This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: lHS4vQKLX7r647IIvzc4+bKOjJHEi2sHmbxbcyec0hM= Subject key identifier: 2B:74:FF:FE:AB:26:E2:85:09:D8:7E:51:74:C5:A3:94:3A:D3:C4:39 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 0185 Signing time: Sun 25 Jan 2026 02:57:58 +0000 Manifest this update: Sun 25 Jan 2026 02:57:58 +0000 Manifest next update: Sun 01 Feb 2026 02:57:58 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: 8yyQ3ZQIhkkFkNWgN0NN1ZvaE+UpsSRVaZ6fOo3RNNY=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: o3gzQfsgkhYyTiyDY0PiWkPRF0sSCXlHLqcLBoAqtO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Jan 25 02:57:58 2026 GMT Not After : Feb 1 02:57:58 2026 GMT Subject: CN=697586b6-868a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a9:bc:e6:af:4b:aa:1e:ed:e3:7e:b8:91:24: 8a:77:76:71:35:8b:e3:1d:73:64:4f:a7:82:fa:f3: 3e:04:ab:5d:cb:3b:86:3d:4e:7d:63:b8:92:42:88: 10:13:1b:33:f5:f4:d5:57:26:29:1e:cb:db:70:11: ee:f4:2e:32:77:4c:66:d7:12:a9:26:12:8f:c5:ae: d3:2b:ac:e7:0d:eb:ba:51:1b:c8:b6:1a:f5:4f:3b: d8:6e:38:87:71:5b:0d:41:d6:b2:70:4d:82:9d:79: cb:72:87:54:19:ce:50:b9:93:1c:dd:6b:30:ca:57: 7d:8b:44:9a:87:e7:82:b2:7f:44:f4:ad:61:68:6a: 37:ea:13:e6:ab:ec:17:7f:7e:bb:59:5e:4f:e1:76: 0c:2a:24:fd:68:ff:68:85:63:8a:19:d7:ac:e4:35: fd:b2:70:60:05:b8:95:f8:f3:fa:61:2c:1d:e7:7f: 76:3a:b2:0b:a0:3d:2a:be:a5:09:e0:e2:16:7c:c1: 10:3f:4f:d8:5d:18:23:53:ee:f8:d4:d9:77:fb:b6: 13:b3:aa:9c:6d:15:a1:85:59:58:66:06:c4:e4:2e: 66:3c:9e:f4:a9:c8:50:32:07:9c:05:e1:e9:f6:9f: dd:4a:25:a0:89:db:8c:98:d1:19:b6:48:f8:32:39: aa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:74:FF:FE:AB:26:E2:85:09:D8:7E:51:74:C5:A3:94:3A:D3:C4:39 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:8f:a8:86:1b:5c:6d:71:60:ac:6f:33:6a:5e:09:51:64:8b: bd:56:d7:d8:7a:f6:16:54:53:4a:1a:68:64:1d:80:a8:ec:d7: e3:ab:cf:99:4b:bd:6d:4e:f0:cc:a2:7d:ba:4c:92:d6:36:a7: d1:fe:0f:04:00:1f:a2:8a:f4:58:41:5d:63:8d:ab:db:74:88: 02:0c:1d:51:3c:a8:a8:e2:37:17:6a:31:53:74:93:53:03:d0: 6e:4b:fd:1e:32:37:d6:98:38:8a:3f:77:2e:94:31:bd:0f:be: fb:03:62:8d:39:dc:6a:43:97:23:19:59:53:bd:51:78:4c:aa: e8:6f:bb:d8:26:93:3e:2e:84:fa:37:3b:e1:52:eb:95:6e:23: e7:5d:59:ca:46:45:a2:2b:24:44:27:31:36:9a:ab:16:5d:c4: e0:bf:26:68:02:92:3f:ef:11:95:3b:60:2c:35:64:08:64:a2: c4:70:56:9d:a7:d9:57:1e:69:80:19:94:14:6b:31:a6:c9:74: b9:46:76:91:f9:74:92:f4:5d:32:1a:96:e2:bb:1b:98:89:53: f7:01:aa:9a:57:4f:7a:0b:79:b8:2b:91:f3:a7:dd:8c:d9:e1: cc:4c:8f:33:4a:e8:91:c8:0b:49:f7:51:8e:65:eb:17:cf:25: 91:83:1e:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjYwMTI1MDI1NzU4WhcNMjYwMjAxMDI1NzU4WjAYMRYwFAYD VQQDDA02OTc1ODZiNi04NjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qm85q9Lqh7t4364kSSKd3ZxNYvjHXNkT6eC+vM+BKtdyzuGPU59Y7iSQogQ Exsz9fTVVyYpHsvbcBHu9C4yd0xm1xKpJhKPxa7TK6znDeu6URvIthr1TzvYbjiH cVsNQdaycE2CnXnLcodUGc5QuZMc3Wswyld9i0Sah+eCsn9E9K1haGo36hPmq+wX f367WV5P4XYMKiT9aP9ohWOKGdes5DX9snBgBbiV+PP6YSwd5392OrILoD0qvqUJ 4OIWfMEQP0/YXRgjU+741Nl3+7YTs6qcbRWhhVlYZgbE5C5mPJ70qchQMgecBeHp 9p/dSiWgiduMmNEZtkj4MjmqEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt0//6r JuKFCdh+UXTFo5Q608Q5MB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnj6iGG1xtcWCsbzNqXglRZIu9VtfYevYWVFNKGmhkHYCo7Nfjq8+Z S71tTvDMon26TJLWNqfR/g8EAB+iivRYQV1jjavbdIgCDB1RPKio4jcXajFTdJNT A9BuS/0eMjfWmDiKP3culDG9D777A2KNOdxqQ5cjGVlTvVF4TKrob7vYJpM+LoT6 NzvhUuuVbiPnXVnKRkWiKyREJzE2mqsWXcTgvyZoApI/7xGVO2AsNWQIZKLEcFad p9lXHmmAGZQUazGmyXS5RnaR+XSS9F0yGpbiuxuYiVP3AaqaV096C3m4K5Hzp92M 2eHMTI8zSuiRyAtJ91GOZesXzyWRgx4y -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:05 2026 by rpki-client