This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: mybiYcSOlv4NuhO0dEnwn53Iz2bEztLKuwFbofzz7Pw= Subject key identifier: 2C:77:AA:F4:5A:82:AF:43:6B:05:A9:2D:5C:64:A8:7C:6A:BD:77:6F Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: 0146 Signing time: Sun 25 Jan 2026 03:36:13 +0000 Manifest this update: Sun 25 Jan 2026 03:36:12 +0000 Manifest next update: Sun 01 Feb 2026 03:36:12 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: Qnf/d0gpS4/h9pFVntash5oc5LOyEuRhtwF4XzNZ79g=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: NJlTUu7/QW4EWdki02Krp+vIjKwpqnHJl+6zdGP8Tfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C, serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Validity Not Before: Jan 25 03:36:12 2026 GMT Not After : Feb 1 03:36:12 2026 GMT Subject: CN=69758fad-65ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:77:cb:d6:56:03:3c:a5:98:73:40:82:60:3a: 87:6e:06:0f:e7:f3:ec:22:d7:fa:f1:60:27:66:25: 4e:f8:9f:f3:67:af:96:ff:06:60:f6:e1:3c:8b:67: 7a:60:0a:30:e3:ae:15:ef:b8:fc:03:bc:16:8d:24: 3e:44:73:3b:82:5c:3c:8e:c5:46:47:78:37:2b:4e: f7:32:67:fa:80:f2:ce:e3:f8:23:7c:cb:d6:4d:1f: a4:10:6d:08:38:37:52:7d:02:46:cf:ae:29:44:48: 39:9c:6f:fc:60:33:89:43:e7:bc:3a:b3:46:59:bd: 14:ec:3c:0f:2c:ff:54:4f:90:b4:ee:b4:7d:22:7b: c2:40:7a:7d:9e:0a:b1:2e:7c:e4:ed:11:e5:1c:4d: 0a:f0:de:dc:e1:05:95:a3:a9:96:e9:f3:b8:75:3d: 17:3f:e3:a1:6d:61:fa:33:4f:79:7a:5f:4d:7e:fd: 9f:e5:2a:81:95:98:7f:7c:d6:50:53:45:b2:1e:06: 9e:f3:90:4c:b1:15:53:1d:26:6a:9b:e8:1e:a2:48: a2:66:60:36:89:9a:cc:65:cf:9d:c4:1b:60:e4:d5: 1e:8f:9a:7f:a9:cd:3c:3a:bc:86:b2:01:47:9a:7b: 5d:76:86:49:d3:74:1a:2d:20:dd:3f:ce:9d:1a:56: 78:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:77:AA:F4:5A:82:AF:43:6B:05:A9:2D:5C:64:A8:7C:6A:BD:77:6F X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:35:70:d3:88:83:ae:68:d7:7b:d6:49:08:00:c8:fd:27:94: 53:17:0e:09:1b:19:d0:13:d2:f3:6b:03:2c:5c:dd:1c:88:61: aa:83:f0:88:3e:fd:e6:52:39:ec:76:45:0c:41:76:ae:27:0a: e8:4a:1c:09:8f:7c:e0:db:56:35:4b:6b:d3:3f:8f:a1:d8:46: 83:fa:0d:bb:79:f6:f8:51:fc:08:b9:62:a3:c6:4e:52:ae:23: 4a:54:28:bb:b4:90:9a:dd:d0:47:16:2f:10:96:a2:62:af:ef: de:f1:b7:11:cb:dd:02:32:c1:13:41:e7:8e:aa:fe:cc:5d:e5: 9c:1b:c5:b9:54:7e:76:a7:d0:30:f1:38:d9:28:23:86:f6:36: 8d:28:9a:74:df:2c:ea:94:ba:ab:3f:7a:29:f9:5f:2c:74:fe: 96:a8:c3:4c:83:89:be:0a:45:70:cf:86:fc:84:0c:7d:65:46: 02:9c:29:98:a0:7b:9f:23:88:a8:26:f9:b3:58:3e:a2:11:a3: a4:3f:23:01:e8:04:ef:9c:b6:a3:07:38:13:62:60:59:b7:04: df:d0:f0:40:e9:be:68:91:bf:c6:19:08:1f:be:65:7a:36:99: 8c:dc:a6:b9:c0:34:85:eb:4d:68:7c:61:9e:6f:90:88:a3:e3: 7c:0c:b8:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjYwMTI1MDMzNjEyWhcNMjYwMjAxMDMzNjEyWjAYMRYwFAYD VQQDDA02OTc1OGZhZC02NWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXfL1lYDPKWYc0CCYDqHbgYP5/PsItf68WAnZiVO+J/zZ6+W/wZg9uE8i2d6 YAow464V77j8A7wWjSQ+RHM7glw8jsVGR3g3K073Mmf6gPLO4/gjfMvWTR+kEG0I ODdSfQJGz64pREg5nG/8YDOJQ+e8OrNGWb0U7DwPLP9UT5C07rR9InvCQHp9ngqx Lnzk7RHlHE0K8N7c4QWVo6mW6fO4dT0XP+OhbWH6M095el9Nfv2f5SqBlZh/fNZQ U0WyHgae85BMsRVTHSZqm+geokiiZmA2iZrMZc+dxBtg5NUej5p/qc08OryGsgFH mntddoZJ03QaLSDdP86dGlZ4wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx3qvRa gq9DawWpLVxkqHxqvXdvMB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwNXDTiIOuaNd71kkIAMj9J5RTFw4JGxnQE9LzawMsXN0ciGGqg/CI Pv3mUjnsdkUMQXauJwroShwJj3zg21Y1S2vTP4+h2EaD+g27efb4UfwIuWKjxk5S riNKVCi7tJCa3dBHFi8QlqJir+/e8bcRy90CMsETQeeOqv7MXeWcG8W5VH52p9Aw 8TjZKCOG9jaNKJp03yzqlLqrP3op+V8sdP6WqMNMg4m+CkVwz4b8hAx9ZUYCnCmY oHufI4ioJvmzWD6iEaOkPyMB6ATvnLajBzgTYmBZtwTf0PBA6b5okb/GGQgfvmV6 NpmM3Ka5wDSF601ofGGeb5CIo+N8DLim -----END CERTIFICATE-----Generated at Sun Jan 25 09:51:47 2026 by rpki-client