This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: TS89kh5tsZp9FO6+jMe0d/mF5i8cQhjbxSFH5yNJQOU= Subject key identifier: 7B:98:DA:81:A8:4D:97:14:04:BA:45:D3:F0:FE:E0:BD:4B:B6:40:C1 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 0108 Signing time: Fri 23 Jan 2026 04:12:40 +0000 Manifest this update: Fri 23 Jan 2026 04:12:40 +0000 Manifest next update: Fri 30 Jan 2026 04:12:40 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: ygT2RWKrEV7rL85o76LD4b+Kpl7ld5cwZWlQwbfuSIc=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 04:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Jan 23 04:12:40 2026 GMT Not After : Jan 30 04:12:40 2026 GMT Subject: CN=6972f538-ed14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2f:c2:66:19:6b:36:09:a8:cb:4d:ea:83:2b: 1e:c6:12:a8:f2:5a:94:c3:26:02:10:f8:34:cd:48: c1:fa:cd:2c:c8:32:70:5f:c2:c3:92:a5:00:d8:32: d2:7f:1a:ed:71:5e:19:23:ba:3a:40:cb:d2:e6:4b: 18:ef:23:c4:49:2d:05:7d:5a:62:4a:f3:8a:d8:cb: 38:ba:de:35:5e:2e:1a:46:87:59:31:83:18:5b:da: 9a:da:24:35:64:4c:ca:0a:fd:5b:20:bd:ba:dd:c2: f6:bc:53:47:9c:d0:f8:8e:12:e5:e0:22:cf:c2:55: 90:f8:60:0a:aa:20:c5:7f:23:3a:17:22:7e:fd:9c: ff:fb:fb:6b:f2:a2:56:64:20:d5:9e:34:fa:ac:cd: 46:5c:56:20:30:85:03:04:eb:23:bd:35:46:b6:4c: b8:c6:66:9b:cc:61:26:d5:98:64:2c:93:26:34:8d: 75:67:43:2b:c9:74:a3:9b:76:f9:cb:dc:ac:3a:d8: a7:f4:96:7c:9a:39:8d:94:4c:ee:d4:eb:0d:d5:65: b0:35:f9:b0:73:4b:57:f9:cb:49:6b:cf:d1:c9:84: 65:0f:2d:81:b1:57:e0:16:9a:38:b3:16:8b:1e:f0: a7:82:89:9f:b0:e2:21:a3:e9:32:3c:d2:e0:91:02: 22:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:98:DA:81:A8:4D:97:14:04:BA:45:D3:F0:FE:E0:BD:4B:B6:40:C1 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:04:44:eb:c7:6c:74:b8:0a:f9:a6:44:f5:7e:7f:d0:b2:71: 52:df:e9:e5:5d:c3:b2:e6:4e:aa:03:a3:f3:b9:30:f4:f3:b8: 41:7e:22:d8:4e:f5:8d:ed:c3:8f:4d:ee:56:f6:8c:ba:e4:c7: 8f:94:8b:95:13:eb:7e:02:8a:e7:ba:64:10:8a:d7:fb:18:2e: 1e:f5:44:5c:e8:c0:f2:d2:3b:ef:c9:f6:46:11:7e:76:c5:6b: 92:27:4b:29:fc:b9:45:11:d0:e2:92:11:85:ca:98:3e:39:c3: 92:71:30:3c:46:7a:92:f3:27:c0:62:35:91:e1:23:45:64:dc: 9d:df:b4:8e:42:35:9a:a8:3c:4e:74:bb:a0:5c:c3:a1:79:63: 66:f3:58:eb:6e:b9:54:01:70:1a:f8:41:f2:cd:84:e9:8f:25: 9c:16:fa:38:d7:bc:5f:ad:e8:cc:16:5a:1f:a0:6f:91:01:f1: b0:b8:64:97:6a:40:91:dc:cf:46:e3:c1:d3:81:99:4f:1a:f2: c0:8e:3c:1c:18:be:de:e7:1a:e7:35:d6:33:57:5d:83:0d:d0: 3c:9d:eb:bc:d8:f5:d6:78:e6:3f:a7:ed:d6:34:ed:54:ca:73: ba:c4:35:31:0a:00:8c:ad:56:ef:8f:a2:c6:3f:05:05:9e:1c: 07:39:52:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjYwMTIzMDQxMjQwWhcNMjYwMTMwMDQxMjQwWjAYMRYwFAYD VQQDDA02OTcyZjUzOC1lZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvS/CZhlrNgmoy03qgysexhKo8lqUwyYCEPg0zUjB+s0syDJwX8LDkqUA2DLS fxrtcV4ZI7o6QMvS5ksY7yPESS0FfVpiSvOK2Ms4ut41Xi4aRodZMYMYW9qa2iQ1 ZEzKCv1bIL263cL2vFNHnND4jhLl4CLPwlWQ+GAKqiDFfyM6FyJ+/Zz/+/tr8qJW ZCDVnjT6rM1GXFYgMIUDBOsjvTVGtky4xmabzGEm1ZhkLJMmNI11Z0MryXSjm3b5 y9ysOtin9JZ8mjmNlEzu1OsN1WWwNfmwc0tX+ctJa8/RyYRlDy2BsVfgFpo4sxaL HvCngomfsOIho+kyPNLgkQIirwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuY2oGo TZcUBLpF0/D+4L1LtkDBMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFBETrx2x0uAr5pkT1fn/QsnFS3+nlXcOy5k6qA6PzuTD087hBfiLY TvWN7cOPTe5W9oy65MePlIuVE+t+AornumQQitf7GC4e9URc6MDy0jvvyfZGEX52 xWuSJ0sp/LlFEdDikhGFypg+OcOScTA8RnqS8yfAYjWR4SNFZNyd37SOQjWaqDxO dLugXMOheWNm81jrbrlUAXAa+EHyzYTpjyWcFvo417xfrejMFlofoG+RAfGwuGSX akCR3M9G48HTgZlPGvLAjjwcGL7e5xrnNdYzV12DDdA8neu82PXWeOY/p+3WNO1U ynO6xDUxCgCMrVbvj6LGPwUFnhwHOVLZ -----END CERTIFICATE-----Generated at Sun Jan 25 02:58:59 2026 by rpki-client