This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: lLgU0AY0LV+TRSjtA21MT/LXy2Q1ILw+aeqN7jLbXEo= Subject key identifier: 9C:06:BA:A2:55:27:D5:86:09:A0:10:D4:2F:A5:B3:23:BE:C7:38:5C Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 0142 Signing time: Fri 23 Jan 2026 03:35:45 +0000 Manifest this update: Fri 23 Jan 2026 03:35:45 +0000 Manifest next update: Fri 30 Jan 2026 03:35:45 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: Uw9IOcLYmzMJ5cs5jrdftPO7kB8hz7O4SKXzFOqYtnw=) 2: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: cwplvW7swmzZa2jvSta00RWJdejX+4mcpTxfaDMp2xI=) 3: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: N5o2mOrAAIEN4JkFArU+q/6rZ4IO6YadfTVlKFOEiVE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 03:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Jan 23 03:35:45 2026 GMT Not After : Jan 30 03:35:45 2026 GMT Subject: CN=6972ec91-a05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:7b:72:66:7c:0d:eb:44:52:62:09:6b:a5: 33:b8:0f:ed:af:ca:3c:64:7b:6a:52:3b:d2:a7:ca: 2c:d9:27:d8:6f:1d:4f:8c:a7:66:68:b5:a6:60:c1: 54:6a:71:b8:4a:83:33:0a:f2:b5:17:fa:ac:e1:49: e4:dc:4c:e0:cd:7f:bc:26:81:77:8d:de:09:53:52: e7:28:85:a3:ad:ed:a9:36:50:86:84:18:6f:62:e4: 98:4b:87:dc:5f:c5:33:3d:9c:ec:56:9c:c9:16:15: 4f:3a:53:13:6a:52:7f:ee:a9:b3:12:58:a1:8b:cd: c9:79:c4:85:b9:80:bf:46:f6:47:32:41:ec:02:33: 9a:67:28:7b:f8:60:7b:58:18:e7:70:c2:97:9c:f6: fe:14:65:40:1c:ad:62:3f:cd:42:02:ab:31:e5:1b: 2e:12:6f:47:4d:d0:e3:36:04:eb:00:e0:e4:bb:82: e7:b3:de:68:2e:f2:75:c1:1a:8f:a4:18:2a:2d:a0: 54:81:17:a8:a4:2a:89:bc:51:64:43:37:8b:ce:19: 0c:9f:f3:44:08:bb:24:da:06:b8:e8:74:d5:0a:c9: 87:e1:89:af:1d:68:c1:05:6b:40:d9:bb:e3:5f:f7: 76:05:fe:d8:f6:c2:91:3a:29:91:ec:ac:d0:58:f9: 45:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:06:BA:A2:55:27:D5:86:09:A0:10:D4:2F:A5:B3:23:BE:C7:38:5C X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:cf:ce:a5:21:e2:f3:92:35:2d:f1:d9:f6:05:59:ad:6f:4c: 11:72:66:e6:fe:a8:a5:2c:8c:a8:6e:eb:e3:61:c2:9f:35:97: 1b:74:a8:69:1a:54:98:ce:f3:cd:94:99:05:4a:1d:2d:75:f2: d1:95:57:bc:13:32:56:62:fd:b0:f3:f0:bf:68:c2:c5:2d:04: 90:84:d0:38:96:e8:3e:81:0f:10:ca:35:9c:5c:6c:78:f1:b6: 79:ff:1b:f3:ed:2f:9b:85:cc:2c:eb:0c:d1:4c:be:f4:c7:41: 81:0d:8d:fc:f8:bf:d4:51:95:bc:3d:29:3d:2d:08:f7:8b:0b: 22:e5:ea:55:77:93:ee:dd:d5:b4:23:4a:a4:cf:f1:75:ed:05: e6:c7:44:2c:c0:33:f1:4d:2e:eb:54:0d:95:e7:31:7c:b2:31: 18:63:2f:d9:f3:75:9b:ca:92:2a:4f:51:2c:21:28:1f:f1:62: 70:e9:d2:96:23:7e:bf:5f:42:fd:c9:20:e0:4f:fc:8b:2b:7f: 58:e3:fe:c7:98:8d:b9:02:0d:18:42:31:d5:c2:48:a9:60:c8: bf:b6:d0:09:70:72:05:30:cd:43:9f:bb:e3:25:96:52:24:67: 4e:aa:92:c6:63:94:34:fc:dd:70:4d:ad:d8:f1:ab:0a:6e:fe: 41:c7:84:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjYwMTIzMDMzNTQ1WhcNMjYwMTMwMDMzNTQ1WjAYMRYwFAYD VQQDDA02OTcyZWM5MS1hMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkp7cmZ8DetEUmIJa6UzuA/tr8o8ZHtqUjvSp8os2SfYbx1PjKdmaLWmYMFU anG4SoMzCvK1F/qs4Unk3EzgzX+8JoF3jd4JU1LnKIWjre2pNlCGhBhvYuSYS4fc X8UzPZzsVpzJFhVPOlMTalJ/7qmzElihi83JecSFuYC/RvZHMkHsAjOaZyh7+GB7 WBjncMKXnPb+FGVAHK1iP81CAqsx5RsuEm9HTdDjNgTrAODku4Lns95oLvJ1wRqP pBgqLaBUgReopCqJvFFkQzeLzhkMn/NECLsk2ga46HTVCsmH4YmvHWjBBWtA2bvj X/d2Bf7Y9sKROimR7KzQWPlFCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwGuqJV J9WGCaAQ1C+lsyO+xzhcMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHz86lIeLzkjUt8dn2BVmtb0wRcmbm/qilLIyobuvjYcKfNZcbdKhp GlSYzvPNlJkFSh0tdfLRlVe8EzJWYv2w8/C/aMLFLQSQhNA4lug+gQ8QyjWcXGx4 8bZ5/xvz7S+bhcws6wzRTL70x0GBDY38+L/UUZW8PSk9LQj3iwsi5epVd5Pu3dW0 I0qkz/F17QXmx0QswDPxTS7rVA2V5zF8sjEYYy/Z83WbypIqT1EsISgf8WJw6dKW I36/X0L9ySDgT/yLK39Y4/7HmI25Ag0YQjHVwkipYMi/ttAJcHIFMM1Dn7vjJZZS JGdOqpLGY5Q0/N1wTa3Y8asKbv5Bx4S2 -----END CERTIFICATE-----Generated at Sun Jan 25 03:03:48 2026 by rpki-client