This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: hnIBCxXzajd3uyFUVzXmNHcfUDSagnvPhv7CbaE4sdM= Subject key identifier: D4:E7:36:67:DC:40:E4:C7:D4:C3:2C:DC:93:AE:20:BE:5C:CF:1F:AB Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 052F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 0525 Signing time: Sat 24 Jan 2026 22:47:10 +0000 Manifest this update: Sat 24 Jan 2026 22:47:10 +0000 Manifest next update: Sat 31 Jan 2026 22:47:10 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: BF8mQzQGtQbO16qvsy/j3TIsBSbxjymz2mvwiMm6zrM=) 2: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) 3: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Jan 24 22:47:10 2026 GMT Not After : Jan 31 22:47:10 2026 GMT Subject: CN=69754bee-72b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:56:df:d3:54:f1:1a:31:a8:01:6d:0a:7e:40: e2:34:a8:0b:42:da:4e:f7:89:38:89:09:36:76:e9: 5c:f4:a7:61:6b:05:2c:fe:8e:a1:ed:bc:a3:0b:28: 4b:90:4e:8a:04:81:3e:4f:63:d9:81:72:fd:73:ed: 76:45:f7:ec:09:f9:e8:59:94:81:13:cd:1f:62:8a: d0:c2:0f:97:94:64:e1:ef:fb:d4:ef:7b:8b:31:9d: be:30:de:0c:fe:d5:12:5e:89:4c:f4:f5:28:b5:40: 31:71:e2:a9:4d:56:70:79:26:5a:5b:23:38:c1:d5: 80:ff:a3:97:78:9a:0d:0d:6f:79:fd:5a:fd:f3:75: 87:f9:65:06:4b:44:49:21:00:65:17:b3:e6:a8:21: 44:c4:46:ae:89:3e:4b:f0:6e:65:b5:ff:99:de:c8: 5c:dd:f5:96:58:f8:8b:05:ec:20:47:46:5f:58:fc: b2:81:a0:a9:99:81:82:a5:fd:63:f2:06:77:db:71: 5b:a8:92:c9:69:e6:44:39:0d:c8:37:01:b0:bb:91: 44:0d:d4:b7:d5:61:c4:36:2c:33:0a:2c:39:c4:4e: 59:ca:e3:ed:49:ea:a7:92:76:f8:ed:2f:35:4b:3b: 43:70:39:20:b9:53:a2:cf:78:65:97:d1:69:50:6c: 9c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E7:36:67:DC:40:E4:C7:D4:C3:2C:DC:93:AE:20:BE:5C:CF:1F:AB X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:b3:df:74:af:9e:a0:65:16:b4:83:fa:4d:30:0e:61:3b:c7: 6d:68:e1:f8:e9:58:3b:ca:05:76:bd:b5:b2:cc:df:c6:4e:57: 6d:a6:e2:22:1c:da:e5:2a:23:6a:ce:55:8b:6f:1b:c6:5a:0a: 63:4d:32:f7:8e:65:93:56:78:77:bb:b7:57:86:20:b6:4b:c2: 15:6e:70:b7:7a:3f:90:46:62:97:88:22:f5:e2:24:6c:2b:5b: a0:c7:a8:ad:7a:9a:1f:fd:d6:26:50:08:fc:fd:46:80:00:d1: 27:bc:ac:ea:0a:e8:5f:1c:01:d7:be:1f:89:fc:50:c3:b8:f5: 6a:a3:1e:c8:5d:c4:9e:69:c4:8e:96:1f:15:59:a2:b2:05:83: 9e:0b:f3:9c:3e:00:90:a3:55:e3:f0:38:4f:d6:8a:aa:ea:c8: 48:a0:5a:b4:46:2f:92:bb:84:42:aa:83:5d:0e:4e:16:c0:be: 88:e4:81:ec:1f:32:58:44:f7:a2:14:85:96:b7:09:3a:ca:fb: 74:2a:48:fe:49:07:92:27:a5:00:eb:92:95:f7:a9:60:13:9f: e6:f4:0f:3d:af:e1:16:55:94:b6:ed:02:42:62:8b:ef:7f:27: 84:46:c8:8f:a6:fd:8d:14:92:8a:6c:51:51:0d:b9:8a:32:c9: 23:e0:5f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjYwMTI0MjI0NzEwWhcNMjYwMTMxMjI0NzEwWjAYMRYwFAYD VQQDDA02OTc1NGJlZS03MmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlbf01TxGjGoAW0KfkDiNKgLQtpO94k4iQk2dulc9KdhawUs/o6h7byjCyhL kE6KBIE+T2PZgXL9c+12RffsCfnoWZSBE80fYorQwg+XlGTh7/vU73uLMZ2+MN4M /tUSXolM9PUotUAxceKpTVZweSZaWyM4wdWA/6OXeJoNDW95/Vr983WH+WUGS0RJ IQBlF7PmqCFExEauiT5L8G5ltf+Z3shc3fWWWPiLBewgR0ZfWPyygaCpmYGCpf1j 8gZ323FbqJLJaeZEOQ3INwGwu5FEDdS31WHENiwzCiw5xE5ZyuPtSeqnknb47S81 SztDcDkguVOiz3hll9FpUGycmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTnNmfc QOTH1MMs3JOuIL5czx+rMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZs990r56gZRa0g/pNMA5hO8dtaOH46Vg7ygV2vbWyzN/GTldtpuIi HNrlKiNqzlWLbxvGWgpjTTL3jmWTVnh3u7dXhiC2S8IVbnC3ej+QRmKXiCL14iRs K1ugx6itepof/dYmUAj8/UaAANEnvKzqCuhfHAHXvh+J/FDDuPVqox7IXcSeacSO lh8VWaKyBYOeC/OcPgCQo1Xj8DhP1oqq6shIoFq0Ri+Su4RCqoNdDk4WwL6I5IHs HzJYRPeiFIWWtwk6yvt0Kkj+SQeSJ6UA65KV96lgE5/m9A89r+EWVZS27QJCYovv fyeERsiPpv2NFJKKbFFRDbmKMskj4F8Z -----END CERTIFICATE-----Generated at Sun Jan 25 02:59:05 2026 by rpki-client