This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: VgM2pVAO7Fib1I40ioQlw/SlE401wWUy3tPgeDCHu4w= Subject key identifier: CA:FD:53:17:98:37:99:8A:7C:6E:10:6F:01:12:56:0D:C5:79:4E:56 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 0504 Signing time: Sat 24 Jan 2026 16:16:06 +0000 Manifest this update: Sat 24 Jan 2026 16:16:06 +0000 Manifest next update: Sat 31 Jan 2026 16:16:06 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: Z22yTYUJC8fVeVpSM/ngAwO8d5HVt6lYWJaiFADyI5I=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Jan 24 16:16:06 2026 GMT Not After : Jan 31 16:16:06 2026 GMT Subject: CN=6974f046-1fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cc:ca:92:31:3e:7a:20:57:43:78:f2:28:fa: 8e:94:01:56:0c:cb:40:f4:2c:6b:68:91:b4:60:5b: 61:a6:b8:0e:8c:f8:3e:ce:28:85:9a:80:2e:b4:00: a2:4c:82:f0:72:58:f3:00:b5:4d:a6:dd:f5:5d:45: a5:53:c9:81:23:68:ad:d6:12:3a:b4:bf:a4:c2:cc: f0:47:f1:b2:55:a1:2f:14:73:b6:70:56:2a:38:b4: fb:67:67:67:3c:8b:74:78:12:fd:ec:fd:6e:93:6d: d1:42:b4:46:3c:81:11:bc:2e:af:fd:3e:51:59:d4: 2a:99:ea:49:71:ba:a1:c7:e0:24:d8:23:e4:69:05: 50:9c:d5:c2:83:24:43:0e:a2:2b:6e:67:77:e2:f9: 0e:5a:0b:d8:05:9d:85:3a:9a:e2:a0:70:f4:ca:93: 96:86:c7:27:35:23:b5:c8:92:91:06:a6:16:af:83: 37:a6:2c:c5:4a:84:c1:32:0e:77:a7:d5:69:e1:96: 54:6e:f9:93:c1:9c:69:15:39:8c:3e:45:dd:95:f8: eb:30:9c:c7:f1:5e:51:7a:00:c8:41:01:54:e2:36: 72:a1:6c:da:cf:8b:f6:06:df:46:8e:9e:8b:f4:3c: 87:b8:20:db:25:9f:69:99:b4:7c:ba:91:63:a1:6c: b9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FD:53:17:98:37:99:8A:7C:6E:10:6F:01:12:56:0D:C5:79:4E:56 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:72:30:6b:b7:20:39:a8:6e:b0:cd:5b:c6:85:18:05:ae:73: 30:d6:6d:d0:81:bb:e9:8e:83:e0:04:68:11:9c:9e:d0:e2:d6: 89:0d:38:86:53:36:e8:4c:4d:18:50:4f:71:02:7c:aa:4e:43: 29:9c:23:ae:4f:b0:69:3d:57:a5:8f:7c:5c:1f:57:cd:f3:7f: e4:50:ae:09:c3:8a:d7:bc:0e:54:75:c2:00:36:12:74:fe:50: 21:12:59:bb:3c:d9:c1:3c:64:f8:78:a6:ff:d2:b8:6d:81:22: c9:6a:ef:4f:29:4f:06:c7:aa:3f:bd:01:90:6a:ef:5c:26:f2: e5:56:8f:43:58:23:92:e3:f5:9b:82:ca:f9:60:10:bf:72:5d: e6:ed:cd:bd:e1:fa:3c:99:ea:4a:ef:31:ac:58:b1:b5:b9:f7: 05:54:c2:6e:27:ff:7e:c3:7f:6c:9d:44:c3:2a:6a:4c:8a:13: 09:6b:9e:67:54:c6:c0:92:4d:a1:6d:7f:f0:c7:90:99:d9:1b: 78:33:b1:c9:85:97:74:d8:f6:b1:29:b2:a8:83:56:f9:7b:d4: c3:0b:0a:91:09:43:b7:ed:c7:c3:de:7c:05:36:7c:6c:a8:05: 1e:57:80:64:af:1a:57:c7:58:cc:21:12:46:e4:ef:c7:b6:e3: 98:f1:e9:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjYwMTI0MTYxNjA2WhcNMjYwMTMxMTYxNjA2WjAYMRYwFAYD VQQDDA02OTc0ZjA0Ni0xZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MzKkjE+eiBXQ3jyKPqOlAFWDMtA9CxraJG0YFthprgOjPg+ziiFmoAutACi TILwcljzALVNpt31XUWlU8mBI2it1hI6tL+kwszwR/GyVaEvFHO2cFYqOLT7Z2dn PIt0eBL97P1uk23RQrRGPIERvC6v/T5RWdQqmepJcbqhx+Ak2CPkaQVQnNXCgyRD DqIrbmd34vkOWgvYBZ2FOprioHD0ypOWhscnNSO1yJKRBqYWr4M3pizFSoTBMg53 p9Vp4ZZUbvmTwZxpFTmMPkXdlfjrMJzH8V5RegDIQQFU4jZyoWzaz4v2Bt9Gjp6L 9DyHuCDbJZ9pmbR8upFjoWy5FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr9UxeY N5mKfG4QbwESVg3FeU5WMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0cjBrtyA5qG6wzVvGhRgFrnMw1m3QgbvpjoPgBGgRnJ7Q4taJDTiG UzboTE0YUE9xAnyqTkMpnCOuT7BpPVelj3xcH1fN83/kUK4Jw4rXvA5UdcIANhJ0 /lAhElm7PNnBPGT4eKb/0rhtgSLJau9PKU8Gx6o/vQGQau9cJvLlVo9DWCOS4/Wb gsr5YBC/cl3m7c294fo8mepK7zGsWLG1ufcFVMJuJ/9+w39snUTDKmpMihMJa55n VMbAkk2hbX/wx5CZ2Rt4M7HJhZd02PaxKbKog1b5e9TDCwqRCUO37cfD3nwFNnxs qAUeV4BkrxpXx1jMIRJG5O/HtuOY8enO -----END CERTIFICATE-----Generated at Sun Jan 25 20:12:19 2026 by rpki-client