This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: hLPKxk1G5uKJ4AV8qamTdvACH6THK5TjqYkHfMueuVk= Subject key identifier: B9:8C:89:4B:2E:15:C6:2F:0F:93:48:E2:37:DE:BD:CA:AB:ED:FF:32 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: A2 Signing time: Sun 25 Jan 2026 05:29:43 +0000 Manifest this update: Sun 25 Jan 2026 05:29:43 +0000 Manifest next update: Sun 01 Feb 2026 05:29:43 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: ONMWXkI2bu2qKtgAf9bwyi3ElSnbFMUHztc02KAzzRk=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: OEoPCQ7v8dhaZUZAQWtAZvLcy6AT9dOCnH1/iJjA3qs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Jan 25 05:29:43 2026 GMT Not After : Feb 1 05:29:43 2026 GMT Subject: CN=6975aa47-36d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ea:dc:e4:42:49:1a:b9:be:29:05:3d:76:a9: 89:ef:05:e8:d5:29:aa:56:67:a2:a2:0b:82:70:6b: 68:7b:fc:4f:1c:d1:4a:cc:50:8e:76:03:63:2f:82: 79:ab:bc:0e:77:40:a9:33:61:77:0b:b8:9b:ef:d4: d1:74:f3:ca:a3:a3:48:c7:6b:70:e9:0c:63:60:a5: 7d:35:1c:e7:bf:25:5d:ae:e3:69:c3:d6:83:c6:21: ea:6f:d4:3b:4b:e9:76:e0:8b:d8:88:ec:8a:10:cd: a2:51:3a:29:c5:96:c7:85:67:4b:5f:ad:ef:e4:c6: 2d:19:fb:3d:86:af:cd:82:4a:38:c9:db:12:59:c6: 04:2b:4d:c5:5c:df:89:87:18:ee:0f:17:e3:ea:71: 27:76:03:65:84:d0:23:2c:e7:1b:6b:e8:e5:01:37: 39:80:24:52:95:da:12:93:af:1f:4c:3a:f8:b4:6a: 5b:6b:80:c4:52:ac:6a:19:78:c7:2d:aa:3d:98:12: 35:8c:57:6c:54:5f:82:fd:7e:71:18:75:0f:86:13: 88:ad:72:8e:b7:45:1a:29:f4:85:5a:d3:c2:13:44: fc:23:e4:1c:ac:5f:cd:d8:8a:e3:24:a1:66:e6:66: 9e:da:4b:60:c7:a1:ee:5d:59:97:f3:95:6b:b2:0a: c9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8C:89:4B:2E:15:C6:2F:0F:93:48:E2:37:DE:BD:CA:AB:ED:FF:32 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:98:60:21:bd:a5:ad:0e:4f:a7:e1:eb:19:bc:12:0b:27:a3: 56:33:16:b2:44:d5:30:0a:34:57:d5:8f:4d:c5:d3:14:ee:b0: c4:be:62:ab:d8:6a:5c:4d:6a:1a:76:e7:b0:d1:55:f5:9f:95: 96:6c:6b:72:5f:61:fe:f7:62:75:36:7d:0d:9f:11:49:7e:54: 80:8f:ff:06:aa:2a:fc:25:4a:8b:c9:80:a9:5b:4b:4b:7d:3a: 41:a8:40:12:77:02:af:61:6f:39:4a:06:46:f8:51:70:ec:b1: 02:4b:ed:b3:08:b7:be:0a:a1:9e:c8:5b:f1:2d:9a:1e:5b:8b: 9f:d6:2e:32:a5:86:bc:ec:29:7d:d3:30:08:c2:ae:10:35:fb: ea:51:e6:30:13:1f:e9:75:10:ad:6a:44:0f:f1:86:b5:5e:5f: dc:29:e5:cc:6b:3f:a5:f9:c5:4a:ca:f4:bf:35:6e:06:c9:aa: 4d:9e:68:64:2a:07:d5:1c:17:1e:24:ee:2e:d0:34:b1:91:f7: 33:82:c3:49:52:f5:e2:83:86:6d:59:e5:a8:b1:70:33:53:d7: f7:1e:38:ed:46:43:98:18:53:19:bf:2e:8f:e3:84:08:a7:51: 34:8d:a0:d0:67:b9:0b:c9:1b:76:21:c0:9f:8c:ac:04:ff:f9: a0:b0:88:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKEIwMzQxQzM0M0ZFMTUyNUY3NkM5Mjk5NjEwQ0EwRTc4 RTkzRTg3QzMwHhcNMjYwMTI1MDUyOTQzWhcNMjYwMjAxMDUyOTQzWjAYMRYwFAYD VQQDDA02OTc1YWE0Ny0zNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAserc5EJJGrm+KQU9dqmJ7wXo1SmqVmeioguCcGtoe/xPHNFKzFCOdgNjL4J5 q7wOd0CpM2F3C7ib79TRdPPKo6NIx2tw6QxjYKV9NRznvyVdruNpw9aDxiHqb9Q7 S+l24IvYiOyKEM2iUTopxZbHhWdLX63v5MYtGfs9hq/Ngko4ydsSWcYEK03FXN+J hxjuDxfj6nEndgNlhNAjLOcba+jlATc5gCRSldoSk68fTDr4tGpba4DEUqxqGXjH Lao9mBI1jFdsVF+C/X5xGHUPhhOIrXKOt0UaKfSFWtPCE0T8I+QcrF/N2IrjJKFm 5mae2ktgx6HuXVmX85VrsgrJEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmMiUsu FcYvD5NI4jfevcqr7f8yMB8GA1UdIwQYMBaAFLA0HDQ/4VJfdskplhDKDnjpPofD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80MkZDM0Q4QTA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVsOTJ5U21XRU1vT2VPay1o OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZCQS80MkZDM0Q4QTA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVs OTJ5U21XRU1vT2VPay1oOE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4mGAhvaWtDk+n4esZvBILJ6NWMxayRNUwCjRX1Y9NxdMU7rDEvmKr 2GpcTWoaduew0VX1n5WWbGtyX2H+92J1Nn0NnxFJflSAj/8Gqir8JUqLyYCpW0tL fTpBqEASdwKvYW85SgZG+FFw7LECS+2zCLe+CqGeyFvxLZoeW4uf1i4ypYa87Cl9 0zAIwq4QNfvqUeYwEx/pdRCtakQP8Ya1Xl/cKeXMaz+l+cVKyvS/NW4GyapNnmhk KgfVHBceJO4u0DSxkfczgsNJUvXig4ZtWeWosXAzU9f3HjjtRkOYGFMZvy6P44QI p1E0jaDQZ7kLyRt2IcCfjKwE//mgsIjv -----END CERTIFICATE-----Generated at Sun Jan 25 12:27:26 2026 by rpki-client