This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: wzlkndsA8NTwup3fVFp2QMcyB0cmUq0CUlBfYSMJyas= Subject key identifier: BB:F4:F4:71:59:D0:2C:F3:8E:74:7D:31:77:1E:25:F5:DC:06:21:4E Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0573 Signing time: Sat 24 Jan 2026 22:33:09 +0000 Manifest this update: Sat 24 Jan 2026 22:33:08 +0000 Manifest next update: Sat 31 Jan 2026 22:33:08 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: HFvuoegUeCedTMdOuHGQHrB2NWNP2z1kkSHs7M2i1vA=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PG236be1E8/bdu91IiVOrP0tedgETPtMVawr3zFO1mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Jan 24 22:33:08 2026 GMT Not After : Jan 31 22:33:08 2026 GMT Subject: CN=697548a4-5f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:7e:95:83:5c:aa:9c:4d:80:3c:2a:69:0d: 33:df:97:d7:17:9c:21:ff:66:8a:dd:9f:8e:f2:96: 11:5f:ee:b7:09:91:27:f2:fb:93:1d:47:95:94:ac: 30:29:aa:f4:9b:a7:7a:ab:96:2b:93:5f:38:d3:2e: 86:2c:63:9c:ef:01:35:32:3b:34:ea:41:99:64:54: ac:68:25:09:50:ad:f6:c6:aa:2a:a2:76:7f:0f:bb: 6f:b8:13:3b:f5:fb:83:6a:a6:db:42:e0:46:5d:58: 7b:72:fe:6c:2a:a3:e5:7b:33:05:9e:96:37:d0:29: 7a:91:b4:5e:90:3a:a2:78:d2:a7:ac:a0:6c:b5:18: 18:2b:95:eb:73:c4:cc:df:59:cd:9a:19:95:fb:7b: 56:d8:b0:bb:a3:64:7c:76:e6:a1:f3:ca:f2:88:34: 7d:08:0e:27:c0:06:d7:8f:e1:6c:e6:5c:47:8e:84: 0f:78:57:84:df:e2:e4:88:c2:e7:4f:f6:62:7c:8c: 80:de:24:c9:8a:b0:4b:eb:e3:93:dd:f3:37:e8:b7: b2:0c:39:3f:33:b4:d9:8e:74:54:c3:ea:11:ee:a4: 87:b7:a1:1f:e9:c2:2c:e2:b3:71:9b:1b:92:18:dd: 18:37:14:3d:11:e0:6c:98:82:91:e7:f1:3a:df:6a: 96:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F4:F4:71:59:D0:2C:F3:8E:74:7D:31:77:1E:25:F5:DC:06:21:4E X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:df:72:7f:86:d0:cc:32:01:99:f9:a5:04:f9:e2:ec:b8:71: b3:bc:29:28:a7:f2:8f:ce:6b:c8:f3:88:6c:57:46:40:e8:a7: 45:8b:bd:d1:85:fd:f9:76:2c:88:0b:e3:f7:71:34:94:2d:e8: a4:94:86:cf:13:d4:4f:92:50:14:29:e1:11:cf:46:50:0d:30: 7e:28:42:b7:41:64:88:78:51:53:8a:e7:47:aa:49:f4:64:bb: b4:18:e8:c1:c4:e5:06:0f:16:ff:1f:f1:9d:04:e0:2d:fc:f1: 0b:10:b1:f8:8a:35:4e:6f:78:91:ac:51:a6:68:61:82:99:45: a0:11:29:b5:9e:3e:c7:6e:18:49:ca:0f:e2:4b:ca:39:28:c9: 0f:be:46:00:58:5a:28:1c:6d:49:02:65:d1:52:68:a4:95:a4: ff:74:79:ed:e7:99:f3:97:f5:3f:bd:3b:e8:81:45:86:7c:e4: 33:4a:78:48:af:85:64:27:6f:ca:23:d2:cb:6a:83:e8:8c:bf: 80:48:d8:d1:85:d7:a0:14:87:67:23:9c:4b:af:f4:70:f0:02: 73:08:69:25:39:26:6c:de:77:cc:2c:0f:e9:84:f1:8f:fc:5f: 24:d9:e0:b1:10:dd:80:91:c0:ce:b8:4c:8f:d0:0b:2e:ce:a7: 41:51:4f:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjYwMTI0MjIzMzA4WhcNMjYwMTMxMjIzMzA4WjAYMRYwFAYD VQQDDA02OTc1NDhhNC01ZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+h+lYNcqpxNgDwqaQ0z35fXF5wh/2aK3Z+O8pYRX+63CZEn8vuTHUeVlKww Kar0m6d6q5Yrk1840y6GLGOc7wE1Mjs06kGZZFSsaCUJUK32xqoqonZ/D7tvuBM7 9fuDaqbbQuBGXVh7cv5sKqPlezMFnpY30Cl6kbRekDqieNKnrKBstRgYK5Xrc8TM 31nNmhmV+3tW2LC7o2R8duah88ryiDR9CA4nwAbXj+Fs5lxHjoQPeFeE3+LkiMLn T/ZifIyA3iTJirBL6+OT3fM36LeyDDk/M7TZjnRUw+oR7qSHt6Ef6cIs4rNxmxuS GN0YNxQ9EeBsmIKR5/E632qW/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLv09HFZ 0CzzjnR9MXceJfXcBiFOMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA633J/htDMMgGZ+aUE+eLsuHGzvCkop/KPzmvI84hsV0ZA6KdFi73R hf35diyIC+P3cTSULeiklIbPE9RPklAUKeERz0ZQDTB+KEK3QWSIeFFTiudHqkn0 ZLu0GOjBxOUGDxb/H/GdBOAt/PELELH4ijVOb3iRrFGmaGGCmUWgESm1nj7HbhhJ yg/iS8o5KMkPvkYAWFooHG1JAmXRUmiklaT/dHnt55nzl/U/vTvogUWGfOQzSnhI r4VkJ2/KI9LLaoPojL+ASNjRhdegFIdnI5xLr/Rw8AJzCGklOSZs3nfMLA/phPGP /F8k2eCxEN2AkcDOuEyP0AsuzqdBUU/l -----END CERTIFICATE-----Generated at Sun Jan 25 12:36:21 2026 by rpki-client