This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: Edd9fLsfEcR6TRJA5S46OnW5DWCuPYEtpQhgOgLr2LI= Subject key identifier: 05:17:A2:82:E7:61:45:FF:7C:39:F0:CD:B9:43:C6:72:B4:AF:90:D7 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 03B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 03B0 Signing time: Sat 24 Jan 2026 23:51:28 +0000 Manifest this update: Sat 24 Jan 2026 23:51:28 +0000 Manifest next update: Sat 31 Jan 2026 23:51:28 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: EGCdTacDYsldqV3KVkxRIPhYAG6xVBHN4nnGH819B+k=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Jan 24 23:51:28 2026 GMT Not After : Jan 31 23:51:28 2026 GMT Subject: CN=69755b00-646e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:69:74:b3:c5:b5:6e:01:9c:66:b0:5f:87:76: 20:c1:3d:8d:d9:87:c9:24:03:5f:5c:1b:ee:d4:c2: 2b:4e:88:fc:a9:db:3d:e4:53:9f:19:a9:9a:32:70: cc:48:1b:a5:1b:f2:ee:46:4f:6a:e4:89:22:e4:05: 59:64:80:d0:54:a3:2f:ca:3b:c6:36:17:ba:5c:d9: 99:9d:18:47:c2:bf:05:3c:23:19:bf:6e:c5:fd:98: 34:f4:43:71:b7:b2:9d:b7:23:4f:00:9a:d3:a4:60: d9:4b:70:3e:42:e4:3a:6a:7c:96:f9:2d:62:91:50: 62:17:9d:68:06:c7:2e:21:83:ee:53:ff:12:ec:25: a2:d8:4e:29:d1:25:48:d3:01:3a:c3:de:d1:b7:27: 7c:a1:56:ba:03:aa:5b:5d:99:c1:cd:8e:8f:ce:39: 50:3b:91:6e:02:1f:9f:05:65:54:5f:0b:c5:c6:23: 8f:7a:de:2f:90:f9:26:03:6e:17:75:f9:72:6f:7d: cf:7d:27:95:24:08:92:11:c9:28:d6:9d:e9:89:0c: 7c:31:56:a2:90:ea:63:a7:e6:b0:de:26:a7:b0:22: 88:87:5c:49:42:33:62:c1:00:47:68:fd:1f:8a:d1: ab:84:3e:ce:07:90:4b:ff:53:1e:cd:3a:8a:a9:fe: f3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:17:A2:82:E7:61:45:FF:7C:39:F0:CD:B9:43:C6:72:B4:AF:90:D7 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:46:ed:cc:dc:d5:51:bd:d8:6d:f3:eb:94:fc:a8:dc:ae:ec: 7e:4d:14:3f:ab:81:32:a2:76:fe:93:08:de:78:79:ce:54:28: 7b:a5:5f:90:8e:8f:8d:ba:b8:c4:5e:5c:c7:15:ec:ec:92:23: 51:69:2d:fa:02:54:fb:50:ea:aa:12:6a:f1:68:1f:4e:4b:69: 27:a2:41:19:97:85:7f:35:4f:5b:ac:8e:0a:0b:d6:8a:79:6b: e4:06:cb:b3:f6:11:12:ae:39:ed:65:b1:48:0a:23:3c:06:f8: b5:73:7c:38:4c:00:32:63:68:8e:4c:a2:79:86:72:fe:8f:59: 0d:b9:66:76:e5:83:5c:fa:c5:88:db:42:ce:e0:4c:5e:e2:91: 7a:81:6d:2d:4b:a5:0e:12:f3:e0:63:33:6f:42:4e:b4:dc:62: f4:5f:39:64:fb:0c:81:04:d9:23:95:21:b0:ca:b2:33:3c:21: b8:d7:7e:68:cc:86:29:d8:56:d2:63:55:f6:b9:f7:80:58:8a: 37:1c:77:3a:02:9a:01:14:39:f5:94:2d:04:33:cb:42:0d:84: 2b:8d:1a:60:19:bf:bd:60:1f:23:a3:4d:45:66:1a:b0:f7:5f: 05:7b:0b:de:11:50:49:c1:37:2d:07:3b:c9:b1:06:9e:0d:3f: 3d:9c:08:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjYwMTI0MjM1MTI4WhcNMjYwMTMxMjM1MTI4WjAYMRYwFAYD VQQDDA02OTc1NWIwMC02NDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnml0s8W1bgGcZrBfh3YgwT2N2YfJJANfXBvu1MIrToj8qds95FOfGamaMnDM SBulG/LuRk9q5Iki5AVZZIDQVKMvyjvGNhe6XNmZnRhHwr8FPCMZv27F/Zg09ENx t7KdtyNPAJrTpGDZS3A+QuQ6anyW+S1ikVBiF51oBscuIYPuU/8S7CWi2E4p0SVI 0wE6w97Rtyd8oVa6A6pbXZnBzY6PzjlQO5FuAh+fBWVUXwvFxiOPet4vkPkmA24X dflyb33PfSeVJAiSEcko1p3piQx8MVaikOpjp+aw3iansCKIh1xJQjNiwQBHaP0f itGrhD7OB5BL/1MezTqKqf7zUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUXooLn YUX/fDnwzblDxnK0r5DXMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkRu3M3NVRvdht8+uU/Kjcrux+TRQ/q4Eyonb+kwjeeHnOVCh7pV+Q jo+NurjEXlzHFezskiNRaS36AlT7UOqqEmrxaB9OS2knokEZl4V/NU9brI4KC9aK eWvkBsuz9hESrjntZbFICiM8Bvi1c3w4TAAyY2iOTKJ5hnL+j1kNuWZ25YNc+sWI 20LO4Exe4pF6gW0tS6UOEvPgYzNvQk603GL0Xzlk+wyBBNkjlSGwyrIzPCG4135o zIYp2FbSY1X2ufeAWIo3HHc6ApoBFDn1lC0EM8tCDYQrjRpgGb+9YB8jo01FZhqw 918FewveEVBJwTctBzvJsQaeDT89nAia -----END CERTIFICATE-----Generated at Sun Jan 25 08:20:19 2026 by rpki-client