This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: 1cixCD5Es+L+RWE0szFJbAt/Bxk91z3odzLHMhpMDgg= Subject key identifier: 34:7A:40:05:D6:CA:0B:5B:2B:6E:58:CF:2E:FC:83:41:AD:E0:E7:7E Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 0166 Signing time: Sun 25 Jan 2026 03:21:12 +0000 Manifest this update: Sun 25 Jan 2026 03:21:12 +0000 Manifest next update: Sun 01 Feb 2026 03:21:12 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: rwbETNTbWj2JUTsR4vGU2hekfkces/k25W124Z6jCa0=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: /KMShVz7xPQb/IFHjv8WLpc7f7w5sCo+1tbPQq7vaKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Jan 25 03:21:12 2026 GMT Not After : Feb 1 03:21:12 2026 GMT Subject: CN=69758c28-e29d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:11:a4:f2:f0:96:6a:8d:6f:7b:05:2c:3a: 39:cc:73:c6:d8:35:b6:0c:17:1c:12:1f:27:7c:21: 5f:e4:b6:fc:5e:f3:49:01:50:a9:5a:f5:9f:73:d8: 69:2d:fc:c2:ce:9d:39:e8:b8:c0:39:57:4d:55:cc: ef:f4:b2:21:ca:17:1e:76:21:e2:b5:65:e0:e3:21: b0:85:a9:65:49:40:06:79:7d:7e:41:3d:a8:f4:e0: 5f:ad:c9:5a:8b:d7:01:a8:ed:ad:14:cc:5f:8b:6e: 8a:f1:ba:cc:3f:bd:83:b3:a9:2e:a2:fb:b7:d5:d5: 60:e7:61:10:7d:e1:d0:af:8e:e6:d6:ca:b6:26:dc: b0:af:58:75:05:2a:fa:e2:9a:94:70:72:cf:91:8c: 45:8b:d5:a5:97:2e:59:60:3f:7e:7a:39:ac:25:36: c2:ba:64:54:d2:31:6c:1d:d9:7a:65:a2:8a:a8:b4: 3a:05:b1:72:e6:88:2f:56:91:68:3b:a5:21:57:17: ee:58:62:6e:ae:2f:4f:52:dd:96:56:df:61:24:5f: 42:3d:d2:b5:77:c1:e6:3d:cc:48:3d:3d:48:d3:c8: cb:27:98:9a:41:55:e0:67:ae:fd:55:73:3d:51:34: 6b:78:b6:4b:86:37:bd:dd:e6:56:b7:db:84:84:8f: 71:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7A:40:05:D6:CA:0B:5B:2B:6E:58:CF:2E:FC:83:41:AD:E0:E7:7E X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:3c:65:02:84:a8:34:0d:31:35:4b:21:28:55:81:bd:7b:1f: b5:39:05:f5:cb:77:76:37:29:da:b3:5f:f1:68:7c:a7:68:52: 34:76:25:c8:d2:a0:fe:2f:73:e1:32:11:1f:d2:ca:fd:b4:55: 9f:0f:89:71:2e:6f:f1:53:19:5c:17:5b:29:cf:75:32:87:ee: 47:0e:56:31:36:4d:70:18:9b:76:18:00:d0:bd:44:fa:0c:f0: c8:e8:8a:85:7e:dc:50:69:ae:63:e3:4d:62:f3:4a:4f:7c:40: 7f:c4:1e:00:7b:63:a4:07:2e:18:60:bd:28:f4:58:17:6b:35: 8a:70:0e:14:5a:cc:e7:19:29:b6:13:53:ff:99:51:b6:36:d5: c4:2f:0a:35:d9:e8:62:14:b9:01:0d:4a:c3:1c:39:a8:bd:de: 44:48:6c:dc:cb:7e:df:07:68:37:10:8f:c1:84:6e:45:68:70: b4:8a:5a:12:27:33:19:38:b5:93:b3:b0:e4:3d:d8:c2:e5:cb: 32:6a:90:7f:a6:bd:cb:62:c3:1f:8c:2c:7a:88:09:80:a1:b2: b1:e4:9b:72:ea:92:19:14:93:4e:84:c7:3a:df:a1:89:76:cf: a7:27:97:01:04:09:b0:df:bf:9d:43:fa:08:03:67:47:21:c0: d3:c9:67:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwMTI1MDMyMTEyWhcNMjYwMjAxMDMyMTEyWjAYMRYwFAYD VQQDDA02OTc1OGMyOC1lMjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf8RpPLwlmqNb3sFLDo5zHPG2DW2DBccEh8nfCFf5Lb8XvNJAVCpWvWfc9hp LfzCzp056LjAOVdNVczv9LIhyhcediHitWXg4yGwhallSUAGeX1+QT2o9OBfrcla i9cBqO2tFMxfi26K8brMP72Ds6kuovu31dVg52EQfeHQr47m1sq2Jtywr1h1BSr6 4pqUcHLPkYxFi9Wlly5ZYD9+ejmsJTbCumRU0jFsHdl6ZaKKqLQ6BbFy5ogvVpFo O6UhVxfuWGJuri9PUt2WVt9hJF9CPdK1d8HmPcxIPT1I08jLJ5iaQVXgZ679VXM9 UTRreLZLhje93eZWt9uEhI9x4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDR6QAXW ygtbK25Yzy78g0Gt4Od+MB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5PGUChKg0DTE1SyEoVYG9ex+1OQX1y3d2Nynas1/xaHynaFI0diXI 0qD+L3PhMhEf0sr9tFWfD4lxLm/xUxlcF1spz3Uyh+5HDlYxNk1wGJt2GADQvUT6 DPDI6IqFftxQaa5j401i80pPfEB/xB4Ae2OkBy4YYL0o9FgXazWKcA4UWsznGSm2 E1P/mVG2NtXELwo12ehiFLkBDUrDHDmovd5ESGzcy37fB2g3EI/BhG5FaHC0iloS JzMZOLWTs7DkPdjC5csyapB/pr3LYsMfjCx6iAmAobKx5Jty6pIZFJNOhMc636GJ ds+nJ5cBBAmw37+dQ/oIA2dHIcDTyWfj -----END CERTIFICATE-----Generated at Mon Jan 26 05:13:29 2026 by rpki-client