This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: b1Xm9xKoEiYN9svfpwyIrpYLvMgU1Y17/8IQcWkKC3M= Subject key identifier: AD:65:64:4D:FD:FF:FD:93:82:34:20:E8:4B:1C:82:DC:2F:E9:45:14 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 03AA Signing time: Sat 24 Jan 2026 23:54:03 +0000 Manifest this update: Sat 24 Jan 2026 23:54:02 +0000 Manifest next update: Sat 31 Jan 2026 23:54:02 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: ENebqEureHCH76Vi2WEZBeVIRG2kREuv2Wl4OcZSMX4=) 2: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: b/WM2XRqJxBELFgBognptBOHT/qHpjt428YJO43uOQY=) 3: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: yEbc6F9bHI0IpI/Ljg73yL3b8qnvoYUzAxWD62rFx2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:54:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Jan 24 23:54:02 2026 GMT Not After : Jan 31 23:54:02 2026 GMT Subject: CN=69755b9b-f5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:72:f2:ec:c6:81:e8:28:c7:1c:67:02:9f:62: 73:b4:b4:1e:07:9b:7d:b5:46:c2:7e:e3:7e:59:cf: 3e:e4:30:4f:c8:4e:6d:fd:29:9b:ef:ae:42:88:a7: 8d:6b:47:d0:73:43:a1:2a:8c:17:d5:b6:37:f3:d9: 3e:66:e0:ab:84:c5:80:03:cf:b4:74:68:63:8b:ec: 19:3d:c6:68:54:b5:88:fb:1a:dd:bf:6d:c3:45:76: 43:96:06:b7:5d:99:e7:c1:77:28:a4:3f:c8:e1:97: 8a:78:f5:a4:4c:30:7f:ef:75:f4:6e:00:e3:bb:e7: 0f:d0:44:02:44:16:94:5b:77:d9:86:d3:09:83:e2: b9:0b:98:a6:f2:e3:fe:00:6c:7a:e9:6b:fb:f7:da: d4:fe:24:5c:ee:99:61:a1:b1:05:8d:ff:e1:8b:7c: c8:84:71:e4:70:e9:c2:b3:56:c7:1c:a0:31:ee:e8: 99:e6:6d:b3:f7:6c:af:61:73:bd:32:d8:cc:43:74: 76:75:a2:7c:6c:1d:55:73:9c:35:9c:77:94:e7:35: a8:ab:e5:4c:d8:ec:a3:b7:76:08:e9:c5:df:ee:0e: b6:ab:d9:f5:d1:05:b0:4a:a1:5a:10:6b:1e:1b:20: 1e:1d:16:16:f5:54:c4:dc:e6:d0:d2:54:68:34:33: 7a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:65:64:4D:FD:FF:FD:93:82:34:20:E8:4B:1C:82:DC:2F:E9:45:14 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:50:04:21:4b:42:dc:14:99:03:d3:09:1c:05:10:a0:35:14: 78:67:4b:42:6d:5f:cb:2d:74:4b:ea:f4:8c:58:f2:69:a0:8d: 03:0c:1c:6b:cf:f2:21:76:a0:7f:00:cc:c2:63:4c:4d:96:83: c6:b3:25:62:0d:71:48:94:45:af:e6:13:9b:9d:b6:ee:b0:af: dd:bc:60:86:93:5e:d6:b7:d5:3a:a1:a9:09:d8:30:fb:a1:e0: 29:2d:ed:69:0a:4a:dc:c4:23:ae:00:72:45:b6:b7:35:56:a0: b2:5e:51:eb:9d:a8:96:4d:14:53:1f:b3:33:22:ec:d6:82:3a: 55:f7:b2:9a:7d:99:9a:23:c1:68:1f:1d:e7:62:a2:03:55:82: 76:eb:05:40:ef:49:17:3f:62:e9:06:1f:75:a5:f7:26:18:d2: e4:08:59:b4:6b:55:f2:31:bd:32:ef:ce:8b:17:72:dd:4a:73: 66:94:71:60:24:29:2a:ae:9e:57:9e:dd:6f:0a:83:06:72:4f: ec:9a:45:27:e8:86:d3:54:d4:66:b6:39:22:62:ff:6a:e8:93: 12:3f:29:22:e5:41:e8:2a:34:b8:a5:39:87:0b:7d:a7:ea:88: ea:01:c7:23:43:c3:b1:19:cb:3c:89:7d:66:98:b8:68:12:d4: 8b:e3:b8:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjYwMTI0MjM1NDAyWhcNMjYwMTMxMjM1NDAyWjAYMRYwFAYD VQQDDA02OTc1NWI5Yi1mNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznLy7MaB6CjHHGcCn2JztLQeB5t9tUbCfuN+Wc8+5DBPyE5t/Smb765CiKeN a0fQc0OhKowX1bY389k+ZuCrhMWAA8+0dGhji+wZPcZoVLWI+xrdv23DRXZDlga3 XZnnwXcopD/I4ZeKePWkTDB/73X0bgDju+cP0EQCRBaUW3fZhtMJg+K5C5im8uP+ AGx66Wv799rU/iRc7plhobEFjf/hi3zIhHHkcOnCs1bHHKAx7uiZ5m2z92yvYXO9 MtjMQ3R2daJ8bB1Vc5w1nHeU5zWoq+VM2Oyjt3YI6cXf7g62q9n10QWwSqFaEGse GyAeHRYW9VTE3ObQ0lRoNDN6AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1lZE39 //2TgjQg6Escgtwv6UUUMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqUAQhS0LcFJkD0wkcBRCgNRR4Z0tCbV/LLXRL6vSMWPJpoI0DDBxr z/IhdqB/AMzCY0xNloPGsyViDXFIlEWv5hObnbbusK/dvGCGk17Wt9U6oakJ2DD7 oeApLe1pCkrcxCOuAHJFtrc1VqCyXlHrnaiWTRRTH7MzIuzWgjpV97KafZmaI8Fo Hx3nYqIDVYJ26wVA70kXP2LpBh91pfcmGNLkCFm0a1XyMb0y786LF3LdSnNmlHFg JCkqrp5Xnt1vCoMGck/smkUn6IbTVNRmtjkiYv9q6JMSPyki5UHoKjS4pTmHC32n 6ojqAccjQ8OxGcs8iX1mmLhoEtSL47hR -----END CERTIFICATE-----Generated at Sun Jan 25 04:35:53 2026 by rpki-client