHo+a+0cuyMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGx6oiNRk8BJhRKE03GyVPF4qOrbFHNNoF1kqgcpYzWDQN+gUnZ/hC 7csAJ73jg7+7LoavBXflVK9yKDdiGsJFXSRDJ+jmqmYzWQcy9JtXwmeR9IMImVRo OaiJO8Fbqdk/IbP6sN/QLAXKzT+AwPK46Q2cEBR0kVXUD3E3n9zIxXY3Cx9jiOdT siWMn3MiGx9Nbq3AzwkGcVrOkcD1VAWsIysBZz1E908oXrRISE7/9qgZMNKkoIM3 wJdGypQy5XKugUk6BTbLjpwoTGL3hbT/nJHtW0Iirw2Exb/PGeHVlGHrc1i6w6I9 BiK6Flzp8odPLqC56bNZfOCCBWvTcBQj -----END CERTIFICATE-----Generated at Sun Jan 25 15:22:19 2026 by rpki-client