This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: yHDvh5klDY5q4OUofqH/0YesoajGfLH1xNNzor5SbNA= Subject key identifier: 28:CF:53:19:B9:10:DB:4C:DD:77:1B:0A:DE:CF:B2:E9:6E:4F:9B:A5 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 04C9 Signing time: Sat 24 Jan 2026 23:07:38 +0000 Manifest this update: Sat 24 Jan 2026 23:07:37 +0000 Manifest next update: Sat 31 Jan 2026 23:07:37 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: Hdq7/cMKsgopIngkAzVNn0eflAI49lVIFV+ma62ijHQ=) 2: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 3: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) 4: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 5: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 6: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Jan 24 23:07:37 2026 GMT Not After : Jan 31 23:07:37 2026 GMT Subject: CN=697550ba-fc98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:73:75:a3:c5:5d:24:b2:11:0e:2c:7c:40:6e: ca:61:a5:8f:20:0b:60:d2:b2:2b:1c:c2:06:4c:de: 2b:5d:be:c9:d3:78:46:ea:1a:d1:4c:f3:94:9d:97: fd:ea:ac:e2:1b:64:37:e6:e1:ca:24:51:2d:7a:27: 9e:43:b3:53:78:ce:d6:5c:3d:a1:4f:97:4c:e5:0a: 76:d7:74:45:73:97:f8:6d:b5:39:73:6d:94:12:d6: 8e:91:99:06:eb:37:23:32:63:58:a2:27:6f:f4:c8: 32:ca:b6:59:9a:04:16:25:c5:9e:71:da:bb:1b:c1: 6f:30:64:b4:cc:fc:41:a2:57:9b:2e:f1:c5:4d:89: fe:d0:ff:21:b3:68:47:45:8b:b0:c5:07:10:27:35: 4a:dc:aa:7e:75:d2:65:58:42:5e:8d:5a:14:03:14: b9:d2:83:89:16:fa:2d:95:b7:67:a7:23:57:1a:bf: da:04:60:d0:32:c3:d6:b1:35:ca:7f:dc:5d:7b:e8: 36:11:8d:90:84:93:c0:07:9e:82:40:30:22:10:ff: e1:a9:52:d3:18:e6:00:38:73:92:56:55:4e:98:75: 50:a0:f3:15:79:53:8c:86:ea:e6:e3:b7:9c:46:b8: 49:90:2e:a1:b8:d1:33:9f:17:10:7c:81:5e:23:28: e2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CF:53:19:B9:10:DB:4C:DD:77:1B:0A:DE:CF:B2:E9:6E:4F:9B:A5 X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:7a:55:b5:70:12:b9:d1:e8:13:42:c2:35:68:7e:8d:31:09: ee:c1:82:b6:99:95:b1:8b:2b:8d:c3:3d:5a:01:68:dc:63:40: 67:9b:9d:5f:b7:3e:7a:a7:6d:75:76:63:a8:11:de:36:06:2b: 9f:d0:b9:18:37:21:52:91:68:c2:53:d1:9f:78:a0:d5:9f:0d: 3b:de:67:cc:1a:75:7c:b5:0d:0b:49:0d:59:c4:47:0c:df:ae: d6:98:9e:d0:b5:cc:45:8e:25:12:79:9e:df:5a:a8:ae:e2:04: 45:6b:e0:75:da:0b:5e:6f:d9:d6:80:02:9b:b9:59:51:3c:f8: 71:d6:5e:04:93:a4:b5:93:ee:64:d1:e2:13:d1:aa:30:80:b3: ae:57:a5:35:8e:e9:73:c5:b7:38:5a:66:c1:2e:e3:e1:f7:4d: 4d:2f:ee:fd:99:df:51:1c:b9:85:5d:b7:e1:06:96:02:9a:4e: be:bb:5b:08:14:d0:2f:30:ec:34:1f:91:06:8e:58:73:e2:75: fd:3e:fa:41:8c:c7:c9:00:8b:4c:ee:f4:ae:79:11:4d:8c:89: f0:38:7c:1a:2e:a9:69:fd:d5:d0:ab:34:c0:31:07:ad:af:eb: 02:9d:09:35:1a:4c:d2:2c:6b:da:c7:42:e3:71:0a:92:93:7c: 00:f2:8e:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjYwMTI0MjMwNzM3WhcNMjYwMTMxMjMwNzM3WjAYMRYwFAYD VQQDDA02OTc1NTBiYS1mYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHN1o8VdJLIRDix8QG7KYaWPIAtg0rIrHMIGTN4rXb7J03hG6hrRTPOUnZf9 6qziG2Q35uHKJFEteieeQ7NTeM7WXD2hT5dM5Qp213RFc5f4bbU5c22UEtaOkZkG 6zcjMmNYoidv9MgyyrZZmgQWJcWecdq7G8FvMGS0zPxBolebLvHFTYn+0P8hs2hH RYuwxQcQJzVK3Kp+ddJlWEJejVoUAxS50oOJFvotlbdnpyNXGr/aBGDQMsPWsTXK f9xde+g2EY2QhJPAB56CQDAiEP/hqVLTGOYAOHOSVlVOmHVQoPMVeVOMhurm47ec RrhJkC6huNEznxcQfIFeIyjiRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjPUxm5 ENtM3XcbCt7PsuluT5ulMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRelW1cBK50egTQsI1aH6NMQnuwYK2mZWxiyuNwz1aAWjcY0Bnm51f tz56p211dmOoEd42Biuf0LkYNyFSkWjCU9GfeKDVnw073mfMGnV8tQ0LSQ1ZxEcM 367WmJ7QtcxFjiUSeZ7fWqiu4gRFa+B12gteb9nWgAKbuVlRPPhx1l4Ek6S1k+5k 0eIT0aowgLOuV6U1julzxbc4WmbBLuPh901NL+79md9RHLmFXbfhBpYCmk6+u1sI FNAvMOw0H5EGjlhz4nX9PvpBjMfJAItM7vSueRFNjInwOHwaLqlp/dXQqzTAMQet r+sCnQk1GkzSLGvax0LjcQqSk3wA8o4C -----END CERTIFICATE-----Generated at Sun Jan 25 04:37:27 2026 by rpki-client