This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: I7UQqHXl8C+BevMxwHPFvBVVToojUf6eQTlXVCLA8RA= Subject key identifier: 23:96:74:C4:C1:4B:EA:5D:B8:23:38:8D:2F:A9:FD:E7:1C:D0:8D:BA Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34FE Signing time: Sat 24 Jan 2026 14:53:10 +0000 Manifest this update: Sat 24 Jan 2026 14:53:10 +0000 Manifest next update: Sat 31 Jan 2026 14:53:10 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: Es2hKJpYxMXK0HR6wmoRqzE7O//72DSUWOFt6Tysa94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Jan 24 14:53:10 2026 GMT Not After : Jan 31 14:53:10 2026 GMT Subject: CN=6974dcd6-5226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:b7:00:79:4e:77:af:7c:0d:b9:07:90:a4: 7e:05:f5:16:38:7f:fa:a1:bb:82:c1:1d:01:de:52: 93:f0:16:91:fa:2d:f9:c3:25:bc:a3:96:2c:c2:e0: 32:f0:6b:63:41:f7:69:38:d1:12:6b:55:0a:ac:d6: 12:74:21:5c:3a:be:f4:ce:33:42:6b:f2:ac:b0:66: ee:64:96:1c:b3:34:bc:95:e4:d2:33:dd:63:5e:07: 41:22:1e:ed:8f:ea:d3:29:1e:89:8f:c1:67:29:47: 38:74:0b:73:bd:f0:1a:94:43:30:0c:28:5a:02:67: 04:fb:03:61:eb:a0:89:a6:c8:af:69:46:a0:5d:c5: d8:3c:43:ce:63:b4:42:ad:9e:46:d1:d3:ac:17:0c: f3:29:c5:43:59:a8:98:4c:52:36:6d:1d:92:71:18: a8:35:67:13:dc:ae:e4:15:0b:49:8b:9e:64:ff:43: 30:08:60:51:81:c0:b8:43:e6:27:2f:02:63:78:01: b6:1d:f3:ce:91:46:d5:50:a5:64:ad:e3:6b:40:37: ca:09:9b:44:12:ad:d9:f7:24:7f:70:be:43:9a:c5: 19:45:09:27:84:a7:fe:db:da:fb:3e:9d:23:2d:7d: 32:35:79:b4:5a:f3:8d:21:89:75:17:e1:dc:81:cd: ed:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:96:74:C4:C1:4B:EA:5D:B8:23:38:8D:2F:A9:FD:E7:1C:D0:8D:BA X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:77:2d:a6:2e:87:75:b1:e1:b6:bb:45:c2:41:ee:b6:ab:d2: 14:c7:90:80:94:3d:63:37:b4:f2:83:f2:ae:eb:eb:93:bf:16: 8b:32:1f:55:70:5d:58:49:e9:d9:3e:af:fb:b9:d0:00:eb:54: 9d:98:03:aa:d5:32:de:c8:a3:34:9d:9e:bb:77:a5:22:a6:58: 9c:11:d6:69:66:39:42:25:51:7d:4d:1b:3e:c0:24:4a:6e:ff: 03:1d:00:e7:40:e7:b4:d8:71:94:43:ce:60:e1:ef:bb:11:a3: 0d:33:c4:a1:54:ad:1c:0c:8a:42:ae:d7:5a:4d:98:a7:63:26: 1c:04:da:3e:af:fa:a7:c6:df:70:74:6d:44:c2:23:f4:b9:9a: 37:18:14:d8:39:06:ef:ee:0a:d7:c8:8a:4e:be:ed:34:62:d8: 5f:65:0e:01:87:33:e5:0a:54:03:a1:d8:bb:22:e6:be:9e:57: b2:42:6a:a6:c6:bd:39:91:9d:f8:72:81:5d:19:63:c3:8b:4d: 71:4d:70:7c:c1:19:39:79:9c:73:20:83:e3:98:88:63:42:3b: ca:e4:3d:f2:9b:90:81:45:04:77:a0:85:70:53:cf:27:ad:ac: 16:73:fc:13:56:20:9d:62:4d:bf:41:5a:35:6c:a4:8f:38:cb: 12:40:a0:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjYwMTI0MTQ1MzEwWhcNMjYwMTMxMTQ1MzEwWjAYMRYwFAYD VQQDDA02OTc0ZGNkNi01MjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypK3AHlOd698DbkHkKR+BfUWOH/6obuCwR0B3lKT8BaR+i35wyW8o5YswuAy 8GtjQfdpONESa1UKrNYSdCFcOr70zjNCa/KssGbuZJYcszS8leTSM91jXgdBIh7t j+rTKR6Jj8FnKUc4dAtzvfAalEMwDChaAmcE+wNh66CJpsivaUagXcXYPEPOY7RC rZ5G0dOsFwzzKcVDWaiYTFI2bR2ScRioNWcT3K7kFQtJi55k/0MwCGBRgcC4Q+Yn LwJjeAG2HfPOkUbVUKVkreNrQDfKCZtEEq3Z9yR/cL5DmsUZRQknhKf+29r7Pp0j LX0yNXm0WvONIYl1F+Hcgc3tYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOWdMTB S+pduCM4jS+p/ecc0I26MB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJdy2mLod1seG2u0XCQe62q9IUx5CAlD1jN7Tyg/Ku6+uTvxaLMh9V cF1YSenZPq/7udAA61SdmAOq1TLeyKM0nZ67d6UiplicEdZpZjlCJVF9TRs+wCRK bv8DHQDnQOe02HGUQ85g4e+7EaMNM8ShVK0cDIpCrtdaTZinYyYcBNo+r/qnxt9w dG1EwiP0uZo3GBTYOQbv7grXyIpOvu00YthfZQ4BhzPlClQDodi7Iua+nleyQmqm xr05kZ34coFdGWPDi01xTXB8wRk5eZxzIIPjmIhjQjvK5D3ym5CBRQR3oIVwU88n rawWc/wTViCdYk2/QVo1bKSPOMsSQKBS -----END CERTIFICATE-----Generated at Sun Jan 25 13:56:50 2026 by rpki-client