This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: ibZzhlUKnKbiIEOfSqytxxCb5s+JnxZ6TKFV7IO8iAU= Subject key identifier: 9C:81:41:DD:CB:8F:BD:5F:D2:5B:9E:CE:D4:47:3C:C6:80:CA:5F:40 Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 0821 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 081B Signing time: Sat 24 Jan 2026 20:19:32 +0000 Manifest this update: Sat 24 Jan 2026 20:19:32 +0000 Manifest next update: Sat 31 Jan 2026 20:19:32 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: ujh//PtT2lYxFp5R70hTNRRQiZ80aMkL6jvTmkcsXAA=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 0vjWeveawuTmOaykXyNfkwKcB3pMOrOiJyr3sxNuhJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: Jan 24 20:19:32 2026 GMT Not After : Jan 31 20:19:32 2026 GMT Subject: CN=69752954-a3c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:10:7a:9e:8c:8e:0a:51:97:11:a4:53:6c: 6d:fe:6d:ec:1a:93:98:56:e8:b8:af:27:08:03:03: 90:f3:d4:4f:ba:0c:e9:ce:fb:92:69:ee:d6:a6:8c: c3:40:03:7d:ca:c7:4e:a5:8c:25:54:7f:a7:45:e6: 5a:e2:25:e9:52:95:8a:10:da:29:bd:68:ec:47:38: 1d:8c:73:43:5f:46:95:5a:73:e5:7c:d1:bc:52:90: 77:3d:bb:10:ca:4a:de:9d:71:6b:26:16:f8:44:69: 6f:ad:db:6f:bd:11:4b:79:04:80:0a:c5:fb:69:df: 47:8e:2c:52:de:8b:8c:6c:f5:5a:83:e1:7f:ac:5a: e5:fe:4d:59:3d:87:ee:c6:61:ff:dd:f2:54:36:c7: 92:b6:9e:ee:82:fa:9f:e5:2b:4a:ea:af:f7:9e:05: 9f:7e:30:53:93:05:49:92:42:35:8b:bb:51:87:a8: 33:ad:17:f8:95:c6:83:82:01:02:a6:0b:36:7a:7a: b2:22:ac:1a:e1:63:c3:a7:01:34:a0:55:a1:c9:89: d0:cb:24:7e:60:b1:ff:2f:ea:a4:98:80:2e:77:84: 68:96:11:f5:28:a6:1a:89:cf:9c:a6:39:ad:1b:50: f7:7a:6e:97:81:cb:32:74:9a:93:5a:4e:ee:54:df: c4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:81:41:DD:CB:8F:BD:5F:D2:5B:9E:CE:D4:47:3C:C6:80:CA:5F:40 X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:9e:ef:85:2c:f7:2c:ff:fa:25:8c:ae:15:fa:82:5f:96:6f: 7c:6f:c8:de:87:59:cf:b5:e3:61:cc:3d:77:4a:ec:1e:65:f2: 6c:aa:fc:dd:15:a6:a1:b8:4a:6f:eb:bd:2e:8c:d2:61:c8:6b: e9:22:22:79:6b:30:87:f4:3d:d5:fc:c4:28:b6:7a:49:2b:4f: 47:69:cd:9c:cb:5a:da:82:8a:62:b5:a4:95:0a:0e:a5:77:97: 76:3c:70:68:05:20:5e:97:90:86:0a:bf:8c:37:32:72:06:58: fb:ad:f9:7b:27:05:b8:55:95:f5:f0:bd:d1:ac:2f:97:98:c2: ff:c5:8b:6a:6b:a7:cf:a1:9a:b6:45:56:73:9d:1a:4d:18:49: f7:84:9a:97:00:cd:92:10:4e:a5:44:0b:fc:50:48:cb:7f:ef: d2:80:b4:1c:d8:78:4c:a3:95:fd:42:86:c8:8c:29:fd:09:43: 17:31:c4:c5:73:6f:d4:42:4c:ab:6c:d0:b0:43:21:80:a2:96: 3d:e5:6f:b4:f3:f6:81:99:82:c3:69:4d:36:8a:9c:2a:7f:5d: 9a:6e:70:fb:9d:88:1c:f6:dd:3b:c6:27:3c:96:c3:a5:20:4d: 91:14:b7:d0:2a:25:d8:59:93:1d:54:55:b5:43:49:62:3c:44: 5e:28:ce:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjYwMTI0MjAxOTMyWhcNMjYwMTMxMjAxOTMyWjAYMRYwFAYD VQQDDA02OTc1Mjk1NC1hM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0sQep6MjgpRlxGkU2xt/m3sGpOYVui4rycIAwOQ89RPugzpzvuSae7WpozD QAN9ysdOpYwlVH+nReZa4iXpUpWKENopvWjsRzgdjHNDX0aVWnPlfNG8UpB3PbsQ ykrenXFrJhb4RGlvrdtvvRFLeQSACsX7ad9HjixS3ouMbPVag+F/rFrl/k1ZPYfu xmH/3fJUNseStp7ugvqf5StK6q/3ngWffjBTkwVJkkI1i7tRh6gzrRf4lcaDggEC pgs2enqyIqwa4WPDpwE0oFWhyYnQyyR+YLH/L+qkmIAud4RolhH1KKYaic+cpjmt G1D3em6XgcsydJqTWk7uVN/EtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyBQd3L j71f0lueztRHPMaAyl9AMB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmnu+FLPcs//oljK4V+oJflm98b8jeh1nPteNhzD13SuweZfJsqvzd FaahuEpv670ujNJhyGvpIiJ5azCH9D3V/MQotnpJK09Hac2cy1ragopitaSVCg6l d5d2PHBoBSBel5CGCr+MNzJyBlj7rfl7JwW4VZX18L3RrC+XmML/xYtqa6fPoZq2 RVZznRpNGEn3hJqXAM2SEE6lRAv8UEjLf+/SgLQc2HhMo5X9QobIjCn9CUMXMcTF c2/UQkyrbNCwQyGAopY95W+08/aBmYLDaU02ipwqf12abnD7nYgc9t07xic8lsOl IE2RFLfQKiXYWZMdVFW1Q0liPEReKM5V -----END CERTIFICATE-----Generated at Sun Jan 25 08:08:53 2026 by rpki-client