This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: +orzJg0xQcFsvo7/CX2pz2z2fecyEHJPJC+wzRuyVgE= Subject key identifier: 95:D1:7F:7F:25:CE:BB:E3:A7:09:6D:75:93:BB:F0:77:ED:3D:7D:E2 Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0C00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0BF9 Signing time: Sat 24 Jan 2026 18:24:25 +0000 Manifest this update: Sat 24 Jan 2026 18:24:24 +0000 Manifest next update: Sat 31 Jan 2026 18:24:24 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: BFWeJ2Qm0tMaFgfF/kl17dxykmQ3I0y9tUuh9dOu6+o=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: 9YLAXbZ28k13vNilzcTMcnMd0WVPI4XdwJeol/Aq30I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3072 (0xc00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Jan 24 18:24:24 2026 GMT Not After : Jan 31 18:24:24 2026 GMT Subject: CN=69750e58-bcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:29:53:72:5f:46:c6:0f:37:51:b4:11:f1:00: 64:ea:71:c4:55:95:db:40:1d:08:6c:c3:02:9b:c4: 97:1f:c0:46:f2:9b:ee:1d:26:5c:4a:02:5d:ad:3f: 85:88:78:90:02:39:aa:e1:d1:69:af:17:0e:5f:89: b7:27:f9:4e:5f:86:66:17:ca:ed:bd:29:04:8e:3a: 96:01:79:dd:5b:7f:15:16:ff:78:11:b6:13:e2:ce: a6:06:3b:f5:d6:ca:41:a9:10:ac:bb:f8:d4:c4:d8: 61:3a:0a:ae:ea:cc:4f:12:17:4c:05:e7:48:59:81: 23:fd:23:89:45:d3:4e:a8:b8:bc:55:2a:59:f0:2a: 93:69:33:a5:14:d6:71:19:81:71:db:ff:37:0c:a0: da:b4:02:dc:01:d9:98:aa:c9:6d:dc:1f:0c:4a:c5: e3:9d:c7:a3:d8:a6:92:a1:a4:53:77:a8:47:2e:55: e1:64:c5:2c:3c:79:6a:63:1d:8f:b5:c6:db:66:5a: e4:d9:be:19:e8:f3:09:09:1b:0b:0e:be:bd:c9:41: 94:88:60:af:17:d2:93:c6:5b:43:44:5d:40:8b:c3: e7:d0:6f:c1:12:e2:41:b0:1e:81:75:a5:b4:83:fc: 66:a9:83:5f:69:0b:9b:0d:1b:ab:b4:d7:fa:b9:1b: 72:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D1:7F:7F:25:CE:BB:E3:A7:09:6D:75:93:BB:F0:77:ED:3D:7D:E2 X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ed:73:c3:fd:37:06:a3:7a:99:c7:5a:dc:12:ff:29:81:e0: 12:3b:00:52:ef:6a:66:8c:54:f8:4a:4a:86:c5:61:13:82:f6: 0e:07:ad:b3:11:38:d8:d8:96:44:f8:f6:e3:04:af:a9:da:62: 3f:66:3c:3c:52:37:08:45:88:59:86:14:93:4d:6e:c6:3d:e6: 3a:9a:9c:24:13:fd:43:dc:02:13:dc:d4:27:3d:99:97:67:56: 98:b6:a7:37:a1:94:76:76:52:7a:13:45:58:52:9e:52:27:c8: 46:6a:09:67:be:cd:df:26:de:32:b4:34:e6:e0:14:3a:08:39: 58:b4:50:cc:f6:b5:b4:eb:52:c7:84:28:cd:9c:bd:c2:3e:16: d8:dd:7b:47:0e:d4:be:76:69:c8:f1:06:0b:b2:e8:e7:f5:21: 96:97:ba:50:42:b3:c4:f0:de:8d:81:76:d6:66:0f:69:af:3f: 98:54:3b:94:6a:46:13:38:48:ba:c5:48:37:0b:f4:4b:88:62: dc:57:d8:e3:0d:19:59:f2:f3:0a:7e:b9:ff:e9:bb:66:fc:24: e0:f4:d9:25:fa:80:15:76:41:5b:88:dc:d9:d5:7d:e7:56:9f: 1e:5f:69:18:42:3d:83:e6:32:03:3e:97:67:6c:e1:38:f5:68: 25:ea:ee:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjYwMTI0MTgyNDI0WhcNMjYwMTMxMTgyNDI0WjAYMRYwFAYD VQQDDA02OTc1MGU1OC1iY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ClTcl9Gxg83UbQR8QBk6nHEVZXbQB0IbMMCm8SXH8BG8pvuHSZcSgJdrT+F iHiQAjmq4dFprxcOX4m3J/lOX4ZmF8rtvSkEjjqWAXndW38VFv94EbYT4s6mBjv1 1spBqRCsu/jUxNhhOgqu6sxPEhdMBedIWYEj/SOJRdNOqLi8VSpZ8CqTaTOlFNZx GYFx2/83DKDatALcAdmYqslt3B8MSsXjncej2KaSoaRTd6hHLlXhZMUsPHlqYx2P tcbbZlrk2b4Z6PMJCRsLDr69yUGUiGCvF9KTxltDRF1Ai8Pn0G/BEuJBsB6BdaW0 g/xmqYNfaQubDRurtNf6uRtyKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXRf38l zrvjpwltdZO78HftPX3iMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH7XPD/TcGo3qZx1rcEv8pgeASOwBS72pmjFT4SkqGxWETgvYOB62z ETjY2JZE+PbjBK+p2mI/Zjw8UjcIRYhZhhSTTW7GPeY6mpwkE/1D3AIT3NQnPZmX Z1aYtqc3oZR2dlJ6E0VYUp5SJ8hGaglnvs3fJt4ytDTm4BQ6CDlYtFDM9rW061LH hCjNnL3CPhbY3XtHDtS+dmnI8QYLsujn9SGWl7pQQrPE8N6NgXbWZg9prz+YVDuU akYTOEi6xUg3C/RLiGLcV9jjDRlZ8vMKfrn/6btm/CTg9Nkl+oAVdkFbiNzZ1X3n Vp8eX2kYQj2D5jIDPpdnbOE49Wgl6u5U -----END CERTIFICATE-----Generated at Sun Jan 25 13:50:52 2026 by rpki-client