This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: eQ/ucG8fq0rW7qYdT/4Nlk9CshYB3MyThotygwEBqoM= Subject key identifier: 94:65:8C:6D:0B:4F:EA:71:73:41:8B:73:FB:67:99:94:E8:7A:B3:74 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 0502 Signing time: Sat 24 Jan 2026 22:53:20 +0000 Manifest this update: Sat 24 Jan 2026 22:53:19 +0000 Manifest next update: Sat 31 Jan 2026 22:53:19 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: UCUpKFxnHTxhq25ES1xC6d3sNHFYYtcVjJt0tbfyIlU=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Jan 24 22:53:19 2026 GMT Not After : Jan 31 22:53:19 2026 GMT Subject: CN=69754d5f-94db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3b:88:8b:e1:17:f9:76:bd:db:dc:70:e3:93: 89:d1:02:f0:97:45:1b:7e:2f:5f:69:98:44:4b:97: c9:21:1a:88:ef:73:54:12:15:cb:0a:35:04:cc:e6: 47:91:f1:9a:f9:3d:ae:8d:fe:4e:18:2b:e9:8d:cc: 61:85:58:d7:14:21:55:20:45:15:c2:27:b3:8f:4c: bf:30:b6:44:eb:25:e0:33:49:f0:73:71:98:c4:12: da:9a:6e:26:34:d9:41:5a:9e:5d:22:ed:ac:f0:26: 90:d0:42:51:9e:d3:3c:54:09:f0:e3:dc:5f:84:21: e7:49:6c:2d:f2:28:38:cb:34:c5:10:e7:7b:ec:fe: 62:d9:30:63:29:59:4b:86:d0:3c:61:a6:e7:8c:7c: 42:4a:55:f1:0d:a9:37:0b:f2:94:d6:95:0b:44:09: 14:4f:a3:75:c0:69:28:4a:4b:1f:f5:98:2f:8a:f5: fb:0b:bf:88:7d:62:99:bc:67:1a:ae:1f:bf:c5:d6: 43:02:2f:48:31:f4:f2:aa:81:6d:ea:42:20:1a:03: 8e:f8:b9:cf:61:9f:6e:6a:a6:a8:eb:8c:1c:d3:9d: 9e:be:6f:1f:ca:19:ef:60:de:47:18:2a:6d:c0:9b: ea:45:7f:ec:cf:68:66:c2:c6:75:3e:28:8c:72:c5: 4e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:65:8C:6D:0B:4F:EA:71:73:41:8B:73:FB:67:99:94:E8:7A:B3:74 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:53:3b:58:eb:f3:35:85:49:99:40:27:bb:cf:94:39:99:43: c8:a2:3e:2a:56:27:d3:63:7d:87:17:3d:83:8c:4c:5f:c5:40: fb:f4:c0:92:23:5e:66:9b:59:5e:7e:07:80:1f:e0:ad:70:70: ab:4a:56:ea:69:9a:cd:1a:ba:b7:1c:2b:8b:53:aa:85:e0:b0: 0e:fd:ac:2c:fc:e7:d9:71:a4:db:6a:04:42:27:35:6f:42:c5: 5a:ef:8d:df:1b:8c:4d:6a:a1:04:db:53:c7:50:69:49:4a:ac: 9b:f2:45:77:f0:e3:0f:5e:b3:15:b3:b8:a3:54:70:47:1d:30: 52:45:6f:44:0f:09:ca:0c:e4:b5:77:ea:86:ac:71:46:4e:df: 0f:13:eb:69:8e:f5:bd:7a:0f:c2:3b:da:9c:7e:f7:8d:49:66: 8d:9d:26:64:d0:08:ba:32:c7:47:f8:6d:e4:63:4f:00:e9:a1: 45:e7:21:3a:35:64:4e:72:bd:e9:06:05:b6:3c:7d:02:3c:3b: ba:c3:ec:96:02:50:8c:69:70:ad:40:a5:a5:30:c1:6c:55:1e: a8:5e:8d:d8:2b:f8:3f:91:41:f7:70:cd:ec:3f:b3:29:e9:52: ed:fa:f3:e3:4d:fc:50:f9:98:2f:ff:5a:6c:b1:8a:da:a2:f0: 19:6c:9e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjYwMTI0MjI1MzE5WhcNMjYwMTMxMjI1MzE5WjAYMRYwFAYD VQQDDA02OTc1NGQ1Zi05NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzuIi+EX+Xa929xw45OJ0QLwl0Ubfi9faZhES5fJIRqI73NUEhXLCjUEzOZH kfGa+T2ujf5OGCvpjcxhhVjXFCFVIEUVwiezj0y/MLZE6yXgM0nwc3GYxBLamm4m NNlBWp5dIu2s8CaQ0EJRntM8VAnw49xfhCHnSWwt8ig4yzTFEOd77P5i2TBjKVlL htA8YabnjHxCSlXxDak3C/KU1pULRAkUT6N1wGkoSksf9ZgvivX7C7+IfWKZvGca rh+/xdZDAi9IMfTyqoFt6kIgGgOO+LnPYZ9uaqao64wc052evm8fyhnvYN5HGCpt wJvqRX/sz2hmwsZ1PiiMcsVOdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRljG0L T+pxc0GLc/tnmZToerN0MB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuUztY6/M1hUmZQCe7z5Q5mUPIoj4qVifTY32HFz2DjExfxUD79MCS I15mm1lefgeAH+CtcHCrSlbqaZrNGrq3HCuLU6qF4LAO/aws/OfZcaTbagRCJzVv QsVa743fG4xNaqEE21PHUGlJSqyb8kV38OMPXrMVs7ijVHBHHTBSRW9EDwnKDOS1 d+qGrHFGTt8PE+tpjvW9eg/CO9qcfveNSWaNnSZk0Ai6MsdH+G3kY08A6aFF5yE6 NWROcr3pBgW2PH0CPDu6w+yWAlCMaXCtQKWlMMFsVR6oXo3YK/g/kUH3cM3sP7Mp 6VLt+vPjTfxQ+Zgv/1pssYraovAZbJ7w -----END CERTIFICATE-----Generated at Sun Jan 25 14:11:02 2026 by rpki-client