This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft File: p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json) Hash identifier: ZFeZKP1lNa6gpVRvtjbR40znZqCt9vOdYXGqhAjaF0M= Subject key identifier: 62:A4:C1:6E:DF:E8:59:4B:23:E6:B3:C5:A5:67:17:DF:34:F1:A8:AB Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft Manifest number: 0E71 Signing time: Sat 24 Jan 2026 17:26:00 +0000 Manifest this update: Sat 24 Jan 2026 17:26:00 +0000 Manifest next update: Sat 31 Jan 2026 17:26:00 +0000 Files and hashes: 1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: qjo71QhZd05rufVhZnKk9j807ztOksEndIxFxgEmRbk=) 2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: cTGuGnG9rqC1kt6QlqPGiDTyt8yC7pqJIZqMZttM2hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3707 (0xe7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Jan 24 17:26:00 2026 GMT Not After : Jan 31 17:26:00 2026 GMT Subject: CN=697500a8-cecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c0:5d:dc:17:b4:8d:a3:44:ed:ed:84:bd:b0: 50:ad:5a:db:f6:87:fc:79:ea:ab:4c:7c:bd:3a:de: 7e:66:d0:5e:2a:85:0d:02:96:37:2a:68:a3:e3:ad: 9e:f0:9e:ef:9c:64:d2:0b:e0:f0:ec:f0:4f:fe:a2: 76:42:53:a8:f4:01:7a:0b:89:54:e7:1d:9a:2a:1f: 73:cd:97:05:9b:ff:8d:76:f9:c9:60:ce:63:52:80: f4:23:74:05:b4:49:5e:3f:4a:0e:4e:c5:68:5c:78: 06:60:1e:54:46:b0:1a:4f:1c:80:ae:7b:e0:c6:48: 77:1b:8f:0e:88:b5:66:a1:5d:dc:9b:34:f3:1f:bf: 16:8b:f3:25:b4:6a:4d:3e:78:f6:ff:90:24:7e:ad: 9c:69:b4:9d:26:9d:3f:87:0e:2d:f1:41:b5:69:3d: 8d:83:9a:fb:a3:76:ef:7d:b5:bf:3f:9f:2c:10:6d: 62:b8:a7:06:c1:64:82:24:05:20:75:e7:b2:0c:0a: 65:35:69:74:3f:e1:62:2c:cf:d0:07:f2:dc:a3:9a: c0:22:56:e7:b3:b7:dc:a5:87:1e:e8:a1:b1:67:b1: 42:c9:04:32:19:69:ac:3d:69:66:13:5c:12:62:6a: da:2f:3b:ad:82:4b:fd:6c:30:db:66:29:26:cf:bc: 5e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A4:C1:6E:DF:E8:59:4B:23:E6:B3:C5:A5:67:17:DF:34:F1:A8:AB X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:7b:03:e5:56:f8:cd:bd:1a:7a:11:a5:5a:b0:57:6f:fb:66: 73:5c:f6:d7:2f:8d:8a:72:e9:d5:b1:6f:b9:50:a9:ca:65:7c: 3b:1b:68:08:5a:d4:e0:d1:d8:6f:52:be:d8:9d:87:f8:42:9b: 57:22:17:f4:4b:31:ee:82:ac:b5:83:5d:51:04:34:f1:45:5d: cf:6c:c1:33:4b:eb:ca:dd:8e:64:2b:1c:0c:cd:a9:4b:06:83: d3:6a:df:22:8c:a6:0c:06:9b:81:38:23:bb:96:74:83:b0:51: 9a:80:6c:c9:6b:3d:d4:f8:dd:67:fa:a2:d5:b5:72:51:fe:30: bc:53:33:4b:ca:b4:5c:cb:40:74:33:ad:58:22:a1:59:c6:df: fb:82:26:26:8c:85:f6:b5:47:4d:66:1e:15:e2:0e:b4:52:a1: 8d:92:60:21:44:ee:0c:29:74:90:f5:a9:d3:ee:27:4a:ea:b0: 24:9e:66:15:96:0b:5e:3e:8a:54:2f:19:de:27:5c:54:85:8c: c1:0a:47:a4:5f:10:75:4c:46:b5:5b:ab:09:bb:f2:ac:7f:54: fd:14:d1:63:3c:44:4a:90:59:5d:f4:59:40:10:aa:50:30:96: 7b:bb:8c:5a:f8:04:42:4b:b0:7a:6d:69:91:7d:34:b7:88:a2: 39:41:49:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjYwMTI0MTcyNjAwWhcNMjYwMTMxMTcyNjAwWjAYMRYwFAYD VQQDDA02OTc1MDBhOC1jZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcBd3Be0jaNE7e2EvbBQrVrb9of8eeqrTHy9Ot5+ZtBeKoUNApY3Kmij462e 8J7vnGTSC+Dw7PBP/qJ2QlOo9AF6C4lU5x2aKh9zzZcFm/+NdvnJYM5jUoD0I3QF tEleP0oOTsVoXHgGYB5URrAaTxyArnvgxkh3G48OiLVmoV3cmzTzH78Wi/MltGpN Pnj2/5Akfq2cabSdJp0/hw4t8UG1aT2Ng5r7o3bvfbW/P58sEG1iuKcGwWSCJAUg deeyDAplNWl0P+FiLM/QB/Lco5rAIlbns7fcpYce6KGxZ7FCyQQyGWmsPWlmE1wS YmraLzutgkv9bDDbZikmz7xeDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKkwW7f 6FlLI+azxaVnF9808airMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI5Ny80MzAxRkRCRUFGNkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThO angyelljMUFzU1lHc01hTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaewPlVvjNvRp6EaVasFdv+2ZzXPbXL42KcunVsW+5UKnKZXw7G2gI WtTg0dhvUr7YnYf4QptXIhf0SzHugqy1g11RBDTxRV3PbMEzS+vK3Y5kKxwMzalL BoPTat8ijKYMBpuBOCO7lnSDsFGagGzJaz3U+N1n+qLVtXJR/jC8UzNLyrRcy0B0 M61YIqFZxt/7giYmjIX2tUdNZh4V4g60UqGNkmAhRO4MKXSQ9anT7idK6rAknmYV lgtePopULxneJ1xUhYzBCkekXxB1TEa1W6sJu/Ksf1T9FNFjPERKkFld9FlAEKpQ MJZ7u4xa+ARCS7B6bWmRfTS3iKI5QUkG -----END CERTIFICATE-----Generated at Sun Jan 25 08:15:33 2026 by rpki-client