This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft File: Ol4QKeZcY2gSMttn2AU90vaU5h8.mft (raw, json) Hash identifier: nyYNR2hEW+Edijdlqzcj8zCitSPM7cRpU59deMeSMZI= Subject key identifier: 1C:9C:4D:D0:F0:5A:01:45:77:0D:5F:36:5E:A5:43:FF:60:34:9A:22 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft Manifest number: BD Signing time: Sun 25 Jan 2026 05:10:39 +0000 Manifest this update: Sun 25 Jan 2026 05:10:39 +0000 Manifest next update: Sun 01 Feb 2026 05:10:39 +0000 Files and hashes: 1: Ol4QKeZcY2gSMttn2AU90vaU5h8.crl (hash: DhvRdsBKp/V+xO5KD+4i8d6YxbdqPoBtXc4Ku2JMXJ8=) 2: 3154E9E8993A11F0837A6E45C4F9AE02.roa (hash: kx9lWNj7NgSUFsuMfRCJDT7t5wBdkdtWpvVdEqQ2TDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: Jan 25 05:10:39 2026 GMT Not After : Feb 1 05:10:39 2026 GMT Subject: CN=6975a5cf-38c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bb:9b:7c:0a:25:1a:5d:24:c4:3e:e0:37:fe: 4b:15:87:c6:cb:be:7d:eb:ca:db:76:95:77:97:99: 3c:62:33:07:09:af:6b:b1:e9:47:67:a7:0b:44:35: 5b:05:3c:11:f4:1a:4e:5f:71:71:ef:15:66:39:97: eb:c0:e0:02:cd:85:69:2a:8f:bb:63:66:a1:37:a4: 60:61:9d:50:31:66:f6:59:e3:b8:c4:36:2b:4d:00: e0:8b:b9:ed:ce:18:8d:ef:79:c8:31:48:3d:8d:6f: 05:4c:be:76:42:26:92:a9:5a:b5:a4:af:f7:7b:50: 5e:41:85:12:99:5d:8f:9d:a1:6b:2f:3e:a3:4a:a2: 78:c0:0e:46:6d:cd:37:04:00:b4:70:50:02:40:b9: d1:5b:3e:09:11:fe:7d:ab:2f:52:79:b2:81:81:7a: f9:9a:8a:0f:cf:68:01:d1:24:5e:bb:e0:4b:e5:73: 93:9d:a0:c7:98:2d:7a:7a:6c:89:5a:7b:4b:a8:f2: 47:f0:b2:ac:43:47:77:4f:e2:5a:d1:61:21:6b:6f: 37:c5:53:49:4e:b1:89:a4:8c:00:ac:29:30:5d:09: 5a:b9:7f:62:a9:49:75:a3:0d:b8:c1:93:47:5f:89: 8f:2c:63:4f:04:4b:38:ca:e8:40:f9:f3:bf:88:4f: 5b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9C:4D:D0:F0:5A:01:45:77:0D:5F:36:5E:A5:43:FF:60:34:9A:22 X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b2:35:c6:59:36:89:58:c2:d0:fc:de:b7:1d:79:6d:80:16: 8f:8f:a2:f8:35:c5:e9:2a:81:a7:5a:37:c3:55:bc:ed:cd:cc: fd:d5:ff:1a:31:1b:ed:3c:5d:42:53:14:db:11:ee:20:a3:a0: 24:62:47:e2:86:aa:2c:a3:32:41:82:be:dd:80:60:53:cd:ea: 21:17:86:88:1b:1e:1c:4c:b3:e3:21:9d:1c:0c:44:56:03:d3: 41:fc:28:4a:37:eb:5b:18:43:74:ab:ec:3c:00:a5:6f:f7:a9: d4:98:ab:c0:c0:dd:36:c7:20:3d:3c:80:52:f5:30:6f:2d:9b: c7:6c:e2:80:8d:58:0c:26:31:5f:c0:82:38:7c:60:7c:bd:98: 70:23:63:5f:d8:23:f6:4d:89:2e:60:0c:b6:d5:c7:cf:45:1f: e1:fa:59:7b:a6:8a:8f:44:03:62:5d:a5:c3:c3:82:bf:7d:7f: 24:1a:11:69:10:2f:d8:2f:95:b1:4c:17:77:92:06:ba:c7:99: e8:5f:f9:c6:b4:3f:a7:56:ac:02:3e:74:ff:ac:6c:7d:80:9c: 8e:54:8f:db:63:5b:07:c2:cd:67:cf:54:d3:f2:39:28:04:68: 96:3a:08:35:88:a6:1a:9b:eb:6f:2f:6e:86:fe:c1:e6:00:83: 1c:18:d7:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQzUxMTAvBgNVBAUTKDNBNUUxMDI5RTY1QzYzNjgxMjMyREI2N0Q4MDUzREQy RjY5NEU2MUYwHhcNMjYwMTI1MDUxMDM5WhcNMjYwMjAxMDUxMDM5WjAYMRYwFAYD VQQDDA02OTc1YTVjZi0zOGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bubfAolGl0kxD7gN/5LFYfGy75968rbdpV3l5k8YjMHCa9rselHZ6cLRDVb BTwR9BpOX3Fx7xVmOZfrwOACzYVpKo+7Y2ahN6RgYZ1QMWb2WeO4xDYrTQDgi7nt zhiN73nIMUg9jW8FTL52QiaSqVq1pK/3e1BeQYUSmV2PnaFrLz6jSqJ4wA5Gbc03 BAC0cFACQLnRWz4JEf59qy9SebKBgXr5mooPz2gB0SReu+BL5XOTnaDHmC16emyJ WntLqPJH8LKsQ0d3T+Ja0WEha283xVNJTrGJpIwArCkwXQlauX9iqUl1ow24wZNH X4mPLGNPBEs4yuhA+fO/iE9bbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBycTdDw WgFFdw1fNl6lQ/9gNJoiMB8GA1UdIwQYMBaAFDpeECnmXGNoEjLbZ9gFPdL2lOYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVDNS84MjMzNUEyMEQ5 NUExMUVGQTAyRkI0NkZDNEY5QUUwMi9PbDRRS2VaY1kyZ1NNdHRuMkFVOTB2YVU1 aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVDNS84MjMzNUEyMEQ5NUExMUVGQTAyRkI0NkZDNEY5QUUwMi9PbDRRS2VaY1ky Z1NNdHRuMkFVOTB2YVU1aDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAasjXGWTaJWMLQ/N63HXltgBaPj6L4NcXpKoGnWjfDVbztzcz91f8a MRvtPF1CUxTbEe4go6AkYkfihqosozJBgr7dgGBTzeohF4aIGx4cTLPjIZ0cDERW A9NB/ChKN+tbGEN0q+w8AKVv96nUmKvAwN02xyA9PIBS9TBvLZvHbOKAjVgMJjFf wII4fGB8vZhwI2Nf2CP2TYkuYAy21cfPRR/h+ll7poqPRANiXaXDw4K/fX8kGhFp EC/YL5WxTBd3kga6x5noX/nGtD+nVqwCPnT/rGx9gJyOVI/bY1sHws1nz1TT8jko BGiWOgg1iKYam+tvL26G/sHmAIMcGNdO -----END CERTIFICATE-----Generated at Sun Jan 25 22:37:01 2026 by rpki-client