This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft File: rGOF7VY-H9amaz5LUQ3MaTDNSww.mft (raw, json) Hash identifier: YoCyxT6B67Fqu64C/qx77iidWtdyB8Qk2XB8MpNUgDs= Subject key identifier: C2:98:CA:68:FF:18:E9:EB:29:98:B9:1E:12:0D:F8:CD:CD:7F:5A:B9 Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft Manifest number: 021F Signing time: Sun 25 Jan 2026 01:36:14 +0000 Manifest this update: Sun 25 Jan 2026 01:36:13 +0000 Manifest next update: Sun 01 Feb 2026 01:36:13 +0000 Files and hashes: 1: rGOF7VY-H9amaz5LUQ3MaTDNSww.crl (hash: Ic5oSN8oUXwX6nIQIuaGktoZJcFajRBRwTcYdLnzas4=) 2: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (hash: SxVaSYD8PBsvrx1NB8E9HKd/vHjJ1IDDsPlNRnpIlg4=) 3: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (hash: qGZaQNJyLZku/SzxDCB0Nuw0a/+OoUo9qDOPnkwwD5Q=) 4: D1EAA18CD2BC11ED9E7A9A1BC4F9AE02.roa (hash: PoKf6o7yXw/Qv4BZeY7gOn7tsUE0LnvpCUG0WyWE5AY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: Jan 25 01:36:13 2026 GMT Not After : Feb 1 01:36:13 2026 GMT Subject: CN=6975738e-d684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:49:ae:c6:af:e2:93:8e:a2:fb:9c:bf:4d:70: cc:0f:69:3b:51:f9:a5:57:d7:bd:5b:a3:27:7f:5d: 8b:5f:64:55:ac:26:39:6c:3f:73:cd:2c:d3:50:6f: b4:c7:f7:da:91:86:77:c1:52:85:56:b2:0c:d1:00: 51:d4:52:46:64:cb:d8:1e:16:9e:f6:b4:43:08:5a: 3c:1e:f6:12:2f:ac:ec:83:d9:a3:ea:96:33:13:1b: dc:02:80:51:7f:f1:91:30:d8:40:1d:3e:b0:af:db: 9f:56:c0:53:93:9c:a3:a2:5e:70:02:68:df:65:36: 5a:98:c9:b5:78:27:49:9a:fb:67:c7:dc:18:c1:ae: c1:75:d5:3f:fb:80:5a:3a:63:52:6f:f5:8a:78:61: 7a:5e:b5:f4:69:97:43:59:75:a3:b4:29:38:b4:34: 6e:cd:c5:e2:f6:68:4e:28:46:e5:6d:d2:96:a5:21: d7:ae:e7:74:f3:c1:d9:44:f9:a2:ca:87:33:95:a1: bf:bb:0a:50:1d:bf:ff:52:55:f5:5f:ee:52:3b:50: 59:b3:ed:9c:aa:18:55:53:ec:d5:46:a7:cb:d2:c5: 6d:6a:07:fa:03:00:1e:9d:21:a6:0b:1f:b4:f0:88: e6:4e:b3:4a:ad:ca:1e:93:8a:20:92:6f:c5:cc:6a: f2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:98:CA:68:FF:18:E9:EB:29:98:B9:1E:12:0D:F8:CD:CD:7F:5A:B9 X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:72:50:5a:92:ae:7b:d5:06:fe:c1:8c:bc:e4:8e:42:5b:0b: f1:3f:ef:27:f6:e3:bf:db:16:7f:b4:a0:e4:b4:f2:8d:92:ad: e2:16:21:d4:16:a9:51:7c:71:a4:a6:4c:3f:16:99:63:9c:dd: bf:82:e6:fb:f3:d3:a8:27:21:73:7b:97:85:ff:d1:d2:c4:2a: b9:d7:1a:cd:84:1d:39:d6:76:0e:6e:d2:82:3e:b3:2e:bd:ee: 5f:57:2a:92:00:ff:fe:c4:6d:d1:ed:2b:ad:82:e1:a1:bf:02: a5:ec:0d:8b:55:79:72:92:09:09:6e:50:81:ea:12:f5:38:44: 0e:ad:b1:e8:23:7a:b7:e6:5e:69:b1:9c:65:52:8b:67:c9:79: d2:09:32:b4:c0:7a:3a:ff:ce:5b:06:dc:9e:18:5b:f0:b4:ac: bb:a2:f4:d4:e1:53:5b:1e:65:f4:f0:0b:64:9d:cb:de:60:88: 35:f3:4d:22:b0:81:31:63:df:a6:f0:fa:a3:51:ae:bc:17:d9: f0:ec:26:9a:ac:5a:b7:c7:43:8e:1d:31:af:5c:8c:45:fc:f0: ff:32:01:f4:82:50:db:71:c3:03:71:e1:26:1f:34:20:cc:f3: c9:3e:b5:dd:60:77:a8:9f:6b:21:63:59:8c:d2:d2:d6:70:17: 78:aa:96:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjYwMTI1MDEzNjEzWhcNMjYwMjAxMDEzNjEzWjAYMRYwFAYD VQQDDA02OTc1NzM4ZS1kNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkmuxq/ik46i+5y/TXDMD2k7UfmlV9e9W6Mnf12LX2RVrCY5bD9zzSzTUG+0 x/fakYZ3wVKFVrIM0QBR1FJGZMvYHhae9rRDCFo8HvYSL6zsg9mj6pYzExvcAoBR f/GRMNhAHT6wr9ufVsBTk5yjol5wAmjfZTZamMm1eCdJmvtnx9wYwa7BddU/+4Ba OmNSb/WKeGF6XrX0aZdDWXWjtCk4tDRuzcXi9mhOKEblbdKWpSHXrud088HZRPmi yoczlaG/uwpQHb//UlX1X+5SO1BZs+2cqhhVU+zVRqfL0sVtagf6AwAenSGmCx+0 8IjmTrNKrcoek4ogkm/FzGryswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKYymj/ GOnrKZi5HhIN+M3Nf1q5MB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEQwQS81NjRBMTM1RUQyMjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5 YW1hejVMVVEzTWFURE5Td3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqclBakq571Qb+wYy85I5CWwvxP+8n9uO/2xZ/tKDktPKNkq3iFiHU FqlRfHGkpkw/FpljnN2/gub789OoJyFze5eF/9HSxCq51xrNhB051nYObtKCPrMu ve5fVyqSAP/+xG3R7SutguGhvwKl7A2LVXlykgkJblCB6hL1OEQOrbHoI3q35l5p sZxlUotnyXnSCTK0wHo6/85bBtyeGFvwtKy7ovTU4VNbHmX08AtkncveYIg1800i sIExY9+m8PqjUa68F9nw7CaarFq3x0OOHTGvXIxF/PD/MgH0glDbccMDceEmHzQg zPPJPrXdYHeon2shY1mM0tLWcBd4qpZs -----END CERTIFICATE-----Generated at Sun Jan 25 09:49:35 2026 by rpki-client