This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: dgGIzmpsk/ZaTQPwGslE+fv53tEV4VtB8vvI/i9mStI= Subject key identifier: 9D:AA:8D:D7:EA:A5:A7:58:B7:4D:B0:98:2F:7E:BE:D8:98:D6:38:EA Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 6B Signing time: Fri 23 Jan 2026 06:00:19 +0000 Manifest this update: Fri 23 Jan 2026 06:00:18 +0000 Manifest next update: Fri 30 Jan 2026 06:00:18 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: Vtq1FtG8yrpBXuQJj8zXymMiWozpBrrNMeUnQ58I2zk=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: Ntdzzur1e7UcFcIFXVyf4NefmktAA4cSP3KFPUhWals=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Jan 23 06:00:18 2026 GMT Not After : Jan 30 06:00:18 2026 GMT Subject: CN=69730e72-4991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6c:a2:22:69:2d:ab:bc:7f:43:df:03:63:c6: 0a:8f:37:7b:b9:8e:c3:85:ab:bf:a5:b4:c4:bd:c0: ed:7c:6a:fc:9e:ed:3c:48:f2:8c:ea:0a:e7:2c:cc: e4:a3:7a:34:58:c6:5e:da:43:4e:83:dd:b9:73:3e: 55:ca:1c:67:1e:a8:e9:3f:65:1e:21:60:f7:98:27: db:13:64:d2:f6:69:bc:25:64:22:28:cf:c7:55:05: 79:af:77:3a:35:d9:9e:1c:a0:0d:9b:9f:a3:d5:e7: b4:f7:e4:5d:cd:93:1c:4f:af:df:83:fe:ca:71:83: 26:d5:26:0e:6d:95:58:ab:d4:ce:95:97:05:63:f8: bd:62:9b:d4:0b:3c:f2:b2:51:6c:16:e4:0e:b9:84: 52:dc:93:94:90:71:51:c9:62:29:34:4a:42:89:28: f4:00:c8:47:3c:02:e7:d4:bb:0e:f9:2b:55:ae:25: 12:2e:00:f6:c8:c3:ef:e2:19:ec:7b:a2:17:59:9d: 28:d3:73:60:3d:19:fa:07:59:84:dc:ec:e1:3f:cb: 11:17:22:f2:a9:ce:e4:1b:fb:6f:04:37:a8:8f:5e: 00:f3:f6:fb:cf:a4:a9:32:77:8c:c3:3b:8b:15:bd: aa:63:7a:36:ce:b1:5d:c0:0f:d2:6b:82:f0:0c:fe: a2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AA:8D:D7:EA:A5:A7:58:B7:4D:B0:98:2F:7E:BE:D8:98:D6:38:EA X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f9:1f:09:1d:c9:c1:e0:6e:b7:7b:c9:79:88:26:ea:7c:68: bc:2d:16:77:33:c5:5d:29:67:eb:38:f5:01:4b:63:bb:c2:f7: 36:26:95:fa:94:27:d7:6f:db:53:5e:42:86:86:ae:93:78:d7: c8:6f:a4:75:ae:f0:57:b7:4c:58:05:14:4c:3a:13:bf:c2:ab: b0:db:16:77:79:76:7c:94:04:b2:3d:66:86:1c:7e:42:27:9a: f2:74:70:c9:0c:13:8a:fd:36:bc:b0:28:02:0e:02:2c:82:e4: ee:ae:ac:e3:2f:cf:e0:88:62:fd:be:67:30:85:f6:3c:ae:f2: f2:07:23:4d:80:ed:09:57:3e:78:e1:28:09:69:a2:13:ab:6b: 9a:23:76:84:fc:34:c8:61:c6:47:6a:55:d6:24:b8:77:0a:d8: 74:46:68:87:7b:7b:ce:f5:f1:20:44:82:79:9d:ae:79:3b:58: c0:39:7a:c5:9f:68:ab:2c:f7:14:25:4e:48:66:c4:73:1a:b8: 55:fe:c5:3a:db:e6:2e:8e:ba:d5:c5:9a:a4:55:fa:67:6c:cb: 5d:29:8a:33:2a:ea:f1:1e:06:0f:7b:e8:b7:ce:2b:72:b2:87: 8f:36:d9:de:1f:d4:7d:eb:83:d4:01:9c:5d:89:d6:dc:13:3e: bb:53:fe:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoM0VDN0IxQTZEQTIxQTFBNzc1ODE1RDFDQkZFNzIzMTRC OEE5NUREOTAeFw0yNjAxMjMwNjAwMThaFw0yNjAxMzAwNjAwMThaMBgxFjAUBgNV BAMMDTY5NzMwZTcyLTQ5OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCybKIiaS2rvH9D3wNjxgqPN3u5jsOFq7+ltMS9wO18avye7TxI8ozqCucszOSj ejRYxl7aQ06D3blzPlXKHGceqOk/ZR4hYPeYJ9sTZNL2abwlZCIoz8dVBXmvdzo1 2Z4coA2bn6PV57T35F3NkxxPr9+D/spxgybVJg5tlVir1M6VlwVj+L1im9QLPPKy UWwW5A65hFLck5SQcVHJYik0SkKJKPQAyEc8AufUuw75K1WuJRIuAPbIw+/iGex7 ohdZnSjTc2A9GfoHWYTc7OE/yxEXIvKpzuQb+28EN6iPXgDz9vvPpKkyd4zDO4sV vapjejbOsV3AD9JrgvAM/qLrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnaqN1+ql p1i3TbCYL36+2JjWOOowHwYDVR0jBBgwFoAUPsexptohoad1gV0cv+cjFLipXdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0NFMEVEQTI2NTcx QTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHNleHB0b2hvYWQxZ1YwY3YtY2pGTGlwWGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0NFMEVEQTI2NTcxQTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2Fk MWdWMGN2LWNqRkxpcFhkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADj5HwkdycHgbrd7yXmIJup8aLwtFnczxV0pZ+s49QFLY7vC9zYmlfqU J9dv21NeQoaGrpN418hvpHWu8Fe3TFgFFEw6E7/Cq7DbFnd5dnyUBLI9ZoYcfkIn mvJ0cMkME4r9NrywKAIOAiyC5O6urOMvz+CIYv2+ZzCF9jyu8vIHI02A7QlXPnjh KAlpohOra5ojdoT8NMhhxkdqVdYkuHcK2HRGaId7e8718SBEgnmdrnk7WMA5esWf aKss9xQlTkhmxHMauFX+xTrb5i6OutXFmqRV+mdsy10pijMq6vEeBg976LfOK3Ky h4822d4f1H3rg9QBnF2J1twTPrtT/vc= -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:40 2026 by rpki-client