This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: A66ilzIJWuPHci38bSexp4Brh379v8fm9cFnvmU7dK0= Subject key identifier: 4A:CA:64:3A:62:36:66:60:76:F6:99:92:84:77:91:FC:81:05:72:5A Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 0124 Signing time: Sun 25 Jan 2026 03:56:54 +0000 Manifest this update: Sun 25 Jan 2026 03:56:53 +0000 Manifest next update: Sun 01 Feb 2026 03:56:53 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: 7b3AjDjWXn6cXZcK3NPl9LvX3b97od/riZT06EeHBOc=) 2: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) 3: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Jan 25 03:56:53 2026 GMT Not After : Feb 1 03:56:53 2026 GMT Subject: CN=69759486-4fd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:fa:4e:db:de:4c:eb:85:ff:84:27:4b:98: fe:e9:52:da:39:03:44:d1:19:4d:06:f1:9b:b4:6d: 68:2c:a3:79:f1:c4:49:d5:2a:8d:e6:5a:a1:2d:be: d0:7a:bb:05:1f:33:a6:12:36:7c:b8:f1:17:f5:38: 92:66:fe:af:9e:e1:f3:1f:0c:70:c7:ee:e0:ff:7d: de:7f:5b:9e:5d:47:27:14:b3:cf:66:1b:c5:f6:3f: ca:4c:9d:1a:91:00:2a:fc:8a:7a:8e:b5:76:b2:ad: 23:4e:94:7d:7d:20:e5:b4:9b:8c:ec:7b:3d:f4:1d: ae:bb:b0:76:83:2f:0a:ce:2d:ac:f4:93:94:bc:bc: d6:cd:74:a9:6a:0f:85:95:22:d7:55:94:41:06:c0: 3d:c2:82:ab:db:d1:ce:f0:81:3d:be:d4:69:ea:b2: 49:dc:79:46:ea:42:e8:47:b0:d4:ab:f5:c6:77:1f: df:1a:c9:4b:25:fa:48:fb:d6:18:ec:de:eb:28:2d: 9a:f6:1f:ad:04:81:37:70:65:84:a2:aa:ea:9f:80: c2:7b:5a:fd:7c:bc:10:e7:e0:a0:fb:d9:29:e4:e7: e9:1e:0c:a1:86:d4:c9:b4:e0:17:fe:63:6d:12:0f: 68:11:93:3b:0c:db:01:ba:52:96:d6:69:43:41:aa: dc:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CA:64:3A:62:36:66:60:76:F6:99:92:84:77:91:FC:81:05:72:5A X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e3:b0:f5:d3:94:ee:f9:83:90:3c:0d:46:5b:49:fa:10:12: 9a:be:20:04:d0:a3:3a:f2:0c:20:2b:69:69:0c:69:7b:5b:2d: 9f:8c:ec:eb:a2:cd:0c:e4:f2:61:9c:94:03:ae:9f:95:91:e3: 84:19:b0:3c:52:18:4c:56:b9:50:86:25:f0:36:49:ed:5c:e1: 9d:f4:01:3f:8b:0b:e8:e8:de:98:1c:0a:f6:0b:1b:3b:d7:af: 7e:0d:78:7d:f5:b4:dc:c8:74:e2:12:b9:0d:95:66:df:d3:20: e9:4a:1b:35:2a:32:83:99:ea:89:3f:63:28:fe:04:e5:d9:69: 0c:9e:a9:4f:33:a4:9c:26:94:6e:16:8d:8d:8b:60:f1:af:5f: 28:3c:c5:6c:e3:85:56:d1:2e:93:36:17:7e:c1:08:e4:e3:ca: 22:d9:bc:7a:42:5f:88:73:60:b0:76:c4:39:1a:85:ac:ac:5d: 7a:3c:83:34:ec:3a:ea:2f:9f:b6:60:64:62:72:84:f4:c8:d9: a7:42:d9:fa:91:9d:24:2f:e9:4e:6f:85:25:e0:f7:d5:bd:4a: 44:9b:26:ff:24:e5:9a:0c:25:5a:92:fc:bb:1c:08:02:19:3d: ee:41:d3:e7:90:31:99:9c:b5:5b:0b:05:19:e3:17:55:18:00: a4:50:9d:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjYwMTI1MDM1NjUzWhcNMjYwMjAxMDM1NjUzWjAYMRYwFAYD VQQDDA02OTc1OTQ4Ni00ZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucb6TtveTOuF/4QnS5j+6VLaOQNE0RlNBvGbtG1oLKN58cRJ1SqN5lqhLb7Q ersFHzOmEjZ8uPEX9TiSZv6vnuHzHwxwx+7g/33ef1ueXUcnFLPPZhvF9j/KTJ0a kQAq/Ip6jrV2sq0jTpR9fSDltJuM7Hs99B2uu7B2gy8Kzi2s9JOUvLzWzXSpag+F lSLXVZRBBsA9woKr29HO8IE9vtRp6rJJ3HlG6kLoR7DUq/XGdx/fGslLJfpI+9YY 7N7rKC2a9h+tBIE3cGWEoqrqn4DCe1r9fLwQ5+Cg+9kp5OfpHgyhhtTJtOAX/mNt Eg9oEZM7DNsBulKW1mlDQarc1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErKZDpi NmZgdvaZkoR3kfyBBXJaMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm47D105Tu+YOQPA1GW0n6EBKaviAE0KM68gwgK2lpDGl7Wy2fjOzr os0M5PJhnJQDrp+VkeOEGbA8UhhMVrlQhiXwNkntXOGd9AE/iwvo6N6YHAr2Cxs7 169+DXh99bTcyHTiErkNlWbf0yDpShs1KjKDmeqJP2Mo/gTl2WkMnqlPM6ScJpRu Fo2Ni2Dxr18oPMVs44VW0S6TNhd+wQjk48oi2bx6Ql+Ic2CwdsQ5GoWsrF16PIM0 7DrqL5+2YGRicoT0yNmnQtn6kZ0kL+lOb4Ul4PfVvUpEmyb/JOWaDCVakvy7HAgC GT3uQdPnkDGZnLVbCwUZ4xdVGACkUJ1R -----END CERTIFICATE-----Generated at Sun Jan 25 18:29:39 2026 by rpki-client