This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: eK9atPpseSlURH1Fa+qJcgjlIzUmWGwGv05p33HENmo= Subject key identifier: 25:00:D6:21:5B:6C:9A:9E:8B:87:24:F7:CD:51:B5:67:A3:66:CD:8B Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0EFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0EF1 Signing time: Sat 24 Jan 2026 17:17:56 +0000 Manifest this update: Sat 24 Jan 2026 17:17:55 +0000 Manifest next update: Sat 31 Jan 2026 17:17:55 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: E0JTo+Q7ZhDWLFMaG64CCJcEKuI/aVRdXgRV5R7Vv38=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: SYw3Jz0rXQI+MxK0Af3opNrEXGOGhPmtcabIs8+EMNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3834 (0xefa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Jan 24 17:17:55 2026 GMT Not After : Jan 31 17:17:55 2026 GMT Subject: CN=6974fec3-5dbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a5:1d:c0:8a:db:e8:b4:52:46:20:93:8b:fc: 88:79:76:ce:80:4f:42:58:9e:cf:5f:c4:13:9f:e3: 46:87:38:e1:34:5c:a0:12:92:65:b0:85:73:a8:62: 20:ff:d2:9c:c5:8a:0f:c2:fc:25:5e:95:b1:78:cb: 3e:d1:0b:30:a2:b1:3a:87:fb:10:7b:ec:93:72:3f: f9:0b:5f:b5:54:05:05:01:62:08:41:eb:57:ae:5f: ab:b8:bf:e9:90:89:d5:dc:d4:bd:96:fd:7d:0f:f4: 47:16:ae:76:9f:9f:cd:7d:f8:4c:d4:9e:2f:71:4e: 28:9c:15:77:5e:ad:bb:65:cd:2d:ab:4a:7f:9b:b1: ef:ae:ba:38:bd:75:42:50:14:d2:eb:4c:ee:91:07: 17:cf:56:64:6c:c1:bc:4e:41:5d:aa:dd:a3:dc:74: f9:ee:ed:72:da:73:9c:a8:37:8e:95:7d:d1:9f:05: f3:31:02:0a:90:77:9e:0b:8b:db:be:aa:50:24:4a: 4d:31:5a:46:59:9e:8e:07:15:a4:ec:8c:9f:99:df: 5e:7c:2f:4a:02:18:14:fe:6a:7c:ec:15:69:f4:61: 86:2d:af:a6:07:28:a3:5f:63:cd:13:45:35:85:99: 36:85:fa:33:f7:09:34:b6:51:58:d6:f4:70:cf:f7: 7a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:00:D6:21:5B:6C:9A:9E:8B:87:24:F7:CD:51:B5:67:A3:66:CD:8B X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:69:b4:d2:07:3c:41:a8:8a:8c:1a:59:e1:9d:14:58:65:15: 8f:24:f6:91:b4:82:3d:48:1d:da:4f:e5:4c:e4:63:48:20:5b: 29:ac:af:82:cf:31:a6:74:d5:1c:1f:fd:6e:62:16:40:47:8d: 4a:a7:30:fd:05:90:49:f7:72:57:cc:19:f2:2c:fb:52:4c:92: ac:00:ca:4a:b8:4c:ea:08:b8:6c:ce:26:2b:b1:63:12:3d:11: 60:5f:a9:2a:74:2e:1e:2a:bf:69:11:25:dc:3f:ef:a2:9e:6c: d4:6f:06:10:59:e5:6f:aa:cf:f9:80:47:9d:a4:43:0d:54:8e: 6a:48:97:91:a0:1b:3a:12:76:8f:07:50:d7:31:b6:d5:f7:ca: 7a:8d:71:6d:b7:a5:ed:7f:d2:92:e8:c2:30:db:96:71:db:0f: 1d:5d:eb:b0:bc:f1:d8:42:98:26:58:a6:86:e6:6c:11:d5:69: 8a:05:f0:b0:35:de:88:53:60:a2:86:e6:a6:eb:ea:7a:72:3c: 1c:ff:c2:08:15:0a:0d:5d:79:c5:f0:f2:d7:e0:32:71:39:8a: ed:e0:2f:db:8f:f2:87:5d:3d:0f:3a:bd:37:23:be:c7:81:ef: a0:27:ad:ad:00:05:17:8e:57:2d:eb:de:03:fc:25:fd:d2:99: fa:0d:dd:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjYwMTI0MTcxNzU1WhcNMjYwMTMxMTcxNzU1WjAYMRYwFAYD VQQDDA02OTc0ZmVjMy01ZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6UdwIrb6LRSRiCTi/yIeXbOgE9CWJ7PX8QTn+NGhzjhNFygEpJlsIVzqGIg /9KcxYoPwvwlXpWxeMs+0QsworE6h/sQe+yTcj/5C1+1VAUFAWIIQetXrl+ruL/p kInV3NS9lv19D/RHFq52n5/NffhM1J4vcU4onBV3Xq27Zc0tq0p/m7Hvrro4vXVC UBTS60zukQcXz1ZkbMG8TkFdqt2j3HT57u1y2nOcqDeOlX3RnwXzMQIKkHeeC4vb vqpQJEpNMVpGWZ6OBxWk7Iyfmd9efC9KAhgU/mp87BVp9GGGLa+mByijX2PNE0U1 hZk2hfoz9wk0tlFY1vRwz/d6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUA1iFb bJqei4ck981RtWejZs2LMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADabTSBzxBqIqMGlnhnRRYZRWPJPaRtII9SB3aT+VM5GNIIFsprK+C zzGmdNUcH/1uYhZAR41KpzD9BZBJ93JXzBnyLPtSTJKsAMpKuEzqCLhsziYrsWMS PRFgX6kqdC4eKr9pESXcP++inmzUbwYQWeVvqs/5gEedpEMNVI5qSJeRoBs6EnaP B1DXMbbV98p6jXFtt6Xtf9KS6MIw25Zx2w8dXeuwvPHYQpgmWKaG5mwR1WmKBfCw Nd6IU2Cihuam6+p6cjwc/8IIFQoNXXnF8PLX4DJxOYrt4C/bj/KHXT0POr03I77H ge+gJ62tAAUXjlct694D/CX90pn6Dd2S -----END CERTIFICATE-----Generated at Sun Jan 25 11:17:17 2026 by rpki-client