This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: RxJhJBwtVtILsPT0kvOPIYsF7HeHzmX8ziu4X+nx4sQ= Subject key identifier: C3:93:81:FC:35:4D:D0:A7:32:BF:B1:78:8A:E5:0F:BD:E0:C9:B3:F2 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F54 Signing time: Sat 24 Jan 2026 17:15:33 +0000 Manifest this update: Sat 24 Jan 2026 17:15:33 +0000 Manifest next update: Sat 31 Jan 2026 17:15:33 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: oDyYLh1o7wrfFKFdpKij9rRI0yQ/fvaOpOGgaPixRbo=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: LJ768Cu3JxipfpTsVr1alEqz1iSEePAZhcCKQ/8p8EU=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: 6UUZGVX+yz33BPFW9zj9LAK08O51N58DNxWBC06Z/8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3938 (0xf62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Jan 24 17:15:33 2026 GMT Not After : Jan 31 17:15:33 2026 GMT Subject: CN=6974fe35-4bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:ae:81:b2:da:ce:36:09:ac:73:83:45:ff: 19:4f:70:02:53:6d:ee:aa:1c:5e:53:85:dd:0b:ba: 2b:63:d0:3e:ac:e7:79:c6:b1:e7:9e:a6:09:a6:b8: 02:44:e3:e1:aa:d9:ba:8f:fb:48:5f:f8:e8:6d:74: 61:7f:19:d6:2f:fc:0a:20:34:e4:f0:fd:06:7b:e6: ec:79:55:1f:2d:98:28:6a:d6:d1:62:8f:f0:94:c5: 62:e3:56:04:a5:eb:be:bb:df:fc:87:9a:e7:5b:f3: 40:e5:64:26:4c:35:a9:12:95:6b:c5:c2:c1:e0:86: 2b:07:c4:0d:a0:30:cd:50:7a:17:1c:a4:68:90:63: a2:f1:a7:b3:ae:2c:5a:78:1a:92:d2:24:f6:38:94: d4:b3:db:83:b3:47:c0:6a:1d:3e:41:70:1f:7f:91: 76:56:19:95:c1:69:18:23:49:42:f6:ea:99:8c:d2: 4d:ff:cc:92:26:15:19:de:38:78:d4:45:01:12:6f: 42:e5:c0:e2:43:f4:2a:a7:14:54:ef:9c:80:73:cb: 5f:ea:4c:ad:1c:c1:2a:26:73:82:72:a9:01:7a:a3: 3a:6e:55:05:07:aa:e9:1a:33:9d:47:69:e7:2a:6d: 0f:18:d5:f6:4d:1c:fd:24:ce:d3:b3:cd:66:b3:49: 6d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:93:81:FC:35:4D:D0:A7:32:BF:B1:78:8A:E5:0F:BD:E0:C9:B3:F2 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:86:a9:0b:d6:b5:5d:ed:9d:77:bd:a8:2a:25:13:7f:2d:3d: c5:fb:56:1a:41:1f:0a:89:d4:06:30:0b:ad:ed:f1:78:08:9d: 22:dc:57:a9:a3:42:3f:4a:2e:49:14:60:e7:d1:0f:aa:49:f9: a3:73:4a:17:ec:8c:a2:53:57:4a:4f:66:8c:cd:27:9e:ec:51: be:5e:11:dc:e8:41:8f:c5:02:59:77:1e:3c:26:17:c4:62:42: 23:be:f4:03:8c:2d:8c:ff:c1:c6:36:cb:0b:47:c2:3f:5b:64: a3:9d:de:b4:d5:9d:48:7d:f8:f2:39:db:9f:43:86:5d:68:d8: e3:29:f0:03:99:21:f6:dc:7a:cb:7d:8a:ab:93:81:55:ad:0e: e2:63:5b:db:f7:71:9b:30:97:9b:cd:84:1e:a4:5b:a6:4e:2d: be:6e:a5:b0:70:5a:7f:96:5c:44:e6:84:f9:2d:56:66:20:ad: 87:a4:86:74:96:b8:21:57:0a:c0:ae:c7:e2:fa:b9:6a:f3:7e: 66:09:01:c8:fe:01:c0:e2:95:91:62:f4:d6:41:a5:e9:19:fb: a8:8a:64:0b:1b:19:2d:68:df:ec:cd:23:c1:da:91:5c:72:b7: ee:de:41:f6:68:ba:88:b1:89:0c:98:72:15:aa:05:24:d7:4e: 9a:4a:f7:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjYwMTI0MTcxNTMzWhcNMjYwMTMxMTcxNTMzWjAYMRYwFAYD VQQDDA02OTc0ZmUzNS00YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPiugbLazjYJrHODRf8ZT3ACU23uqhxeU4XdC7orY9A+rOd5xrHnnqYJprgC ROPhqtm6j/tIX/jobXRhfxnWL/wKIDTk8P0Ge+bseVUfLZgoatbRYo/wlMVi41YE peu+u9/8h5rnW/NA5WQmTDWpEpVrxcLB4IYrB8QNoDDNUHoXHKRokGOi8aezrixa eBqS0iT2OJTUs9uDs0fAah0+QXAff5F2VhmVwWkYI0lC9uqZjNJN/8ySJhUZ3jh4 1EUBEm9C5cDiQ/QqpxRU75yAc8tf6kytHMEqJnOCcqkBeqM6blUFB6rpGjOdR2nn Km0PGNX2TRz9JM7Ts81ms0ltEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOTgfw1 TdCnMr+xeIrlD73gybPyMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFhqkL1rVd7Z13vagqJRN/LT3F+1YaQR8KidQGMAut7fF4CJ0i3Fep o0I/Si5JFGDn0Q+qSfmjc0oX7IyiU1dKT2aMzSee7FG+XhHc6EGPxQJZdx48JhfE YkIjvvQDjC2M/8HGNssLR8I/W2Sjnd601Z1IffjyOdufQ4ZdaNjjKfADmSH23HrL fYqrk4FVrQ7iY1vb93GbMJebzYQepFumTi2+bqWwcFp/llxE5oT5LVZmIK2HpIZ0 lrghVwrArsfi+rlq835mCQHI/gHA4pWRYvTWQaXpGfuoimQLGxktaN/szSPB2pFc crfu3kH2aLqIsYkMmHIVqgUk106aSvdj -----END CERTIFICATE-----Generated at Sun Jan 25 06:14:37 2026 by rpki-client