This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: ZfwTYgQJN2Zku5x5v7BgMJM0UyOoTd2f4V6AqHu9sZM= Subject key identifier: B3:66:8C:56:F5:C9:AC:8E:EC:A2:55:48:41:7B:22:74:86:C6:14:06 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 085C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0846 Signing time: Sat 24 Jan 2026 20:10:30 +0000 Manifest this update: Sat 24 Jan 2026 20:10:29 +0000 Manifest next update: Sat 31 Jan 2026 20:10:29 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: QIJa6uLisUciRwy9hdVTRnsQ9QJ7i0qA2tngzG5mIjY=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: S/d5sEqdO01YShk4FFKSvZDJHeUngWSrU/C2gCzBq48=) 3: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: RFXFLbfPMswavWrUDead3dZJrNbmMrDVn5BBss+224o=) 4: 81E94F18F57311EA86849119C4F9AE02.roa (hash: fM2853AKKDQQAB2/Kr7iTiJjwEOnxdTuJ36kW9eGPn4=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: E13oM+sPfT/280KBw0uNWXc9bnWkj58M4pqBAZ8YZQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2140 (0x85c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Jan 24 20:10:29 2026 GMT Not After : Jan 31 20:10:29 2026 GMT Subject: CN=69752736-6dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:44:e9:2a:ba:a9:9d:dd:e4:5d:26:cf:fc:a4: dd:56:6f:6a:9d:33:dc:2f:5d:3b:1e:1d:1d:84:e0: 02:e8:16:8e:3d:32:04:5e:ee:05:c2:dc:21:61:dc: e0:51:f9:1d:37:1d:f1:ad:12:9e:e7:68:47:3d:48: e1:df:58:f2:c2:d4:9c:09:b4:26:25:b1:e7:d3:e2: de:e7:20:1a:f0:90:fa:5e:9f:98:95:d0:74:86:c3: 89:4e:14:30:f1:d8:71:ff:49:b6:67:64:41:f1:38: 24:46:aa:ca:5e:00:18:46:7e:e3:ec:b3:36:8a:ad: 3f:e5:09:14:00:1c:17:8c:77:83:98:56:fb:de:c6: 2c:96:00:79:26:fa:17:7b:74:8d:95:4a:59:2f:60: 40:5c:18:55:a9:04:54:4a:10:27:a6:df:0b:4a:97: cc:62:4b:ba:e1:b8:14:eb:e7:7d:63:ea:57:93:62: 10:52:01:a9:88:bd:81:89:c1:86:d8:a3:72:4e:5f: 3e:7b:21:b7:a9:c5:70:3e:2a:b7:0d:b9:b7:f0:50: 78:3b:bb:76:06:14:43:7e:f8:b6:b8:6c:63:b7:2e: 36:9c:47:ea:0c:f3:99:29:ef:64:23:ba:92:fc:d2: 48:b5:c6:88:bb:07:e2:a9:d0:bd:36:8f:39:48:db: 17:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:66:8C:56:F5:C9:AC:8E:EC:A2:55:48:41:7B:22:74:86:C6:14:06 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:3a:78:91:bb:a2:e4:79:b5:16:8e:e0:9c:00:95:94:b6:c6: 72:fe:c3:e3:d3:46:81:fc:15:53:5c:f5:7a:1f:53:58:80:c9: 59:ef:b7:05:82:0d:86:26:8a:63:85:44:bd:6d:e7:4a:40:8c: 07:11:77:e0:e9:dc:64:a4:f8:7b:dd:55:1e:bd:f7:c9:7a:aa: 87:61:93:96:cd:57:b8:e7:e5:ed:99:4e:f4:31:4b:ea:70:13: 52:08:71:03:eb:6d:bb:d0:51:77:b8:5a:4d:8a:92:09:f7:29: 40:c0:7c:70:b4:bd:af:2c:cb:19:77:f0:a6:d3:e5:74:b9:a7: a3:4e:61:b4:49:4d:50:ab:c1:28:43:d0:80:2d:dd:43:e7:5b: b3:9d:7d:22:8c:06:ee:7f:11:57:48:f6:0a:23:f2:f4:7a:9e: 30:7c:c6:0d:4a:49:2d:b9:f2:4d:46:38:3b:77:c1:ed:2f:5c: 53:fe:5e:74:dc:a1:c2:0c:05:fb:f8:a5:9b:19:24:fe:7b:4d: 80:94:5f:6f:63:8b:4d:44:c7:7a:c9:ae:e5:56:b8:fb:26:77: 33:c2:95:41:9e:08:ef:59:9a:54:1d:a3:ef:e9:d7:4b:10:e3: 43:9e:a8:08:b3:1d:7d:6b:bd:74:5c:23:4f:48:39:99:e9:ad: 8a:c7:8b:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjYwMTI0MjAxMDI5WhcNMjYwMTMxMjAxMDI5WjAYMRYwFAYD VQQDDA02OTc1MjczNi02ZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkTpKrqpnd3kXSbP/KTdVm9qnTPcL107Hh0dhOAC6BaOPTIEXu4FwtwhYdzg UfkdNx3xrRKe52hHPUjh31jywtScCbQmJbHn0+Le5yAa8JD6Xp+YldB0hsOJThQw 8dhx/0m2Z2RB8TgkRqrKXgAYRn7j7LM2iq0/5QkUABwXjHeDmFb73sYslgB5JvoX e3SNlUpZL2BAXBhVqQRUShAnpt8LSpfMYku64bgU6+d9Y+pXk2IQUgGpiL2BicGG 2KNyTl8+eyG3qcVwPiq3Dbm38FB4O7t2BhRDfvi2uGxjty42nEfqDPOZKe9kI7qS /NJItcaIuwfiqdC9No85SNsXqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNmjFb1 yayO7KJVSEF7InSGxhQGMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAOniRu6LkebUWjuCcAJWUtsZy/sPj00aB/BVTXPV6H1NYgMlZ77cF gg2GJopjhUS9bedKQIwHEXfg6dxkpPh73VUevffJeqqHYZOWzVe45+XtmU70MUvq cBNSCHED62270FF3uFpNipIJ9ylAwHxwtL2vLMsZd/Cm0+V0uaejTmG0SU1Qq8Eo Q9CALd1D51uznX0ijAbufxFXSPYKI/L0ep4wfMYNSkktufJNRjg7d8HtL1xT/l50 3KHCDAX7+KWbGST+e02AlF9vY4tNRMd6ya7lVrj7JnczwpVBngjvWZpUHaPv6ddL EONDnqgIsx19a710XCNPSDmZ6a2Kx4tg -----END CERTIFICATE-----Generated at Sun Jan 25 22:36:32 2026 by rpki-client