This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: s2n7Y+SMsYA/D9tXal0t2vmzWebk10edKwiE2c0AuKM= Subject key identifier: 67:AA:FD:95:02:A1:6E:3D:C9:24:F0:0C:67:C2:92:A4:6E:E8:FD:63 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 6B Signing time: Fri 23 Jan 2026 06:00:16 +0000 Manifest this update: Fri 23 Jan 2026 06:00:16 +0000 Manifest next update: Fri 30 Jan 2026 06:00:16 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: 9Z3PQXkvWLYX1rXHh2ZM1JeN5YjXrcnv6DPTnoYdRQI=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Jan 23 06:00:16 2026 GMT Not After : Jan 30 06:00:16 2026 GMT Subject: CN=69730e70-de42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:40:91:ef:ee:ae:05:41:d0:a0:86:63:de:2a: ab:90:e9:7c:8d:82:ce:af:e7:89:fd:c9:f5:d1:15: e8:1b:34:dd:fd:62:ed:bf:19:bc:7c:8b:97:f2:78: d0:68:8f:a7:11:7e:88:16:87:d2:0e:66:51:04:1f: 06:a4:17:4c:d3:28:bb:64:ca:d6:18:54:ea:f5:78: 4c:e5:06:ef:75:9a:6e:6c:73:ab:c6:ac:2d:97:b2: 3c:13:6e:62:a7:11:4a:0b:bb:45:28:dd:fc:e6:16: 2a:a5:69:52:34:03:5b:ba:9d:44:c1:78:0b:74:ba: 32:62:79:54:d0:bc:95:69:cc:9a:e5:09:b7:5f:20: 99:95:92:0b:83:52:5c:a0:0b:bb:d4:fd:d1:e9:6c: fe:46:96:fa:63:52:aa:11:41:11:03:17:5c:e5:21: e5:5a:46:cf:72:1b:40:ba:00:b4:1c:01:23:25:97: bc:04:e5:27:66:f4:94:e7:a6:67:ee:b3:71:0b:d1: 46:fa:b9:cf:57:90:14:a4:df:41:27:90:95:c1:31: ca:e9:fb:e4:79:d6:8c:17:3f:52:37:8c:d0:1a:fa: e6:1b:b4:ea:8a:6e:20:34:0b:a3:b7:92:5f:7e:9c: 82:3c:6e:2c:f4:de:24:25:fe:f3:13:39:73:4c:3c: 8f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AA:FD:95:02:A1:6E:3D:C9:24:F0:0C:67:C2:92:A4:6E:E8:FD:63 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:bc:40:82:91:09:61:91:59:c0:d0:1d:74:55:70:e9:32:46: 5c:c3:c6:d2:ec:3b:f1:b5:f4:52:7c:12:0e:f5:73:81:52:5a: 2b:4c:d0:e0:3b:17:18:24:00:c6:8d:bb:55:7c:c1:5c:48:0c: 90:51:dc:25:74:07:b2:a8:3a:36:00:35:48:41:ce:23:9f:2a: e3:af:50:c1:52:cb:8f:f8:15:ee:b3:ae:20:76:75:0e:aa:52: 08:90:ac:f5:93:30:34:f1:19:3b:c9:27:b2:2a:89:33:02:5f: 92:f9:ca:c6:6d:62:bf:bd:4f:38:db:5b:85:ef:b5:db:7c:24: 25:2f:35:cd:43:e1:63:32:16:7c:85:74:9a:e2:7e:90:af:f9: 73:2b:df:bc:c4:7b:81:89:5e:2f:4e:b6:c5:1f:4f:e7:ab:2c: 39:e4:b4:f9:25:ec:0d:c9:e6:db:39:26:7c:87:b1:50:a9:6e: 7d:e0:63:97:79:a9:20:91:08:34:5b:75:51:ce:eb:27:c8:61: 66:da:ec:12:75:48:04:34:04:3a:e7:cc:96:1e:f2:3d:88:33: df:42:8e:3c:05:de:1f:42:f7:6c:d5:27:1e:7c:8d:b4:fe:09: 94:d1:14:5b:8c:0c:b2:dc:5d:ae:ee:0a:42:85:35:b3:a4:12: ef:cc:fc:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNjAxMjMwNjAwMTZaFw0yNjAxMzAwNjAwMTZaMBgxFjAUBgNV BAMMDTY5NzMwZTcwLWRlNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxQJHv7q4FQdCghmPeKquQ6XyNgs6v54n9yfXRFegbNN39Yu2/Gbx8i5fyeNBo j6cRfogWh9IOZlEEHwakF0zTKLtkytYYVOr1eEzlBu91mm5sc6vGrC2XsjwTbmKn EUoLu0Uo3fzmFiqlaVI0A1u6nUTBeAt0ujJieVTQvJVpzJrlCbdfIJmVkguDUlyg C7vU/dHpbP5GlvpjUqoRQREDF1zlIeVaRs9yG0C6ALQcASMll7wE5Sdm9JTnpmfu s3EL0Ub6uc9XkBSk30EnkJXBMcrp++R51owXP1I3jNAa+uYbtOqKbiA0C6O3kl9+ nII8biz03iQl/vMTOXNMPI8ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ6r9lQKh bj3JJPAMZ8KSpG7o/WMwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGu8QIKRCWGRWcDQHXRVcOkyRlzDxtLsO/G19FJ8Eg71c4FSWitM0OA7 FxgkAMaNu1V8wVxIDJBR3CV0B7KoOjYANUhBziOfKuOvUMFSy4/4Fe6zriB2dQ6q UgiQrPWTMDTxGTvJJ7IqiTMCX5L5ysZtYr+9TzjbW4Xvtdt8JCUvNc1D4WMyFnyF dJrifpCv+XMr37zEe4GJXi9OtsUfT+erLDnktPkl7A3J5ts5JnyHsVCpbn3gY5d5 qSCRCDRbdVHO6yfIYWba7BJ1SAQ0BDrnzJYe8j2IM99CjjwF3h9C92zVJx58jbT+ CZTRFFuMDLLcXa7uCkKFNbOkEu/M/A4= -----END CERTIFICATE-----Generated at Sun Jan 25 08:59:40 2026 by rpki-client