This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: LsW5AP6oskh5oookfTeMF8vt+ymoTUkCxTPgpVvWGtY= Subject key identifier: 44:28:72:17:44:D0:A0:3D:86:F0:48:07:F5:EB:A4:F3:93:68:D4:4E Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2B94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2B5C Signing time: Sat 24 Jan 2026 15:26:16 +0000 Manifest this update: Sat 24 Jan 2026 15:26:16 +0000 Manifest next update: Sat 31 Jan 2026 15:26:16 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: STD3We5VDbMcWOzPgQ27/Se8I+zhxnCHxJCPZkaZ7MI=) 2: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: vCyoBnhR3DIAJb9Y4r3GNDFo2RlfPGlQkgBB7NxfB/s=) 3: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: 4v1pcgLcpH0cs1u2cZwujLM8z8Jad8X3rbuBbKPqsLU=) 4: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: GUkxmfhQjkzWtcoFY/nFGmI+kTJXl/FtuE+i7SxBElE=) 5: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: ZzjJ0fYeabSd1C/BC1U5UndDu9GN0zOregXqheWTfhM=) 6: E8573BE8F1C111F098487417396F56BC.roa (hash: qGeh6QL0o4WvOG3fg/wBG8/tXnaeNS7d3iyz0QkEV4E=) 7: A2842DA6E07D11F0A337A81D3B6F56BC.roa (hash: /NSn23GKZ4WI/0vwXgM15d1bZ9YjNXmwCH/XWGMxn98=) 8: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: fYOyO0YMWUOxVdF0N0uoVfDbNQC2opdX5iKH0P2z63Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11156 (0x2b94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Jan 24 15:26:16 2026 GMT Not After : Jan 31 15:26:16 2026 GMT Subject: CN=6974e498-2e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:c7:cd:ef:1a:5a:44:85:7e:c8:4b:e3:b8: 7f:16:07:3d:48:0d:9c:ed:6e:d6:80:58:be:ec:e6: d5:9f:71:10:a1:61:1e:8f:ba:71:cd:c0:98:6b:0e: 5f:91:95:f2:2f:9c:20:8a:e3:c1:a0:b6:c6:12:40: be:f5:d5:9b:80:88:31:ff:72:9d:0e:34:dc:53:ad: 62:0d:89:cf:5d:d5:0b:dd:91:44:57:54:e5:fa:20: 37:f3:85:a8:79:b8:ca:5a:a1:fd:0a:ea:c5:78:e1: e5:00:9d:c3:d9:88:74:5c:35:9e:68:cb:21:40:87: d8:64:0d:74:d3:84:e0:51:94:3e:5d:7f:7c:b4:01: 3e:bc:93:1e:e6:09:0a:8f:38:2e:b9:b7:d8:cf:f0: bd:1c:ff:f8:f4:1b:6e:36:fa:cd:22:1e:a1:65:ee: 2e:3f:f0:ec:f1:35:7d:ff:53:13:7c:e4:fe:79:cc: 90:46:9c:8e:eb:f6:2f:0e:c6:0b:26:e9:9d:ed:ed: 02:0f:1c:92:f7:8c:da:a1:76:ba:01:10:06:e1:47: 6d:1b:b0:06:d0:87:5f:5b:f5:dc:22:ed:6b:8b:ec: e4:d9:44:3c:74:54:c0:af:b5:cf:1e:a5:b7:22:a8: 99:22:16:2d:01:b9:3e:34:86:e0:6c:15:48:f5:d8: 7a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:28:72:17:44:D0:A0:3D:86:F0:48:07:F5:EB:A4:F3:93:68:D4:4E X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:80:53:8f:e5:e2:f9:b1:9f:75:92:5e:3f:42:b7:87:00:9d: 4d:dd:36:9b:5b:a4:00:27:28:34:18:1c:1e:7d:ca:79:e7:23: 4f:5e:01:e2:e3:29:78:94:d3:0c:f7:08:ad:1e:bc:09:67:b4: 17:b6:0f:82:1e:43:6a:3b:83:00:59:dc:7f:a9:f7:f2:10:6a: a5:65:e6:ed:ce:05:0b:63:46:b3:56:70:57:98:71:b2:af:4e: b7:37:44:30:17:37:29:b0:00:e1:3f:e9:14:64:58:68:24:97: be:05:9c:ee:33:e1:e4:3c:33:0f:eb:2e:dc:4b:59:bf:ea:32: 50:39:e9:4b:24:33:f0:eb:2d:97:33:27:70:85:f2:b4:fd:13: 4e:53:23:5e:2c:1d:94:c9:9e:fe:aa:d1:61:f7:46:f5:47:72: 28:37:b5:ca:d8:7f:a7:e7:78:c3:98:32:08:e7:d3:9b:f2:3a: eb:31:93:60:cd:e8:12:76:19:f8:2c:fd:14:f0:98:4d:fd:20: f7:5f:d8:d1:45:fd:c6:08:74:47:0e:44:e9:c0:40:d2:7b:9c: b8:4b:20:97:16:9f:02:f1:32:3c:24:03:55:d7:fa:d1:26:17: ed:23:15:27:88:16:60:2c:8c:16:8f:76:d0:d4:d4:1b:3c:67: 56:54:6d:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjYwMTI0MTUyNjE2WhcNMjYwMTMxMTUyNjE2WjAYMRYwFAYD VQQDDA02OTc0ZTQ5OC0yZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzTHze8aWkSFfshL47h/Fgc9SA2c7W7WgFi+7ObVn3EQoWEej7pxzcCYaw5f kZXyL5wgiuPBoLbGEkC+9dWbgIgx/3KdDjTcU61iDYnPXdUL3ZFEV1Tl+iA384Wo ebjKWqH9CurFeOHlAJ3D2Yh0XDWeaMshQIfYZA1004TgUZQ+XX98tAE+vJMe5gkK jzguubfYz/C9HP/49BtuNvrNIh6hZe4uP/Ds8TV9/1MTfOT+ecyQRpyO6/YvDsYL Jumd7e0CDxyS94zaoXa6ARAG4UdtG7AG0IdfW/XcIu1ri+zk2UQ8dFTAr7XPHqW3 IqiZIhYtAbk+NIbgbBVI9dh6HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQochdE 0KA9hvBIB/XrpPOTaNROMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEgFOP5eL5sZ91kl4/QreHAJ1N3TabW6QAJyg0GBwefcp55yNPXgHi 4yl4lNMM9witHrwJZ7QXtg+CHkNqO4MAWdx/qffyEGqlZebtzgULY0azVnBXmHGy r063N0QwFzcpsADhP+kUZFhoJJe+BZzuM+HkPDMP6y7cS1m/6jJQOelLJDPw6y2X MydwhfK0/RNOUyNeLB2UyZ7+qtFh90b1R3IoN7XK2H+n53jDmDII59Ob8jrrMZNg zegSdhn4LP0U8JhN/SD3X9jRRf3GCHRHDkTpwEDSe5y4SyCXFp8C8TI8JANV1/rR JhftIxUniBZgLIwWj3bQ1NQbPGdWVG2H -----END CERTIFICATE-----Generated at Mon Jan 26 05:12:15 2026 by rpki-client