This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: Huo7rc/EOp+Pf20F+WqkwXsxTq8BEV4y8hYeZd2k0eg= Subject key identifier: A8:A6:44:F6:E3:4B:37:54:50:C2:39:DB:BF:AD:9C:41:B5:2E:B3:4B Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 358F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3555 Signing time: Sat 24 Jan 2026 14:26:05 +0000 Manifest this update: Sat 24 Jan 2026 14:26:04 +0000 Manifest next update: Sat 31 Jan 2026 14:26:04 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: COnXSnyBgXhB/pXusl6Xb0kn6vimYiwROKK4KQwY/74=) 2: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: WwD2ymgng2bwpapBOqzMzqB6ovGRKkkTnIg+kcKI0gk=) 3: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: CQ2eYsEFmxM9THfQSK8/XWNWdFzBxVfYUFyLT6HYruk=) 4: B16ED608D4A311F09760561DC4F9AE02.roa (hash: B4GKc23CBZy7TK/8RfhCucQyxz/r6upiO0JiwG4ZWRo=) 5: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: I5t/9d1FpDA1nSsUY9DqmVb9YbxmBSs4f9ZYU3gw97M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13711 (0x358f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Jan 24 14:26:04 2026 GMT Not After : Jan 31 14:26:04 2026 GMT Subject: CN=6974d67d-6f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:88:52:ea:a8:65:b2:40:16:a1:91:40:98:7b: 62:d5:56:18:1e:5d:f2:5e:b2:17:73:8f:2d:6f:6c: 1f:6d:c2:da:be:82:2a:4b:5d:49:7e:b3:3d:2a:98: b4:b3:0f:b0:b7:a5:eb:e2:cc:ca:45:5e:08:b0:69: be:16:42:6b:eb:3f:b5:41:50:de:4c:7f:90:e7:04: e0:fe:f5:a9:69:a9:f1:92:df:ff:3e:a0:0f:74:52: 9d:99:3c:e0:bd:21:a2:ff:f2:22:bb:bd:9b:c5:3b: 4b:b7:32:3c:a8:b5:49:d6:55:fd:d9:46:b8:d1:e3: b3:25:c6:cf:30:29:38:96:c1:dc:fb:ee:41:c5:be: 67:31:f7:40:cd:9e:0b:02:7b:da:37:ce:a2:cd:96: 39:a0:f3:ad:ed:e5:86:61:d9:64:fe:61:aa:5d:9b: df:8c:35:26:3e:56:4d:bc:8e:22:88:54:bc:71:80: 16:33:ba:b6:b1:17:db:4d:07:b2:26:b9:e0:f8:24: 80:29:7e:c5:b0:a9:d8:e0:b1:ee:98:f1:c3:b8:4b: 3b:6c:f8:6c:a7:af:dd:a1:b5:86:c0:fe:4c:d8:db: d8:58:e1:0e:a0:69:e1:fe:6a:31:27:7f:f0:41:d4: 9c:ec:e7:43:ed:14:6d:93:4c:bb:3b:9a:6a:d8:76: a2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A6:44:F6:E3:4B:37:54:50:C2:39:DB:BF:AD:9C:41:B5:2E:B3:4B X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:b0:62:fd:7f:01:6e:46:af:ad:c6:20:dc:61:96:ef:49:75: e9:4a:ee:d9:a6:62:e5:be:71:a7:5f:9c:0f:ef:cf:ea:d6:3e: c2:e5:61:86:69:29:17:8c:4b:3a:cb:f0:00:a7:fa:0d:bf:11: fe:da:33:13:d4:25:b3:ba:33:ef:c3:73:8d:de:de:87:29:1d: a6:74:76:1f:3e:9d:cd:c8:91:5a:60:25:0b:8c:0f:54:c0:4d: 52:51:94:2c:77:85:52:ee:51:d7:f6:3a:00:0e:df:e0:96:f2: c9:11:15:50:f2:34:b6:13:cf:75:c8:8e:a0:e8:27:c2:bb:9e: b1:92:0e:ce:06:d7:49:12:7d:cc:3e:25:3c:81:dc:fc:3d:5e: 55:ee:47:a7:2d:70:1d:a4:63:cf:de:3f:54:98:3c:fb:43:48: 61:b0:2a:74:09:e0:45:f0:bb:c0:ab:f6:9a:56:20:db:15:f3: bd:17:50:52:2e:7d:64:cb:95:a7:49:f3:68:0e:6c:7f:7f:8d: 27:e3:cf:07:3f:8b:9a:ae:42:a8:e7:a6:aa:99:7e:f7:12:13: 54:c5:19:99:4d:17:5f:03:e0:83:8a:9a:08:6a:df:2d:1d:fd: 75:09:88:b7:c1:b8:88:05:95:5d:0e:3a:a1:79:b2:9c:a3:f0: 6f:62:66:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwMTI0MTQyNjA0WhcNMjYwMTMxMTQyNjA0WjAYMRYwFAYD VQQDDA02OTc0ZDY3ZC02ZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4hS6qhlskAWoZFAmHti1VYYHl3yXrIXc48tb2wfbcLavoIqS11JfrM9Kpi0 sw+wt6Xr4szKRV4IsGm+FkJr6z+1QVDeTH+Q5wTg/vWpaanxkt//PqAPdFKdmTzg vSGi//Iiu72bxTtLtzI8qLVJ1lX92Ua40eOzJcbPMCk4lsHc++5Bxb5nMfdAzZ4L AnvaN86izZY5oPOt7eWGYdlk/mGqXZvfjDUmPlZNvI4iiFS8cYAWM7q2sRfbTQey Jrng+CSAKX7FsKnY4LHumPHDuEs7bPhsp6/dobWGwP5M2NvYWOEOoGnh/moxJ3/w QdSc7OdD7RRtk0y7O5pq2HainwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKimRPbj SzdUUMI527+tnEG1LrNLMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPsGL9fwFuRq+txiDcYZbvSXXpSu7ZpmLlvnGnX5wP78/q1j7C5WGG aSkXjEs6y/AAp/oNvxH+2jMT1CWzujPvw3ON3t6HKR2mdHYfPp3NyJFaYCULjA9U wE1SUZQsd4VS7lHX9joADt/glvLJERVQ8jS2E891yI6g6CfCu56xkg7OBtdJEn3M PiU8gdz8PV5V7kenLXAdpGPP3j9UmDz7Q0hhsCp0CeBF8LvAq/aaViDbFfO9F1BS Ln1ky5WnSfNoDmx/f40n488HP4uarkKo56aqmX73EhNUxRmZTRdfA+CDipoIat8t Hf11CYi3wbiIBZVdDjqhebKco/BvYmZ8 -----END CERTIFICATE-----Generated at Sun Jan 25 12:10:28 2026 by rpki-client