This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: 2c5ooFQcfPmijXH3zVxzZMbo1gTic3xWzWiDzeJAQfE= Subject key identifier: F8:E9:53:46:2B:BE:3C:42:F7:2F:20:F2:3E:3C:6F:E7:76:70:93:87 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 021A Signing time: Sun 25 Jan 2026 01:30:24 +0000 Manifest this update: Sun 25 Jan 2026 01:30:24 +0000 Manifest next update: Sun 01 Feb 2026 01:30:24 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: 2dAe4/kWSQL9CzGdgc5ELku5G4Rch2Ajfjjy4SNrKCk=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Jan 25 01:30:24 2026 GMT Not After : Feb 1 01:30:24 2026 GMT Subject: CN=69757230-0249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:22:78:da:02:2d:8d:3a:45:60:20:64:57: 87:98:1b:71:ab:9e:92:98:d4:35:fe:4f:54:a2:42: 71:3c:40:e5:51:9c:2b:e4:18:d2:41:1c:8a:27:08: 24:f8:fc:f7:61:f9:ff:2b:88:50:2f:d5:cf:43:d9: 52:38:1d:6b:cd:cd:dd:4e:46:6c:3c:6d:c0:f5:92: 0d:dc:e7:67:cf:48:eb:56:f3:6a:6b:73:d0:04:a6: 03:7f:e6:0e:c3:04:d7:4e:df:96:5b:65:5d:4b:a3: 14:a1:d4:81:77:85:7b:8a:e4:f0:89:0d:2f:53:4a: ec:75:3c:e1:51:00:6f:e4:fd:da:ed:e9:07:86:7f: f2:fc:de:df:6f:9a:6d:b9:fd:25:67:5c:08:d3:ac: 96:eb:a1:8f:50:89:88:b4:b7:3c:52:01:13:65:00: 4e:d6:34:3a:ba:0d:2a:20:b7:77:ec:9a:6e:03:43: 73:83:cf:42:a8:90:67:5a:5e:d6:0e:8e:ff:ad:63: a8:cc:2b:36:8e:b4:b8:d6:04:26:17:85:81:e8:cb: dc:f7:54:7f:7f:e0:57:ff:75:7a:db:86:f9:18:b8: c0:9e:cf:d3:85:83:54:d5:74:25:5d:08:f4:e5:d1: f7:15:90:62:b0:d2:f8:b9:ed:4a:05:8d:eb:f3:e0: 77:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E9:53:46:2B:BE:3C:42:F7:2F:20:F2:3E:3C:6F:E7:76:70:93:87 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:2d:1f:55:72:ac:40:df:e7:68:17:c7:09:02:91:7c:19:cf: 97:19:32:24:cb:b6:30:d9:5f:f4:35:72:86:5e:c9:af:f7:0e: 55:d0:76:24:af:71:d6:1a:2d:99:9e:41:60:96:d0:46:54:09: f9:c7:3b:fe:cf:bc:2f:f0:35:6a:86:68:94:3c:fa:4c:90:c1: 32:58:f1:46:ca:7e:e8:d0:55:ab:44:d9:20:5a:aa:94:2d:df: d8:2e:63:6b:fb:94:da:c2:31:0f:21:56:48:01:79:fa:60:48: 7f:cf:b7:1d:7c:0a:2d:31:e9:58:6b:95:34:7f:37:e0:3e:ee: d5:a5:84:6a:6d:9d:0b:eb:91:65:88:a5:47:97:c6:07:07:24: cb:e4:ea:2e:31:2e:fc:3d:89:69:61:b2:85:77:88:b8:39:1f: 75:c5:d3:e9:bb:89:1c:eb:32:60:77:6a:76:f4:90:51:17:ac: 1a:56:1e:64:22:ef:c0:46:e0:e0:40:c6:8c:7c:f9:28:7b:29: 01:eb:0e:2e:aa:9a:5f:c1:36:66:a3:3b:cd:85:40:28:83:15: 35:fa:26:c3:8b:cc:fc:6f:e4:0f:51:76:1c:8d:71:68:e8:eb: 01:be:d7:8d:12:d4:a5:5e:e9:45:c8:29:28:cb:ab:1e:0c:91: ee:4f:42:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjYwMTI1MDEzMDI0WhcNMjYwMjAxMDEzMDI0WjAYMRYwFAYD VQQDDA02OTc1NzIzMC0wMjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPAieNoCLY06RWAgZFeHmBtxq56SmNQ1/k9UokJxPEDlUZwr5BjSQRyKJwgk +Pz3Yfn/K4hQL9XPQ9lSOB1rzc3dTkZsPG3A9ZIN3Odnz0jrVvNqa3PQBKYDf+YO wwTXTt+WW2VdS6MUodSBd4V7iuTwiQ0vU0rsdTzhUQBv5P3a7ekHhn/y/N7fb5pt uf0lZ1wI06yW66GPUImItLc8UgETZQBO1jQ6ug0qILd37JpuA0Nzg89CqJBnWl7W Do7/rWOozCs2jrS41gQmF4WB6Mvc91R/f+BX/3V624b5GLjAns/ThYNU1XQlXQj0 5dH3FZBisNL4ue1KBY3r8+B3GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjpU0Yr vjxC9y8g8j48b+d2cJOHMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCLR9VcqxA3+doF8cJApF8Gc+XGTIky7Yw2V/0NXKGXsmv9w5V0HYk r3HWGi2ZnkFgltBGVAn5xzv+z7wv8DVqhmiUPPpMkMEyWPFGyn7o0FWrRNkgWqqU Ld/YLmNr+5TawjEPIVZIAXn6YEh/z7cdfAotMelYa5U0fzfgPu7VpYRqbZ0L65Fl iKVHl8YHByTL5OouMS78PYlpYbKFd4i4OR91xdPpu4kc6zJgd2p29JBRF6waVh5k Iu/ARuDgQMaMfPkoeykB6w4uqppfwTZmozvNhUAogxU1+ibDi8z8b+QPUXYcjXFo 6OsBvteNEtSlXulFyCkoy6seDJHuT0L1 -----END CERTIFICATE-----Generated at Mon Jan 26 04:17:21 2026 by rpki-client