This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft File: ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft (raw, json) Hash identifier: QHBmx3VI5MJW/BrdUsDq4yO/qbItL+rvw3z6HRMaNbU= Subject key identifier: 26:62:A0:26:57:9A:55:7C:F8:67:EE:54:AB:79:AC:12:9B:15:CB:98 Authority key identifier: 8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 Certificate issuer: /CN=A9167671/serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft Manifest number: 2A Signing time: Sun 25 Jan 2026 06:36:28 +0000 Manifest this update: Sun 25 Jan 2026 06:36:28 +0000 Manifest next update: Sun 01 Feb 2026 06:36:28 +0000 Files and hashes: 1: ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl (hash: 1VYimqs5onuodfUQRpXd3SJ9Gwq2+ifyuO9lY5ky1ys=) 2: 42AD4128C0FD11F0883D987DC4F9AE02.roa (hash: B3E19cErq0rxkUxEs2ukfuNM5Pd8kiV4OJ4LzCkwHF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167671, serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Validity Not Before: Jan 25 06:36:28 2026 GMT Not After : Feb 1 06:36:28 2026 GMT Subject: CN=6975b9ec-8221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:ab:79:95:09:0f:6c:a3:c0:bd:5e:c0:29: ca:79:88:ca:d1:9b:cf:43:26:50:bc:b8:1c:e6:c9: 57:90:79:e2:54:a8:6e:2a:85:f8:61:5e:38:fb:40: 86:f5:c7:0a:0c:5b:17:87:58:4b:68:20:1f:ac:94: 77:51:9e:f4:ac:e6:59:68:1e:26:ad:3b:77:9e:21: da:44:59:1a:33:02:8c:18:7a:67:01:0f:4c:ab:44: 3f:8f:18:7f:b6:62:d7:9d:18:58:84:3e:76:1b:15: 77:e4:8d:0f:af:7f:0f:99:9e:1f:d0:40:a3:36:be: 73:ea:a6:e0:39:45:68:9a:fa:b3:45:38:ca:f3:ee: 52:d2:54:c2:4a:81:8f:2b:7e:4e:06:c0:ac:a8:d6: 9e:f4:d1:e7:32:c7:a3:6f:05:b7:ed:9b:51:05:29: 74:00:3d:d2:b7:00:07:29:20:e8:44:63:34:ee:1b: 5a:ab:39:18:1c:fa:01:10:e4:8a:b2:ed:72:5f:ec: 6d:5a:12:04:b3:8c:b7:73:9a:08:df:61:1a:91:38: 6b:6a:2e:69:83:b4:87:68:06:47:da:69:8c:dc:1c: 06:ec:f9:43:27:fe:1c:12:e7:ac:e5:2f:7d:67:45: fe:8e:f8:d1:ef:18:d3:fe:36:b2:d5:7c:cc:64:60: 6a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:62:A0:26:57:9A:55:7C:F8:67:EE:54:AB:79:AC:12:9B:15:CB:98 X509v3 Authority Key Identifier: keyid:8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ee:7c:51:5a:f9:da:0a:45:77:35:68:30:4f:e3:52:c2:67: 08:ca:3a:7d:75:05:a2:17:8f:41:a6:3c:6c:99:6f:10:ba:13: 52:61:9a:73:55:66:e1:72:db:50:f4:84:de:15:06:31:47:20: 35:ef:ad:9b:78:5e:76:8c:c4:c4:ff:dd:ca:18:6b:bf:7f:55: 07:b1:8c:5c:f7:5b:06:c2:b2:30:be:d9:a8:83:85:d1:33:13: c6:e7:d9:f3:ee:39:0e:23:f3:f3:f2:6c:f0:e8:f3:97:52:68: 76:f4:95:1f:5b:5e:88:cc:f9:ec:ef:c2:76:c1:99:72:17:6f: 7b:9c:b6:25:ae:8c:a1:e0:9a:72:e7:38:7b:a0:bd:13:66:55: b9:45:78:92:58:39:00:c3:43:3b:f4:7c:d8:6c:76:32:01:f0: a5:43:91:82:ed:27:9f:48:ff:f5:c3:45:35:a8:ef:03:ab:da: cc:f7:a5:40:b4:b6:99:f7:ef:de:ba:0e:dc:70:79:94:1e:ef: 1a:77:9c:8d:be:04:b5:30:2a:f1:4e:69:48:a8:10:8f:d2:e7: 65:21:19:e5:b8:36:93:f9:1e:e7:62:0e:a6:1a:12:fd:7c:35: c1:a6:0a:49:34:a0:4e:01:1a:e3:9c:25:30:39:9e:0e:97:1a: 59:f5:83:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzY3MTExMC8GA1UEBRMoOEE1NzcxN0U2MkUxMTVCQUQwQUYxNjc5NDIyMzVCMDFC OUIxRjM1NDAeFw0yNjAxMjUwNjM2MjhaFw0yNjAyMDEwNjM2MjhaMBgxFjAUBgNV BAMMDTY5NzViOWVjLTgyMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC99at5lQkPbKPAvV7AKcp5iMrRm89DJlC8uBzmyVeQeeJUqG4qhfhhXjj7QIb1 xwoMWxeHWEtoIB+slHdRnvSs5lloHiatO3eeIdpEWRozAowYemcBD0yrRD+PGH+2 YtedGFiEPnYbFXfkjQ+vfw+Znh/QQKM2vnPqpuA5RWia+rNFOMrz7lLSVMJKgY8r fk4GwKyo1p700ecyx6NvBbftm1EFKXQAPdK3AAcpIOhEYzTuG1qrORgc+gEQ5Iqy 7XJf7G1aEgSzjLdzmgjfYRqROGtqLmmDtIdoBkfaaYzcHAbs+UMn/hwS56zlL31n Rf6O+NHvGNP+NrLVfMxkYGo3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJmKgJlea VXz4Z+5Uq3msEpsVy5gwHwYDVR0jBBgwFoAUildxfmLhFbrQrxZ5QiNbAbmx81Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3NjcxLzQ2MEIwODA0QkUx RjExRjA5NTQzNUQ2RUM0RjlBRTAyL2lsZHhmbUxoRmJyUXJ4WjVRaU5iQWJteDgx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaWxkeGZtTGhGYnJRcnhaNVFpTmJBYm14ODFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 NjcxLzQ2MEIwODA0QkUxRjExRjA5NTQzNUQ2RUM0RjlBRTAyL2lsZHhmbUxoRmJy UXJ4WjVRaU5iQWJteDgxUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACfufFFa+doKRXc1aDBP41LCZwjKOn11BaIXj0GmPGyZbxC6E1JhmnNV ZuFy21D0hN4VBjFHIDXvrZt4XnaMxMT/3coYa79/VQexjFz3WwbCsjC+2aiDhdEz E8bn2fPuOQ4j8/PybPDo85dSaHb0lR9bXojM+ezvwnbBmXIXb3uctiWujKHgmnLn OHugvRNmVblFeJJYOQDDQzv0fNhsdjIB8KVDkYLtJ59I//XDRTWo7wOr2sz3pUC0 tpn37966DtxweZQe7xp3nI2+BLUwKvFOaUioEI/S52UhGeW4NpP5HudiDqYaEv18 NcGmCkk0oE4BGuOcJTA5ng6XGln1g74= -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:00 2026 by rpki-client