This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: nEqImP5FFCcez9Hzox0ZzGB7+TbfGpTRVhcEenDfq8M= Subject key identifier: BB:57:12:78:39:71:1A:1A:5C:7D:F7:A9:C6:AD:8D:45:73:1E:1D:D9 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 0794 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2DF9 Signing time: Sat 24 Jan 2026 15:32:25 +0000 Manifest this update: Sat 24 Jan 2026 15:32:25 +0000 Manifest next update: Sat 31 Jan 2026 15:32:25 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: X/Shmlh9ScDfSaXsEpvDyzkFB9U0pYg+VrAhIh7Nnrc=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: ekyxreCpgMcKP34usIZn12GGqR3mbNPPXZzJX4hQpac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1940 (0x794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Jan 24 15:32:25 2026 GMT Not After : Jan 31 15:32:25 2026 GMT Subject: CN=6974e609-eaf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b7:e6:51:48:0c:64:57:bc:6d:5a:78:9f:88: a7:93:10:e9:44:89:2f:50:ba:28:56:97:58:b8:5a: 36:3b:d4:fb:77:b2:0c:cd:96:c9:01:93:0b:4f:f0: 12:f9:69:fb:3c:31:91:83:3b:0b:84:25:1a:a8:77: 73:0d:0a:90:99:74:b1:d9:4c:88:02:8f:ad:ff:e8: 20:c9:16:2e:34:b5:d2:f3:7d:b9:50:a9:55:0c:26: 76:73:95:02:01:d7:c3:24:d4:c7:73:42:20:92:db: 2f:42:fd:de:cc:ce:a6:5f:fa:0e:0c:4f:2f:91:4a: 50:65:68:d2:b1:0d:44:69:d8:1e:2d:bf:ca:08:d9: 54:fa:49:c4:ca:d4:56:b6:0b:ef:2a:96:b8:cf:51: e3:13:3d:5b:ec:1b:56:e8:a1:00:bb:5f:ca:7b:bd: 44:69:bc:1d:86:0b:e5:c9:ec:0e:05:75:55:61:d0: 1e:15:b0:4c:c2:af:57:7b:c1:6a:88:c0:6b:ad:84: 67:c4:84:65:9a:57:8e:aa:6d:e5:f5:0a:4a:3b:cc: 7c:5e:6e:7c:ef:b8:40:9b:ba:ae:02:42:1f:85:34: 35:7e:c3:01:e4:ee:6e:85:80:74:d3:30:cb:6a:95: 3e:a0:0b:5f:03:e6:0b:c2:f0:47:93:8b:0f:9e:ec: 52:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:12:78:39:71:1A:1A:5C:7D:F7:A9:C6:AD:8D:45:73:1E:1D:D9 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:64:c8:5e:99:01:e6:4f:25:69:7c:4a:23:d0:be:16:6e:a1: 86:71:97:38:6b:0d:94:dd:05:1e:1c:79:46:44:0f:3f:1a:c2: a5:44:69:a8:20:f3:75:92:92:c8:f8:50:c0:34:d0:bd:19:23: d2:f3:9b:3b:c3:ce:90:62:33:94:d9:21:ea:24:e6:70:77:f6: fb:e7:30:13:53:92:6a:ec:1d:12:7c:11:25:a2:a2:c6:f4:d7: 73:00:0a:b3:c9:00:af:94:9c:3e:fb:79:08:a4:3e:d3:c6:5f: e9:41:72:fa:a7:74:bf:31:5f:85:c8:e3:bb:72:c1:49:78:ed: 07:27:0b:c1:c0:d5:bb:74:e1:8e:fe:ed:c4:96:25:38:c6:6b: 57:66:cf:44:c0:39:3d:21:d2:71:4d:9d:b3:7e:15:75:1c:ad: b0:bb:0f:cb:92:78:f7:6e:92:6e:bb:47:ee:89:07:06:06:a7: 57:a4:8a:d1:e4:e4:d3:69:8a:35:1e:6a:63:f8:95:39:8c:f7: e4:98:dc:65:d6:2b:1d:c4:91:12:fd:1b:37:95:03:0e:10:de: f2:c7:cc:ec:91:3e:70:20:62:c8:3f:db:bd:18:60:ba:8e:49: e8:e9:e2:8d:83:3d:24:cb:64:e4:d5:57:47:53:f3:61:f2:57: 60:11:50:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjYwMTI0MTUzMjI1WhcNMjYwMTMxMTUzMjI1WjAYMRYwFAYD VQQDDA02OTc0ZTYwOS1lYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47fmUUgMZFe8bVp4n4inkxDpRIkvULooVpdYuFo2O9T7d7IMzZbJAZMLT/AS +Wn7PDGRgzsLhCUaqHdzDQqQmXSx2UyIAo+t/+ggyRYuNLXS8325UKlVDCZ2c5UC AdfDJNTHc0IgktsvQv3ezM6mX/oODE8vkUpQZWjSsQ1EadgeLb/KCNlU+knEytRW tgvvKpa4z1HjEz1b7BtW6KEAu1/Ke71EabwdhgvlyewOBXVVYdAeFbBMwq9Xe8Fq iMBrrYRnxIRlmleOqm3l9QpKO8x8Xm5877hAm7quAkIfhTQ1fsMB5O5uhYB00zDL apU+oAtfA+YLwvBHk4sPnuxS7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtXEng5 cRoaXH33qcatjUVzHh3ZMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdZMhemQHmTyVpfEoj0L4WbqGGcZc4aw2U3QUeHHlGRA8/GsKlRGmo IPN1kpLI+FDANNC9GSPS85s7w86QYjOU2SHqJOZwd/b75zATU5Jq7B0SfBEloqLG 9NdzAAqzyQCvlJw++3kIpD7Txl/pQXL6p3S/MV+FyOO7csFJeO0HJwvBwNW7dOGO /u3EliU4xmtXZs9EwDk9IdJxTZ2zfhV1HK2wuw/Lknj3bpJuu0fuiQcGBqdXpIrR 5OTTaYo1Hmpj+JU5jPfkmNxl1isdxJES/Rs3lQMOEN7yx8zskT5wIGLIP9u9GGC6 jkno6eKNgz0ky2Tk1VdHU/Nh8ldgEVCV -----END CERTIFICATE-----Generated at Sun Jan 25 04:35:55 2026 by rpki-client