This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: 3RLLKuhylW0hqp6stCg9UKI8UfJGgWAxQLjhkFtQDUI= Subject key identifier: 81:2C:E4:4B:11:A0:06:D9:EA:C4:1B:62:09:26:B9:8A:D5:53:62:08 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01CD Signing time: Sun 25 Jan 2026 02:10:49 +0000 Manifest this update: Sun 25 Jan 2026 02:10:49 +0000 Manifest next update: Sun 01 Feb 2026 02:10:49 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: joYD0uFggN3FGQmMh6SBtTrouJmQeDNgYHlmDqymi3Q=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Jan 25 02:10:49 2026 GMT Not After : Feb 1 02:10:49 2026 GMT Subject: CN=69757ba9-fc9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:58:64:9d:66:9c:d8:42:44:d8:9f:02:e2:0d: 56:6e:73:b6:37:d6:14:fa:fc:d2:90:eb:6d:3c:75: 38:50:ff:51:e3:5b:81:37:e1:ae:43:97:0e:1b:49: b1:c3:8d:bb:90:49:1f:03:11:7d:4a:24:51:3e:be: f1:b0:7b:68:d1:ad:89:fb:10:82:2b:d9:25:7d:53: 45:fa:9f:cc:26:ab:03:4b:c3:d4:24:25:22:d2:2b: 4a:47:24:e5:72:da:cb:05:fc:fe:a4:62:fc:0f:a0: 60:fd:06:c0:0b:28:c0:36:f2:59:b9:40:85:37:f9: 77:4a:c1:28:1b:ed:d8:d4:63:11:47:66:1d:94:99: d4:cb:fb:ec:43:61:56:83:74:e2:63:6c:4f:0c:f7: af:18:fe:ff:e6:85:62:af:9e:46:9c:fd:f9:10:36: ef:92:82:ba:e0:e0:c3:39:36:c5:b9:1f:92:61:0a: d4:79:95:6a:aa:08:41:45:00:e3:35:62:eb:da:b4: c1:50:b1:d8:fc:39:7a:38:89:02:bd:0f:98:1a:f2: 9c:25:8e:e1:80:e9:eb:0b:16:d3:13:40:08:bc:e5: f0:5f:46:49:70:78:d7:69:2b:06:45:d8:a2:93:f9: cb:ed:25:2f:99:b7:09:aa:eb:41:64:ee:f9:ab:9d: 1e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2C:E4:4B:11:A0:06:D9:EA:C4:1B:62:09:26:B9:8A:D5:53:62:08 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:6b:5d:c7:ef:1e:04:19:80:b2:42:6c:fa:71:d1:9e:7f:55: bf:35:1c:d4:a5:18:5f:71:0c:98:af:7d:42:fb:29:ff:41:89: 31:76:37:2c:93:69:63:9a:36:d2:bd:24:b3:7e:0c:b0:8b:48: 1d:ae:7b:22:bb:8b:8b:7a:b6:c7:79:d6:fb:83:3a:7b:c5:4e: 0e:14:11:10:e0:41:db:e1:54:dc:28:cd:eb:32:ea:2d:52:80: c2:af:05:ed:3f:81:02:93:4f:75:2d:60:40:f2:ea:5a:1e:d6: e3:67:e8:9f:17:f9:7c:d6:f9:76:bf:d2:ef:31:53:c9:1e:af: ae:f4:54:e5:f5:1b:fc:4c:c9:7c:08:e5:62:1b:24:41:41:a5: 63:42:60:47:34:d5:0f:7b:08:d2:e6:b0:81:a4:a5:66:7a:32: ec:2d:4f:94:d2:66:15:8e:a7:a1:bd:b3:ca:c7:9f:a7:6b:8e: 00:fb:9d:d2:63:6f:67:6b:6c:24:f1:c2:45:45:13:86:a0:0c: 8e:16:b7:4c:5a:13:59:a3:91:21:01:02:7b:50:6a:01:ac:4a: 6d:c2:b9:a3:12:53:ee:b2:b6:72:68:37:1d:43:e5:30:64:1a: 18:a6:db:f3:b9:b8:8b:46:c6:d7:55:40:a1:f0:64:bb:40:07: 19:53:ef:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwMTI1MDIxMDQ5WhcNMjYwMjAxMDIxMDQ5WjAYMRYwFAYD VQQDDA02OTc1N2JhOS1mYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFhknWac2EJE2J8C4g1WbnO2N9YU+vzSkOttPHU4UP9R41uBN+GuQ5cOG0mx w427kEkfAxF9SiRRPr7xsHto0a2J+xCCK9klfVNF+p/MJqsDS8PUJCUi0itKRyTl ctrLBfz+pGL8D6Bg/QbACyjANvJZuUCFN/l3SsEoG+3Y1GMRR2YdlJnUy/vsQ2FW g3TiY2xPDPevGP7/5oVir55GnP35EDbvkoK64ODDOTbFuR+SYQrUeZVqqghBRQDj NWLr2rTBULHY/Dl6OIkCvQ+YGvKcJY7hgOnrCxbTE0AIvOXwX0ZJcHjXaSsGRdii k/nL7SUvmbcJqutBZO75q50eIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEs5EsR oAbZ6sQbYgkmuYrVU2IIMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNa13H7x4EGYCyQmz6cdGef1W/NRzUpRhfcQyYr31C+yn/QYkxdjcs k2ljmjbSvSSzfgywi0gdrnsiu4uLerbHedb7gzp7xU4OFBEQ4EHb4VTcKM3rMuot UoDCrwXtP4ECk091LWBA8upaHtbjZ+ifF/l81vl2v9LvMVPJHq+u9FTl9Rv8TMl8 COViGyRBQaVjQmBHNNUPewjS5rCBpKVmejLsLU+U0mYVjqehvbPKx5+na44A+53S Y29na2wk8cJFRROGoAyOFrdMWhNZo5EhAQJ7UGoBrEptwrmjElPusrZyaDcdQ+Uw ZBoYptvzubiLRsbXVUCh8GS7QAcZU+9g -----END CERTIFICATE-----Generated at Sun Jan 25 09:21:28 2026 by rpki-client