This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: 0omxocTnWSZDdiESdt88B5Io0QqzIfSCSPZ52hGM6aE= Subject key identifier: 81:46:D6:6A:C3:34:0B:0F:E0:92:14:9A:F2:5D:F1:8E:7F:44:A5:AC Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0CE5 Signing time: Sat 24 Jan 2026 17:56:20 +0000 Manifest this update: Sat 24 Jan 2026 17:56:19 +0000 Manifest next update: Sat 31 Jan 2026 17:56:19 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: 2vYhQ3ZtS+yPcHvDKkNrZGaJps7yASYZHGM8EDm+LrY=) 2: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 3: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 4: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 5: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 6: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Jan 24 17:56:19 2026 GMT Not After : Jan 31 17:56:19 2026 GMT Subject: CN=697507c3-d64d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a8:c4:0e:b8:61:42:94:46:cd:06:96:2d:8f: ef:ec:76:47:f8:c5:6b:8c:95:01:ca:cc:e6:4c:48: 8c:94:8d:60:da:4c:89:83:49:f8:8d:34:a5:36:f2: 92:01:00:64:10:c2:6d:14:b6:94:a4:9c:fd:90:27: 62:9c:7a:01:b4:99:59:72:de:14:38:7f:b2:2b:87: b7:83:44:41:c4:ed:c6:02:b5:29:10:03:4e:83:59: 0b:73:75:92:a2:83:ba:6a:ab:1a:e8:94:92:b6:58: 62:9c:4f:24:98:e3:c6:22:4f:f0:30:28:f8:5a:e9: 98:6d:c4:59:1b:52:fc:01:bb:d4:4a:8c:23:74:e5: a9:1a:a3:9a:df:9d:cc:46:5f:a1:48:2b:eb:d7:45: 9b:b1:40:4c:f3:d9:bc:78:8e:5b:e2:67:79:d7:24: 12:64:21:1b:cf:1f:74:8b:37:ae:0e:1d:b3:8e:c1: 65:98:56:2d:9b:6a:37:c4:76:cd:4f:a6:3f:df:06: 4e:f2:3f:6b:83:1a:95:e9:d0:96:56:65:71:e0:14: 25:b6:01:6a:9f:96:d8:c1:65:1c:a6:a4:b8:72:c9: 2c:a9:34:1a:27:b5:25:66:45:22:17:55:66:04:39: 3f:24:9c:76:54:d7:92:b0:2f:fb:48:f4:67:a7:08: 34:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:46:D6:6A:C3:34:0B:0F:E0:92:14:9A:F2:5D:F1:8E:7F:44:A5:AC X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:83:b6:23:60:c7:99:d4:d7:46:20:84:33:4c:5d:c5:ce:1d: b8:0a:9d:bc:cc:2a:54:8f:43:98:62:fa:33:6e:06:93:ea:a3: 09:69:98:00:b9:b3:21:b7:17:59:f3:75:31:7e:d0:d3:83:bb: c3:51:59:79:7c:cf:b9:6a:ce:c3:08:06:ea:80:17:27:7f:d4: c8:d5:ef:59:99:bd:15:64:a6:ba:f3:a8:32:81:f3:f2:f1:b2: 16:ba:9c:23:97:81:ba:ff:2e:fa:67:6e:e6:ce:81:e7:36:96: 2e:e5:04:f0:81:25:3a:bc:3b:0e:e3:a6:fb:49:43:4d:e0:9f: 10:70:e2:0f:e4:d8:a3:ca:db:98:d8:ea:88:9f:0b:4b:a7:87: ca:53:20:b8:10:3f:c7:ef:44:c8:7c:eb:ec:b6:aa:dd:1c:7c: 40:8e:ac:43:92:20:a1:9e:d3:79:95:53:03:d0:8d:75:dd:f5: 12:eb:f9:05:70:7a:0c:fc:b8:b9:c9:f2:c5:97:31:cc:02:8e: 83:f5:3e:f3:a1:7a:35:a9:8c:9e:2b:51:99:f5:e5:d2:08:4a: 5e:b2:25:8f:63:98:04:5e:d7:7f:1c:a9:0e:0c:bf:fc:b7:58: 55:47:25:5f:18:2e:3d:45:e6:7c:5c:e3:57:6d:8e:3c:d2:75: 06:2f:d7:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwMTI0MTc1NjE5WhcNMjYwMTMxMTc1NjE5WjAYMRYwFAYD VQQDDA02OTc1MDdjMy1kNjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjqjEDrhhQpRGzQaWLY/v7HZH+MVrjJUByszmTEiMlI1g2kyJg0n4jTSlNvKS AQBkEMJtFLaUpJz9kCdinHoBtJlZct4UOH+yK4e3g0RBxO3GArUpEANOg1kLc3WS ooO6aqsa6JSStlhinE8kmOPGIk/wMCj4WumYbcRZG1L8AbvUSowjdOWpGqOa353M Rl+hSCvr10WbsUBM89m8eI5b4md51yQSZCEbzx90izeuDh2zjsFlmFYtm2o3xHbN T6Y/3wZO8j9rgxqV6dCWVmVx4BQltgFqn5bYwWUcpqS4csksqTQaJ7UlZkUiF1Vm BDk/JJx2VNeSsC/7SPRnpwg0/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFG1mrD NAsP4JIUmvJd8Y5/RKWsMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOg7YjYMeZ1NdGIIQzTF3Fzh24Cp28zCpUj0OYYvozbgaT6qMJaZgA ubMhtxdZ83UxftDTg7vDUVl5fM+5as7DCAbqgBcnf9TI1e9Zmb0VZKa686gygfPy 8bIWupwjl4G6/y76Z27mzoHnNpYu5QTwgSU6vDsO46b7SUNN4J8QcOIP5NijytuY 2OqInwtLp4fKUyC4ED/H70TIfOvstqrdHHxAjqxDkiChntN5lVMD0I113fUS6/kF cHoM/Li5yfLFlzHMAo6D9T7zoXo1qYyeK1GZ9eXSCEpesiWPY5gEXtd/HKkODL/8 t1hVRyVfGC49ReZ8XONXbY480nUGL9dX -----END CERTIFICATE-----Generated at Sun Jan 25 11:09:28 2026 by rpki-client