This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: zdDBI/NvJz9CRxnBdy+relAZ6R/XwMqT/UTSm85Iwhc= Subject key identifier: 30:58:4A:2F:F7:AC:27:59:E8:E8:46:CC:9D:1C:2C:C6:5F:BC:E4:1A Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 350C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3501 Signing time: Sat 24 Jan 2026 15:06:04 +0000 Manifest this update: Sat 24 Jan 2026 15:06:03 +0000 Manifest next update: Sat 31 Jan 2026 15:06:03 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: qowysiY2LWcMQ0wT5WBkjSaORkbL0peAqnBgmWF9Who=) 2: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) 3: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 4: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13580 (0x350c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Jan 24 15:06:03 2026 GMT Not After : Jan 31 15:06:03 2026 GMT Subject: CN=6974dfdc-6520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:28:7e:cf:37:af:bd:22:7b:a6:5f:77:be:7c: 24:94:69:f8:00:e3:b5:d7:dd:93:29:3b:7c:79:e4: e2:5b:97:6c:81:4b:45:ea:c6:24:07:eb:3f:ba:a8: e2:7c:a9:95:05:e1:47:5d:d4:71:a8:bb:0c:7b:f4: 35:5d:4b:3e:ed:b8:40:79:25:f0:4b:a2:33:7a:71: af:7c:9c:b6:c5:7f:92:c3:ca:2d:b6:b5:12:d3:dc: 7b:a0:d0:95:46:bb:f3:f2:4b:c6:ea:ab:03:fb:31: 9e:0c:ea:1c:55:c7:0a:ed:bf:24:6a:26:f5:93:62: 82:48:24:d5:61:ab:c9:0a:b5:90:c7:05:b8:97:cc: 99:cf:ed:d7:fe:2b:43:b4:19:41:d5:9c:3d:b9:0f: d4:cd:28:8d:ce:15:ee:3b:bc:19:ed:b3:16:44:f4: 86:3e:0d:4f:d4:c2:83:c7:26:f5:e7:79:52:e1:69: ab:a9:c4:d8:80:73:43:35:3b:43:8e:96:db:bb:ad: fc:0c:54:85:26:ce:fd:7a:44:c2:8b:1f:ce:d3:9e: 40:92:97:1b:1a:14:2c:c3:fe:37:71:34:28:d2:99: 5b:64:39:5d:9c:99:4a:44:88:57:09:15:e5:dd:20: f7:31:07:8b:cc:fa:60:39:3c:82:8e:00:d0:6b:41: 0b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:58:4A:2F:F7:AC:27:59:E8:E8:46:CC:9D:1C:2C:C6:5F:BC:E4:1A X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:b4:5a:dc:2e:f5:4a:c9:91:52:8f:ae:86:30:ae:57:c4:77: b5:14:a0:1d:f4:82:bf:2f:91:6c:60:b0:39:da:04:e3:b5:fe: 12:bf:33:74:dd:2d:67:d6:a3:8a:84:67:5a:3b:7e:b2:50:bb: a6:0a:85:73:29:c8:f8:94:05:04:36:ee:28:c0:80:91:21:18: d0:82:29:a9:01:0c:10:d0:ac:30:ec:98:74:6d:0c:2f:06:30: e7:32:bc:0c:3c:d3:40:2b:a8:f0:97:30:c2:f3:c3:20:72:f0: 5b:4a:9d:57:e7:24:09:ab:0b:ba:ec:7d:e7:1c:2a:b7:74:6f: 0b:56:aa:2b:59:22:9e:8a:74:d1:85:d9:ae:05:c7:e9:36:7d: 19:c2:ad:cc:3c:f2:5a:7a:ef:d3:83:ca:ff:1c:be:be:ec:b9: c8:6c:f3:3e:e1:99:0f:22:7a:3f:ad:f6:e6:99:a4:f5:63:47: 20:94:44:9b:94:7d:1a:4e:ff:bc:a6:be:67:57:2f:db:69:d6: d8:1e:30:0e:af:5e:cd:1b:7e:1b:bb:ae:e2:20:d1:21:ab:14: a1:64:5b:53:92:7c:59:30:cc:56:0b:1a:25:a8:27:ab:42:8f: db:bb:4f:d9:3b:7e:6f:62:b0:7d:10:46:33:03:8a:09:29:65: a7:2d:af:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjYwMTI0MTUwNjAzWhcNMjYwMTMxMTUwNjAzWjAYMRYwFAYD VQQDDA02OTc0ZGZkYy02NTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCh+zzevvSJ7pl93vnwklGn4AOO1192TKTt8eeTiW5dsgUtF6sYkB+s/uqji fKmVBeFHXdRxqLsMe/Q1XUs+7bhAeSXwS6IzenGvfJy2xX+Sw8ottrUS09x7oNCV Rrvz8kvG6qsD+zGeDOocVccK7b8kaib1k2KCSCTVYavJCrWQxwW4l8yZz+3X/itD tBlB1Zw9uQ/UzSiNzhXuO7wZ7bMWRPSGPg1P1MKDxyb153lS4WmrqcTYgHNDNTtD jpbbu638DFSFJs79ekTCix/O055AkpcbGhQsw/43cTQo0plbZDldnJlKRIhXCRXl 3SD3MQeLzPpgOTyCjgDQa0ELnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBYSi/3 rCdZ6OhGzJ0cLMZfvOQaMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAztFrcLvVKyZFSj66GMK5XxHe1FKAd9IK/L5FsYLA52gTjtf4SvzN0 3S1n1qOKhGdaO36yULumCoVzKcj4lAUENu4owICRIRjQgimpAQwQ0Kww7Jh0bQwv BjDnMrwMPNNAK6jwlzDC88MgcvBbSp1X5yQJqwu67H3nHCq3dG8LVqorWSKeinTR hdmuBcfpNn0Zwq3MPPJaeu/Tg8r/HL6+7LnIbPM+4ZkPIno/rfbmmaT1Y0cglESb lH0aTv+8pr5nVy/badbYHjAOr17NG34bu67iINEhqxShZFtTknxZMMxWCxolqCer Qo/bu0/ZO35vYrB9EEYzA4oJKWWnLa8R -----END CERTIFICATE-----Generated at Sun Jan 25 12:33:38 2026 by rpki-client