This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: bsKoBDZRkYYA6V2CoslF8lqnbcVAFLrwXLC9rk3ivdM= Subject key identifier: 8B:C0:CA:39:F1:23:9A:5C:44:7C:D0:94:46:61:C4:4A:1D:67:E4:EE Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 0235 Signing time: Fri 23 Jan 2026 01:07:25 +0000 Manifest this update: Fri 23 Jan 2026 01:07:24 +0000 Manifest next update: Fri 30 Jan 2026 01:07:24 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: z98CA+nUAmdQoV8wHnsjyUdGrVfa2Lkfl7LQ0ZnJ+dI=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 01:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Jan 23 01:07:24 2026 GMT Not After : Jan 30 01:07:24 2026 GMT Subject: CN=6972c9cc-0da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:5c:07:1c:3b:c3:40:9b:32:5c:9f:de:e8: 18:51:4d:13:f2:82:fa:0e:b3:79:cd:87:f0:78:c8: 4e:4e:28:ab:d5:92:6c:e8:b3:c3:47:e2:82:7f:fe: 1a:4a:18:25:6a:6d:ed:f7:33:15:f5:d2:d1:7b:da: 55:fc:28:9d:1e:92:07:ad:71:3b:f5:ad:ed:d4:3f: 20:a2:ba:bf:22:d7:5f:3a:61:88:e5:cf:b4:20:50: e6:5f:91:71:90:a7:8a:4f:c3:32:37:c6:8b:bd:17: 90:46:7b:9a:78:49:eb:6d:b7:e5:2a:b6:c7:ff:63: 27:57:0a:15:fd:c0:de:8b:f6:7f:50:7b:d8:ab:91: aa:21:66:37:7f:ee:08:17:c6:e1:0e:8d:f6:5c:22: 92:6e:b6:59:57:b7:48:f0:94:88:a8:45:bd:96:3e: b9:73:f1:2b:5a:79:12:60:20:6e:24:c5:12:ac:88: 12:4b:72:6a:de:1b:c0:f4:c7:89:59:6e:4d:87:12: 1f:8a:4b:09:ff:2c:ef:28:29:b7:07:ce:45:d1:6f: d9:3b:9d:07:cf:5b:1d:70:e8:ad:57:27:85:f9:fc: 4b:3b:40:9f:2e:99:78:b7:2c:9c:2d:aa:d1:cd:9a: 8c:8a:ec:b8:1a:06:23:7e:d3:84:dd:bd:da:a7:0c: 88:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C0:CA:39:F1:23:9A:5C:44:7C:D0:94:46:61:C4:4A:1D:67:E4:EE X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:57:28:35:dc:f9:0d:e2:cc:e5:08:86:8e:28:30:af:c9:20: a7:b1:82:b3:83:7c:34:dc:dc:f2:a3:64:d8:ca:df:23:a1:13: 81:d0:3d:33:88:d8:be:43:eb:73:6f:ca:a0:40:6e:23:36:1a: 98:75:17:7b:fb:dc:07:61:da:c6:9f:d5:f9:87:59:51:59:4b: 60:dc:bd:16:96:de:c6:19:8a:44:38:2c:03:a6:85:f1:27:aa: 1b:86:04:5b:76:d3:b1:b9:b8:c5:f4:c5:68:2f:08:89:e6:e1: fd:fd:f9:b7:da:52:64:78:cd:46:11:a4:76:27:e0:dc:64:da: 26:87:75:6d:8f:46:67:ab:28:c1:f1:08:67:c7:8a:55:0a:85: 91:71:b9:07:7b:d1:34:fd:b7:f0:13:e2:8c:57:c4:0a:d0:28: a4:98:ab:76:ac:19:29:aa:79:31:3c:02:92:ae:3e:ec:47:84: 97:88:22:1b:ed:7b:d1:47:39:41:2d:a7:4c:10:24:cd:1d:b4: 6a:a4:31:b7:e1:90:66:02:7f:7c:8f:52:87:3e:92:9f:f1:50: 77:1c:5a:94:ee:8d:ea:c4:42:ff:40:6b:31:7d:1c:74:7b:22: 36:ba:8a:07:4e:7d:ac:f4:91:55:63:f0:c5:67:6d:99:89:b1: 49:a3:f9:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjYwMTIzMDEwNzI0WhcNMjYwMTMwMDEwNzI0WjAYMRYwFAYD VQQDDA02OTcyYzljYy0wZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFpcBxw7w0CbMlyf3ugYUU0T8oL6DrN5zYfweMhOTiir1ZJs6LPDR+KCf/4a Shglam3t9zMV9dLRe9pV/CidHpIHrXE79a3t1D8gorq/ItdfOmGI5c+0IFDmX5Fx kKeKT8MyN8aLvReQRnuaeEnrbbflKrbH/2MnVwoV/cDei/Z/UHvYq5GqIWY3f+4I F8bhDo32XCKSbrZZV7dI8JSIqEW9lj65c/ErWnkSYCBuJMUSrIgSS3Jq3hvA9MeJ WW5NhxIfiksJ/yzvKCm3B85F0W/ZO50Hz1sdcOitVyeF+fxLO0CfLpl4tyycLarR zZqMiuy4GgYjftOE3b3apwyI9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvAyjnx I5pcRHzQlEZhxEodZ+TuMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSVyg13PkN4szlCIaOKDCvySCnsYKzg3w03Nzyo2TYyt8joROB0D0z iNi+Q+tzb8qgQG4jNhqYdRd7+9wHYdrGn9X5h1lRWUtg3L0Wlt7GGYpEOCwDpoXx J6obhgRbdtOxubjF9MVoLwiJ5uH9/fm32lJkeM1GEaR2J+DcZNomh3Vtj0ZnqyjB 8Qhnx4pVCoWRcbkHe9E0/bfwE+KMV8QK0CikmKt2rBkpqnkxPAKSrj7sR4SXiCIb 7XvRRzlBLadMECTNHbRqpDG34ZBmAn98j1KHPpKf8VB3HFqU7o3qxEL/QGsxfRx0 eyI2uooHTn2s9JFVY/DFZ22ZibFJo/lZ -----END CERTIFICATE-----Generated at Sun Jan 25 02:54:07 2026 by rpki-client