This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: iAj8fvLn7EjuRcy5M5VEtFYT+QeKzGois/Nwi9axVgk= Subject key identifier: 5F:4C:ED:FF:A9:D1:70:53:4B:36:58:CB:23:FB:E7:12:78:86:90:CF Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CA2 Signing time: Sat 24 Jan 2026 18:04:47 +0000 Manifest this update: Sat 24 Jan 2026 18:04:47 +0000 Manifest next update: Sat 31 Jan 2026 18:04:47 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: s8m7yhKQ8jGTsmXQidap2X0DHAkhj1TwIYTnxznvv80=) 2: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 3: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) 4: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3258 (0xcba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jan 24 18:04:47 2026 GMT Not After : Jan 31 18:04:47 2026 GMT Subject: CN=697509bf-64b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7e:f2:51:9c:da:2f:ad:39:3c:bb:f5:6d:08: 23:c9:06:ea:92:38:65:a6:91:24:3e:fe:ec:cd:2d: 98:b8:64:8e:cb:88:97:92:40:2e:a0:65:07:09:d4: 39:d8:eb:d3:fa:c5:ce:b4:b7:04:b3:32:81:27:d4: 93:0d:e6:0b:18:f2:2c:2b:b4:58:e2:2e:7b:b6:b1: 84:e5:64:2b:9e:9a:76:1d:42:8f:3c:14:6b:8b:b5: aa:db:bc:ff:4d:f7:39:13:8c:c0:d9:2c:b5:6f:87: 69:13:d9:c0:3d:08:f5:54:15:8b:d0:89:bf:5a:2d: 9f:7b:80:73:eb:cf:f4:cf:72:36:94:bc:74:13:a4: 67:eb:c5:a9:82:9b:5b:dd:79:b6:b7:49:6d:76:2a: e3:9e:68:55:cd:6b:99:17:d0:09:62:4e:03:4c:ce: d1:1b:03:5b:60:33:35:c0:04:75:ac:16:e3:a2:66: b1:f8:ae:aa:12:42:bf:e2:83:54:4d:46:8f:0a:8a: 6a:74:7b:32:fb:e0:ce:5a:c3:b8:98:b7:22:28:57: eb:ea:e1:9f:1b:83:3a:e2:fc:e6:0e:f0:ee:c1:ce: 31:d9:53:46:ce:e9:ce:68:66:8b:35:2d:43:80:af: 8e:63:e9:a7:7c:34:91:ed:da:8f:c6:92:2b:1a:b1: f2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4C:ED:FF:A9:D1:70:53:4B:36:58:CB:23:FB:E7:12:78:86:90:CF X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:dd:3e:06:fa:0b:97:bc:67:11:79:87:ad:7b:8d:7f:0b:54: 29:35:3a:70:cd:95:ef:7d:fa:90:e1:31:eb:6b:60:04:d0:19: 28:53:d5:a1:8f:af:3d:0c:3f:5f:90:03:df:0a:cf:0e:bd:7c: de:17:05:78:f2:c1:87:2b:61:1a:4a:1d:00:ce:5b:43:1f:a5: db:92:4d:49:b0:97:75:d4:b7:54:ee:54:32:79:11:95:32:ae: f7:d1:09:fb:bf:e7:1e:9e:49:55:c2:88:44:11:04:bb:ac:4d: 54:eb:f9:1c:46:90:2d:40:35:80:29:cf:60:ba:b2:b3:e0:ec: 4e:e8:b7:52:05:50:59:c7:51:ef:5e:4f:82:ff:a1:a3:da:7e: f7:b1:98:7e:79:45:96:88:4e:67:a4:87:25:ac:88:70:4f:a7: 14:07:91:c8:ed:b0:47:97:0e:36:ed:b2:8d:68:62:f6:f6:2b: a8:b4:e1:c9:cc:fd:f8:2e:16:f4:66:f3:d6:d5:a9:b1:0f:2f: 62:c5:60:41:a7:5e:61:9c:89:32:bf:a5:66:91:f5:02:aa:22: 3c:4c:37:33:82:14:d4:3a:5a:49:bd:5e:4c:3f:83:81:b0:ed: f7:06:68:4d:e1:22:36:ca:35:03:14:36:eb:26:a6:fb:5e:74: 14:7c:ad:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwMTI0MTgwNDQ3WhcNMjYwMTMxMTgwNDQ3WjAYMRYwFAYD VQQDDA02OTc1MDliZi02NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH7yUZzaL605PLv1bQgjyQbqkjhlppEkPv7szS2YuGSOy4iXkkAuoGUHCdQ5 2OvT+sXOtLcEszKBJ9STDeYLGPIsK7RY4i57trGE5WQrnpp2HUKPPBRri7Wq27z/ Tfc5E4zA2Sy1b4dpE9nAPQj1VBWL0Im/Wi2fe4Bz68/0z3I2lLx0E6Rn68Wpgptb 3Xm2t0ltdirjnmhVzWuZF9AJYk4DTM7RGwNbYDM1wAR1rBbjomax+K6qEkK/4oNU TUaPCopqdHsy++DOWsO4mLciKFfr6uGfG4M64vzmDvDuwc4x2VNGzunOaGaLNS1D gK+OY+mnfDSR7dqPxpIrGrHyxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9M7f+p 0XBTSzZYyyP75xJ4hpDPMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR3T4G+guXvGcReYete41/C1QpNTpwzZXvffqQ4THra2AE0BkoU9Wh j689DD9fkAPfCs8OvXzeFwV48sGHK2EaSh0AzltDH6Xbkk1JsJd11LdU7lQyeRGV Mq730Qn7v+cenklVwohEEQS7rE1U6/kcRpAtQDWAKc9gurKz4OxO6LdSBVBZx1Hv Xk+C/6Gj2n73sZh+eUWWiE5npIclrIhwT6cUB5HI7bBHlw427bKNaGL29iuotOHJ zP34Lhb0ZvPW1amxDy9ixWBBp15hnIkyv6VmkfUCqiI8TDczghTUOlpJvV5MP4OB sO33BmhN4SI2yjUDFDbrJqb7XnQUfK03 -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:29 2026 by rpki-client