This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: eztS5MMh5Jdll4dltB2Foip1LLyrUJ93SY/pfoLgItg= Subject key identifier: 41:BE:FD:D7:3A:21:F1:55:C1:D4:0F:98:F1:49:05:1F:37:65:F4:91 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 0133 Signing time: Sun 25 Jan 2026 03:45:05 +0000 Manifest this update: Sun 25 Jan 2026 03:45:05 +0000 Manifest next update: Sun 01 Feb 2026 03:45:05 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: htczKkWhND8m1fdGJPv4zg+AJir4WVY5WHLeJJLteqE=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Jan 25 03:45:05 2026 GMT Not After : Feb 1 03:45:05 2026 GMT Subject: CN=697591c1-c52b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2e:e7:a1:5e:79:4b:e6:f3:43:06:a5:ce:c9: b8:ac:98:00:fb:85:46:59:41:8c:20:4a:6b:e9:20: c4:f1:92:b4:ee:c9:f3:39:0f:ad:58:3f:d0:fc:27: 0d:75:d7:97:9c:8d:d7:84:cb:09:a7:4e:b5:82:da: 0a:3c:74:c8:41:db:34:0a:84:16:93:07:19:89:b9: 8e:7d:f5:a1:77:cb:60:ce:ac:92:37:09:11:42:aa: 65:73:4b:e6:5a:b8:c3:96:ae:e2:00:07:7e:bd:81: e2:50:4e:3b:d7:f2:a8:0e:b3:18:f6:cf:94:29:c4: e0:14:8b:ae:63:fc:15:8f:b6:b5:44:1f:3f:d0:73: 96:6b:e9:97:c9:62:88:8e:c0:e1:42:53:4e:b0:53: ca:84:2f:f7:4a:91:a3:61:13:9a:4c:22:9b:90:5f: ed:8b:c0:df:01:ea:e6:79:0d:f8:b7:a0:00:c6:b6: e0:8a:a9:54:43:82:e0:9a:88:d2:ce:8c:13:66:d8: 37:22:35:f2:7e:a2:ac:d4:92:db:1c:9d:1e:b2:9f: be:44:db:ff:aa:40:9b:fd:1d:70:90:ab:2b:16:48: a4:ab:1e:79:66:ed:49:2a:33:a9:e8:48:48:ef:2b: 32:d8:b4:65:c0:31:15:03:34:ff:00:7d:17:7e:a3: e2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:BE:FD:D7:3A:21:F1:55:C1:D4:0F:98:F1:49:05:1F:37:65:F4:91 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:6f:5a:96:13:95:3a:23:cb:18:4c:b6:7a:90:75:fb:51:68: 69:33:b7:a8:57:d8:03:93:d6:82:90:c1:de:6c:2f:0f:8e:97: ab:a8:c2:b9:46:2a:ed:4b:f6:9b:ee:50:31:93:2a:2e:ac:6e: 10:64:d6:0e:2a:76:dd:ec:05:35:e0:27:b6:ca:50:2a:d4:9d: 1f:db:18:ea:5f:b7:cd:10:8b:fb:81:39:b4:36:52:24:15:6f: b4:00:7d:5d:3e:08:a9:e0:08:14:58:97:7e:35:67:ab:f3:66: 95:54:76:a2:0f:4f:0e:e5:92:fa:91:77:ca:39:66:37:8e:8b: cb:5f:51:72:aa:79:bb:97:4b:ae:d2:ed:12:1d:c7:7e:e5:3e: f3:cf:cb:bf:4e:9c:9d:80:60:e2:f6:54:a3:ed:47:29:97:88: 40:8a:58:44:12:9c:d4:d0:95:2d:99:02:78:7e:de:4f:5f:92: f7:34:72:a0:d1:db:47:fc:1a:5a:4a:43:6e:5c:97:0e:2c:22: 11:d2:d6:2a:f1:43:f6:2b:92:7f:96:6f:6b:0f:6c:85:36:f1: 6f:a9:c1:9c:33:17:93:6e:f3:f7:78:48:06:9e:cd:dc:ba:ef: 72:1d:ba:18:5a:62:45:6f:36:21:21:b8:77:0b:ee:ef:11:92: 04:37:50:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjYwMTI1MDM0NTA1WhcNMjYwMjAxMDM0NTA1WjAYMRYwFAYD VQQDDA02OTc1OTFjMS1jNTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyS7noV55S+bzQwalzsm4rJgA+4VGWUGMIEpr6SDE8ZK07snzOQ+tWD/Q/CcN ddeXnI3XhMsJp061gtoKPHTIQds0CoQWkwcZibmOffWhd8tgzqySNwkRQqplc0vm WrjDlq7iAAd+vYHiUE471/KoDrMY9s+UKcTgFIuuY/wVj7a1RB8/0HOWa+mXyWKI jsDhQlNOsFPKhC/3SpGjYROaTCKbkF/ti8DfAermeQ34t6AAxrbgiqlUQ4LgmojS zowTZtg3IjXyfqKs1JLbHJ0esp++RNv/qkCb/R1wkKsrFkikqx55Zu1JKjOp6EhI 7ysy2LRlwDEVAzT/AH0XfqPiuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEG+/dc6 IfFVwdQPmPFJBR83ZfSRMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEb1qWE5U6I8sYTLZ6kHX7UWhpM7eoV9gDk9aCkMHebC8PjperqMK5 RirtS/ab7lAxkyourG4QZNYOKnbd7AU14Ce2ylAq1J0f2xjqX7fNEIv7gTm0NlIk FW+0AH1dPgip4AgUWJd+NWer82aVVHaiD08O5ZL6kXfKOWY3jovLX1Fyqnm7l0uu 0u0SHcd+5T7zz8u/TpydgGDi9lSj7Ucpl4hAilhEEpzU0JUtmQJ4ft5PX5L3NHKg 0dtH/BpaSkNuXJcOLCIR0tYq8UP2K5J/lm9rD2yFNvFvqcGcMxeTbvP3eEgGns3c uu9yHboYWmJFbzYhIbh3C+7vEZIEN1B9 -----END CERTIFICATE-----Generated at Sun Jan 25 19:04:06 2026 by rpki-client