This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: smwyxQtXVCdw/3cf3gwgujNrP24rll4yTf3evFCMLtw= Subject key identifier: D8:A8:A6:0B:FD:EA:C0:BA:62:C5:4A:29:6A:B3:03:B7:D8:1B:BC:A0 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 020B Signing time: Sun 25 Jan 2026 01:39:00 +0000 Manifest this update: Sun 25 Jan 2026 01:39:00 +0000 Manifest next update: Sun 01 Feb 2026 01:39:00 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: L+iYVWRmi7r5oz2qzyNs50nIGJDdXs1/04ZWz5qeKvI=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) 5: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Jan 25 01:39:00 2026 GMT Not After : Feb 1 01:39:00 2026 GMT Subject: CN=69757434-1561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:ba:23:d1:9c:4c:4f:ef:b0:84:e4:b1:9c: 07:1d:b4:f1:a2:7f:6c:d0:46:72:5a:a6:c2:0f:1b: 9c:db:f3:51:c9:ab:e8:d7:d8:75:86:b4:22:e1:b4: 1f:c5:dd:02:a5:d3:a7:9c:b3:74:e4:e2:76:90:51: e1:91:05:5c:a4:3e:08:97:1d:6e:b7:42:64:77:c7: f6:da:66:6b:ff:4e:fc:1c:f6:eb:04:7e:3e:51:11: a2:30:59:63:92:ed:10:e7:a8:9a:f9:de:4f:c7:72: f6:c6:2e:f3:0a:a0:2f:74:76:58:3e:af:ad:65:21: 68:ea:0e:c5:f1:27:0a:94:e3:b7:99:77:62:f7:2e: 16:2d:79:8d:b0:c3:0c:37:75:c5:c5:13:96:be:ef: 7f:39:62:59:75:e7:8b:4c:f5:a6:40:e6:03:79:09: d1:80:95:83:5a:f6:7d:6c:cd:6b:b3:c5:47:58:01: bc:b9:69:3a:ad:16:20:c8:67:eb:c8:9c:a4:0b:51: 03:43:12:93:fc:28:3d:99:8b:16:c5:bb:2a:67:76: e8:eb:26:00:57:39:17:9f:80:4d:5e:85:aa:6d:39: f5:47:43:96:cb:73:0d:29:40:7c:8c:7d:33:22:c6: e7:6b:7a:36:10:c6:26:13:f7:de:fb:9a:98:82:4a: 84:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A8:A6:0B:FD:EA:C0:BA:62:C5:4A:29:6A:B3:03:B7:D8:1B:BC:A0 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:35:76:ad:da:b6:c8:05:04:af:42:d1:9f:b5:dc:45:53:bf: 90:1c:97:53:58:04:c7:1f:17:26:a8:c8:41:94:1d:eb:b6:93: 75:56:2d:19:91:ef:07:4a:2d:e1:66:dd:72:f8:f5:ab:f5:c8: 16:38:7b:92:6b:46:2c:a5:9d:92:d4:9b:cf:8c:5e:6e:9f:bb: 8f:1f:9c:14:73:3a:1e:03:48:7c:9b:22:14:9d:f9:1e:90:81: 30:f1:55:d4:51:7e:89:27:dc:35:1a:f3:33:05:96:92:ec:81: 87:83:be:57:6d:4a:63:51:52:34:d9:68:96:77:06:da:f5:fa: de:67:da:2f:ff:86:9d:8a:62:c0:8d:9f:54:bb:90:0e:0f:19: f3:70:e8:41:6e:aa:e5:07:43:31:39:c7:97:44:6d:74:a7:0f: 74:b6:91:f1:83:ac:24:87:7c:6a:8e:a2:b7:e4:e3:ea:99:a1: f5:d1:a6:ad:8d:58:e0:49:d7:7d:9f:ed:78:6c:c9:45:75:86: 7d:2d:ae:f0:09:60:99:1d:17:15:c1:d3:76:95:00:b7:b0:b8: c4:a5:30:48:78:ce:7d:1f:ad:9e:18:52:2e:46:c3:86:61:f8: a0:d8:42:a7:24:50:19:e6:81:9c:62:25:0c:37:7c:1e:64:dd: 44:a6:ef:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjYwMTI1MDEzOTAwWhcNMjYwMjAxMDEzOTAwWjAYMRYwFAYD VQQDDA02OTc1NzQzNC0xNTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEG6I9GcTE/vsITksZwHHbTxon9s0EZyWqbCDxuc2/NRyavo19h1hrQi4bQf xd0CpdOnnLN05OJ2kFHhkQVcpD4Ilx1ut0Jkd8f22mZr/078HPbrBH4+URGiMFlj ku0Q56ia+d5Px3L2xi7zCqAvdHZYPq+tZSFo6g7F8ScKlOO3mXdi9y4WLXmNsMMM N3XFxROWvu9/OWJZdeeLTPWmQOYDeQnRgJWDWvZ9bM1rs8VHWAG8uWk6rRYgyGfr yJykC1EDQxKT/Cg9mYsWxbsqZ3bo6yYAVzkXn4BNXoWqbTn1R0OWy3MNKUB8jH0z Isbna3o2EMYmE/fe+5qYgkqEqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiopgv9 6sC6YsVKKWqzA7fYG7ygMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAINXat2rbIBQSvQtGftdxFU7+QHJdTWATHHxcmqMhBlB3rtpN1Vi0Z ke8HSi3hZt1y+PWr9cgWOHuSa0YspZ2S1JvPjF5un7uPH5wUczoeA0h8myIUnfke kIEw8VXUUX6JJ9w1GvMzBZaS7IGHg75XbUpjUVI02WiWdwba9freZ9ov/4adimLA jZ9Uu5AODxnzcOhBbqrlB0MxOceXRG10pw90tpHxg6wkh3xqjqK35OPqmaH10aat jVjgSdd9n+14bMlFdYZ9La7wCWCZHRcVwdN2lQC3sLjEpTBIeM59H62eGFIuRsOG Yfig2EKnJFAZ5oGcYiUMN3weZN1Epu8r -----END CERTIFICATE-----Generated at Sun Jan 25 09:24:16 2026 by rpki-client