This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft (raw, json) Hash identifier: RQ1XuMb8+WE3bofMLErP0oQlArG/P8mrOgfeChoMoWM= Subject key identifier: 45:35:B1:67:41:41:A8:2F:5C:3D:12:0D:BF:FE:2C:41:24:FE:E8:AC Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft Manifest number: 012D Signing time: Sun 25 Jan 2026 03:49:04 +0000 Manifest this update: Sun 25 Jan 2026 03:49:04 +0000 Manifest next update: Sun 01 Feb 2026 03:49:04 +0000 Files and hashes: 1: Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl (hash: gniaf8dCKSZ+M4nZWgEi7VstPH2St2pi7y4pYCopc5Q=) 2: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (hash: w+HKOaC0+jfhSxKVMJ9ShZE05MyOqwYCqtIs1clN5KI=) 3: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (hash: wkNRLxYMTSQ9zGepk4yzqzlqbEMp0dmX1JQWykvEvPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Jan 25 03:49:04 2026 GMT Not After : Feb 1 03:49:04 2026 GMT Subject: CN=697592b0-ac1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1a:fe:39:31:c2:86:bc:6a:ca:f5:67:3f:4e: 8d:dd:52:69:00:cf:42:ec:99:9c:76:ef:3b:e3:b1: c2:0b:08:be:e8:3c:79:df:19:80:1d:f0:e5:18:d4: 47:31:b6:f9:d6:e4:63:79:07:af:c8:f5:23:ae:4f: f8:f3:4d:1b:23:4f:d7:1a:d6:e1:da:0e:67:e8:83: 1d:3e:1a:1a:aa:ea:99:27:b5:8f:8e:c4:fd:38:de: f3:3a:ad:7c:1f:b5:aa:3e:99:53:c4:eb:50:32:26: ce:c9:4a:f2:da:85:8d:a4:74:04:1d:b9:3e:83:83: 8c:51:5e:99:75:20:07:e3:7d:0d:01:f5:8f:2d:2a: 2f:04:79:74:74:b0:72:52:92:96:44:7f:49:47:f1: 3f:79:07:be:7d:51:bf:4d:42:42:a7:3e:7f:0d:b0: ba:4d:e5:6e:12:e9:5e:41:b8:eb:d2:89:9c:65:6c: 8f:ab:1f:48:cd:21:95:ed:01:2c:c0:6e:8c:a6:6e: 99:89:4c:75:51:26:46:05:cc:26:24:19:20:7c:3e: da:e2:c1:7d:f8:88:66:3e:cf:7b:98:27:65:a7:cb: e3:af:99:a2:09:6f:22:ed:5e:08:b6:2b:22:34:c4: c3:4a:b9:55:3f:0c:d7:39:45:7f:2c:9c:fc:56:47: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:35:B1:67:41:41:A8:2F:5C:3D:12:0D:BF:FE:2C:41:24:FE:E8:AC X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:f0:b9:de:c0:63:80:bb:96:45:66:57:b4:6a:af:dd:db:e1: 09:c3:d5:2c:05:c3:3d:f7:d5:fb:9e:74:ea:72:12:79:a3:3f: 13:4c:1b:0e:14:36:c4:a7:f7:75:4c:b7:44:d4:24:70:70:cb: 50:6a:ee:bc:c7:e2:23:75:8a:f4:dc:77:f9:3d:f2:1e:14:9d: 18:cd:39:58:fd:45:f8:44:0c:17:73:df:8e:0e:48:40:92:58: 65:c9:9c:84:bf:8d:64:09:09:66:7d:38:d8:dd:79:26:af:7f: a9:1d:79:ee:9d:fc:d0:fd:ec:88:30:26:90:91:09:e9:a8:82: ca:47:5a:46:c3:04:ed:09:70:12:75:ac:be:0e:6d:eb:4f:7d: f1:44:b7:6a:df:45:4d:7f:b2:e1:04:9c:a2:54:30:18:e6:61: c7:f7:ab:b5:eb:3b:69:5f:b5:13:92:06:96:61:c5:1b:51:68: 65:76:e7:11:80:3b:72:17:85:f6:ea:b0:56:7d:33:93:8c:56: d6:7d:cb:49:f9:72:68:ef:f1:e4:f6:ea:69:6f:ee:33:4f:ec: c8:92:f0:7e:fe:70:82:10:00:0f:08:38:30:a7:52:87:3d:47: 00:92:19:59:4c:10:fa:4c:64:d1:2f:89:5e:1a:3b:83:2d:9b: ba:e6:ab:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjYwMTI1MDM0OTA0WhcNMjYwMjAxMDM0OTA0WjAYMRYwFAYD VQQDDA02OTc1OTJiMC1hYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hr+OTHChrxqyvVnP06N3VJpAM9C7Jmcdu8747HCCwi+6Dx53xmAHfDlGNRH Mbb51uRjeQevyPUjrk/4800bI0/XGtbh2g5n6IMdPhoaquqZJ7WPjsT9ON7zOq18 H7WqPplTxOtQMibOyUry2oWNpHQEHbk+g4OMUV6ZdSAH430NAfWPLSovBHl0dLBy UpKWRH9JR/E/eQe+fVG/TUJCpz5/DbC6TeVuEuleQbjr0omcZWyPqx9IzSGV7QEs wG6Mpm6ZiUx1USZGBcwmJBkgfD7a4sF9+IhmPs97mCdlp8vjr5miCW8i7V4Itisi NMTDSrlVPwzXOUV/LJz8VkdhfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEU1sWdB QagvXD0SDb/+LEEk/uisMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9BOTM2RTQ0MDJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3Vn bHBRRm43STk3NFVvMG1TWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx8LnewGOAu5ZFZle0aq/d2+EJw9UsBcM999X7nnTqchJ5oz8TTBsO FDbEp/d1TLdE1CRwcMtQau68x+IjdYr03Hf5PfIeFJ0YzTlY/UX4RAwXc9+ODkhA klhlyZyEv41kCQlmfTjY3Xkmr3+pHXnunfzQ/eyIMCaQkQnpqILKR1pGwwTtCXAS day+Dm3rT33xRLdq30VNf7LhBJyiVDAY5mHH96u16ztpX7UTkgaWYcUbUWhlducR gDtyF4X26rBWfTOTjFbWfctJ+XJo7/Hk9uppb+4zT+zIkvB+/nCCEAAPCDgwp1KH PUcAkhlZTBD6TGTRL4leGjuDLZu65qvW -----END CERTIFICATE-----Generated at Sun Jan 25 13:59:26 2026 by rpki-client