This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: JcZKA9PteSJJXel8d1tplVTk7k+QwaZQ3GIFfHII4wI= Subject key identifier: DA:24:41:DD:58:9B:A7:DB:03:F0:8D:E4:44:E2:D6:64:18:D0:3E:72 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0C14 Signing time: Sat 24 Jan 2026 18:22:35 +0000 Manifest this update: Sat 24 Jan 2026 18:22:35 +0000 Manifest next update: Sat 31 Jan 2026 18:22:35 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: 0M2BPhJ15quAx6BTP3QobfiLT+Kba4vTnzdetodQKp0=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Jan 24 18:22:35 2026 GMT Not After : Jan 31 18:22:35 2026 GMT Subject: CN=69750deb-56b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:31:4d:ad:a2:26:2d:4f:35:88:8d:02:fa:37: a6:45:f1:cb:54:67:00:38:95:17:53:ea:02:d6:9e: 12:4e:63:51:82:0f:50:96:ba:88:37:1a:7d:d2:25: 78:b6:3d:7a:ae:6a:6a:44:71:84:5c:b0:72:b0:ee: e5:f8:c0:7d:da:13:92:ce:94:68:8f:de:87:9c:bb: 57:2d:36:a1:c8:a8:e9:9a:e8:1e:1c:56:ad:a3:87: 02:65:c4:29:c3:71:a1:1e:80:5c:97:f7:40:e5:cd: a7:e9:86:60:3a:9f:cc:15:3c:24:14:5c:30:d5:92: 4f:ad:16:70:2d:e2:26:78:28:8d:cf:bd:c1:01:90: e5:4a:31:68:c3:eb:da:15:90:5b:14:8f:b4:2e:e4: 7d:a0:dd:bc:78:dc:6d:97:bf:95:67:dd:cf:9c:69: 95:54:81:a9:bb:93:a4:71:f8:04:79:67:42:f8:2a: 56:b5:82:cf:f6:72:f7:42:2c:54:9a:ee:01:33:2e: c3:0f:4c:7e:17:3b:1b:b1:c5:d4:b3:c1:b0:da:4f: fc:8d:12:b2:1e:02:4a:fd:e5:ff:f0:08:91:a1:a7: da:6c:79:7c:be:5d:23:ef:c1:cc:9a:e6:ab:bb:b0: 25:11:57:e0:13:4e:a3:fa:a8:91:87:4c:9a:8c:5f: e6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:24:41:DD:58:9B:A7:DB:03:F0:8D:E4:44:E2:D6:64:18:D0:3E:72 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d7:e1:ef:5b:31:20:38:21:0e:e0:af:d9:09:5a:27:4e:a7: 54:0e:4a:54:e0:91:1b:ed:0c:ba:30:cb:01:cf:c5:4a:7b:59: 96:3c:39:29:8c:85:0d:b1:c5:5f:8b:59:fa:17:0e:e9:25:99: 1c:7c:43:31:c9:f7:75:78:a0:e6:7d:16:d1:31:42:77:00:38: 35:ba:9a:51:13:29:ff:88:21:b7:b6:50:02:0a:bc:3d:42:2d: 96:4e:5f:2a:dd:fe:31:19:b9:7e:77:12:6a:0f:f1:46:25:4a: c6:1a:39:59:96:c7:e1:b6:c7:e4:e7:9a:43:d9:c7:48:b4:7b: d5:f8:97:fe:02:26:8d:fb:19:d4:87:c6:81:3e:57:32:a5:95: 69:e2:eb:64:ba:c1:72:3e:a6:d5:85:27:40:7e:64:4c:35:6d: 63:bb:21:5a:3a:2f:f2:cf:e8:95:03:4e:51:f6:5d:7e:a2:81: c5:86:0f:6f:83:32:24:b0:6e:24:7d:0d:78:a5:23:ae:35:1e: 5b:aa:c9:17:4e:bd:d2:dc:c0:61:48:85:bd:92:20:1f:6a:26: 52:5d:d3:42:8d:a4:41:0b:6d:4f:ea:67:48:80:47:9e:da:0f: 91:2e:57:0e:5c:e1:d1:bb:4a:0e:1a:4b:60:ac:2b:f7:55:bd: 03:07:4a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjYwMTI0MTgyMjM1WhcNMjYwMTMxMTgyMjM1WjAYMRYwFAYD VQQDDA02OTc1MGRlYi01NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzFNraImLU81iI0C+jemRfHLVGcAOJUXU+oC1p4STmNRgg9QlrqINxp90iV4 tj16rmpqRHGEXLBysO7l+MB92hOSzpRoj96HnLtXLTahyKjpmugeHFato4cCZcQp w3GhHoBcl/dA5c2n6YZgOp/MFTwkFFww1ZJPrRZwLeImeCiNz73BAZDlSjFow+va FZBbFI+0LuR9oN28eNxtl7+VZ93PnGmVVIGpu5OkcfgEeWdC+CpWtYLP9nL3QixU mu4BMy7DD0x+FzsbscXUs8Gw2k/8jRKyHgJK/eX/8AiRoafabHl8vl0j78HMmuar u7AlEVfgE06j+qiRh0yajF/mwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNokQd1Y m6fbA/CN5ETi1mQY0D5yMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG1+HvWzEgOCEO4K/ZCVonTqdUDkpU4JEb7Qy6MMsBz8VKe1mWPDkp jIUNscVfi1n6Fw7pJZkcfEMxyfd1eKDmfRbRMUJ3ADg1uppREyn/iCG3tlACCrw9 Qi2WTl8q3f4xGbl+dxJqD/FGJUrGGjlZlsfhtsfk55pD2cdItHvV+Jf+AiaN+xnU h8aBPlcypZVp4utkusFyPqbVhSdAfmRMNW1juyFaOi/yz+iVA05R9l1+ooHFhg9v gzIksG4kfQ14pSOuNR5bqskXTr3S3MBhSIW9kiAfaiZSXdNCjaRBC21P6mdIgEee 2g+RLlcOXOHRu0oOGktgrCv3Vb0DB0o9 -----END CERTIFICATE-----Generated at Sun Jan 25 09:28:45 2026 by rpki-client