This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: YejwDu+alRZVWQtKvTC+rpRgVmLz1RuNUYmL0oDDLYI= Subject key identifier: 0B:28:3A:67:2D:0B:98:32:F5:95:48:29:6A:61:BE:F2:70:9A:4A:8C Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 351B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 350B Signing time: Sat 24 Jan 2026 14:25:06 +0000 Manifest this update: Sat 24 Jan 2026 14:25:05 +0000 Manifest next update: Sat 31 Jan 2026 14:25:05 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: YaFM54AWykBKr1BthjhtEAOSsalWeQ+MjWfyY1rid0g=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13595 (0x351b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Jan 24 14:25:05 2026 GMT Not After : Jan 31 14:25:05 2026 GMT Subject: CN=6974d642-f0ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7c:23:d5:98:24:61:1d:53:00:96:e0:92:cc: aa:2f:ff:6a:39:60:55:e6:63:6b:e2:7e:80:72:2b: 82:35:84:0c:81:34:51:63:43:d3:b7:f0:26:43:33: a2:b2:56:1b:ef:43:3a:7b:30:90:54:f9:a7:29:06: 2a:6d:fa:14:39:e8:34:e3:27:e3:99:c9:a2:df:21: d9:13:01:f0:91:a3:ae:0a:6d:06:f3:c5:3e:a2:cc: c0:40:9c:d0:45:d2:14:9d:81:8d:db:fe:f6:c6:6e: 40:f3:49:74:d5:2e:be:13:90:75:68:59:15:9b:60: 4f:b7:51:d7:f9:19:74:04:f5:3e:15:82:40:8b:58: 3c:b1:3d:19:d4:f9:ae:14:e2:cb:cb:d2:7f:9e:77: 47:67:5e:05:d3:91:3f:7d:b9:dc:f8:1c:6d:25:e4: e8:b5:22:cc:bc:49:d5:20:74:e1:23:c9:ca:a3:85: ce:b2:74:7d:ed:ca:f0:77:28:bc:08:65:6e:e4:66: 4d:07:45:8a:e4:9f:19:1d:c2:24:25:7f:ad:27:6c: 7a:b6:33:27:c8:1d:74:61:3d:58:8f:fa:b8:3b:af: d2:1e:c3:f4:7d:38:77:ea:c4:db:42:d8:29:e0:19: d0:94:c4:37:72:d1:b2:92:8b:37:8f:49:37:de:79: 75:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:28:3A:67:2D:0B:98:32:F5:95:48:29:6A:61:BE:F2:70:9A:4A:8C X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:92:29:ab:df:00:96:60:dd:3e:3e:28:5c:1e:2c:86:dd:ec: 73:ba:c9:eb:2d:bb:3a:ea:35:0b:02:f0:d3:6f:b1:57:e7:dd: e4:91:7f:ed:cd:96:1c:eb:0b:e0:d5:83:6e:14:75:87:e3:82: 2e:09:f2:21:e7:6d:3d:e0:5e:eb:1e:64:57:8e:b7:05:bc:60: 9c:a4:8a:9e:22:04:3d:8f:0d:90:e1:ed:f3:3a:91:0f:d3:69: 99:2a:c4:28:7d:10:37:3b:51:ae:d2:09:6e:2f:7c:cf:f0:12: 42:42:c8:0a:bc:5e:33:79:c6:70:85:dd:fa:e0:9f:9d:03:8b: 3c:12:82:fc:0f:b8:44:cd:b1:71:6b:53:82:a5:5f:bb:83:c2: 74:0d:1a:d3:fc:bc:e7:d4:5d:09:eb:46:5b:5a:a9:d5:fb:27: 7a:32:68:4b:5f:39:9f:2e:e9:1a:f3:2a:ed:67:b2:67:22:52: 7b:8a:06:b7:16:c1:56:e6:60:10:17:a0:d7:0e:87:ff:4e:49: e3:ce:29:8c:cb:77:ed:94:18:ba:56:b9:e4:6c:31:18:27:0f: 97:95:7b:b7:cb:3b:b8:d4:d3:27:b4:b9:bd:a0:cd:49:60:85: cd:71:c4:be:05:de:3f:ce:a5:44:c1:02:83:f4:1f:a7:8c:e4: a0:f6:a8:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjYwMTI0MTQyNTA1WhcNMjYwMTMxMTQyNTA1WjAYMRYwFAYD VQQDDA02OTc0ZDY0Mi1mMGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHwj1ZgkYR1TAJbgksyqL/9qOWBV5mNr4n6AciuCNYQMgTRRY0PTt/AmQzOi slYb70M6ezCQVPmnKQYqbfoUOeg04yfjmcmi3yHZEwHwkaOuCm0G88U+oszAQJzQ RdIUnYGN2/72xm5A80l01S6+E5B1aFkVm2BPt1HX+Rl0BPU+FYJAi1g8sT0Z1Pmu FOLLy9J/nndHZ14F05E/fbnc+BxtJeTotSLMvEnVIHThI8nKo4XOsnR97crwdyi8 CGVu5GZNB0WK5J8ZHcIkJX+tJ2x6tjMnyB10YT1Yj/q4O6/SHsP0fTh36sTbQtgp 4BnQlMQ3ctGykos3j0k33nl1LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsoOmct C5gy9ZVIKWphvvJwmkqMMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8kimr3wCWYN0+PihcHiyG3exzusnrLbs66jULAvDTb7FX593kkX/t zZYc6wvg1YNuFHWH44IuCfIh52094F7rHmRXjrcFvGCcpIqeIgQ9jw2Q4e3zOpEP 02mZKsQofRA3O1Gu0gluL3zP8BJCQsgKvF4zecZwhd364J+dA4s8EoL8D7hEzbFx a1OCpV+7g8J0DRrT/Lzn1F0J60ZbWqnV+yd6MmhLXzmfLuka8yrtZ7JnIlJ7iga3 FsFW5mAQF6DXDof/TknjzimMy3ftlBi6VrnkbDEYJw+XlXu3yzu41NMntLm9oM1J YIXNccS+Bd4/zqVEwQKD9B+njOSg9qhB -----END CERTIFICATE-----Generated at Sun Jan 25 11:09:22 2026 by rpki-client