This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: cAYx6EpRGMUawLqLWr/0YgQTUDXA+3mPJjwg/Sw5awQ= Subject key identifier: 77:30:B9:6A:40:36:CF:A1:AE:D3:FF:2A:86:C8:C4:3B:C1:27:A5:F6 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A35 Signing time: Sat 24 Jan 2026 19:11:46 +0000 Manifest this update: Sat 24 Jan 2026 19:11:46 +0000 Manifest next update: Sat 31 Jan 2026 19:11:46 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: s+VwVkUgY5G87H32NxCvtBlJLIz/oJtYAB1Oi19axBI=) 2: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: 3boh9twNT+wMVNDwHhMlsyTNGgicBLKqvHmcm9MqmbQ=) 3: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: ncmmYN7H2xzPnAOxR35203dZNZ84hMEtI3ct/kCv190=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2627 (0xa43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jan 24 19:11:46 2026 GMT Not After : Jan 31 19:11:46 2026 GMT Subject: CN=69751972-94a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8a:23:ed:4d:4e:08:1e:f3:b0:f1:af:cb:f2: 64:71:39:23:e6:23:9f:15:8f:90:b0:15:7e:8e:c1: d2:51:77:3a:18:74:07:a5:07:cb:31:84:78:b7:88: d6:bf:77:8a:6b:65:7b:3e:43:a8:1a:80:a2:35:e3: 3b:00:19:b8:5f:dc:59:e7:18:60:4e:5d:41:f2:a3: 04:9d:d1:15:5d:22:68:a2:68:d9:e3:1b:bf:fd:ee: a6:71:3d:c4:a8:1d:f6:36:de:ca:a9:e2:17:82:c8: b0:56:e3:ac:e8:75:51:03:f7:5f:90:17:da:81:ee: ae:ba:4f:7e:0e:e1:e1:96:2d:40:9d:8a:4f:0c:ef: a6:20:0c:cc:2f:73:87:94:d2:87:5e:c8:2c:42:59: 6c:2b:b0:0e:52:54:ec:9d:d2:05:b9:9d:78:e4:a2: a4:c5:51:48:0f:35:58:fa:32:50:3f:d4:5d:c8:38: 0b:7e:c6:2d:50:4b:c5:f8:6f:ed:18:57:07:3b:64: bc:cf:2a:bc:f4:53:b4:ff:a4:d7:45:f9:e9:0c:49: 52:c0:ad:8d:07:9f:3d:ff:f6:73:d1:49:18:cb:87: c5:86:19:6c:6a:aa:3e:c8:88:c5:56:c9:b5:5e:32: b6:1e:94:d8:f1:5f:9f:c8:3f:c0:b7:d0:ea:da:97: eb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:30:B9:6A:40:36:CF:A1:AE:D3:FF:2A:86:C8:C4:3B:C1:27:A5:F6 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f8:66:65:af:6f:50:12:78:25:52:e9:51:e9:34:ee:06:d6: ed:d8:3e:b9:2c:a7:c2:b4:a2:76:bb:1f:1a:c6:05:65:3e:70: 43:32:f0:0b:54:71:6e:ce:c5:69:ee:34:73:6d:54:90:93:96: f6:92:eb:6c:06:0a:a6:2a:8f:ae:d6:70:94:4e:52:68:b3:25: d6:9e:54:84:af:2b:75:28:13:6c:bc:8f:b1:bd:ff:7c:2e:76: 3e:fc:2d:6d:1d:63:23:d2:94:ed:1c:8d:2a:d1:77:10:94:71: 02:d4:6d:4a:46:41:40:87:15:0d:0f:75:2b:d1:fb:42:ae:3d: d5:93:56:2b:4c:88:46:5e:87:8b:c2:b5:ea:bd:8c:56:a2:47: 1e:04:8e:96:a7:fd:28:9a:93:b9:1f:98:57:50:d4:02:99:47: 07:a9:48:6c:2d:4c:8f:b4:fc:c4:c4:96:1f:d3:3f:ea:b1:b6: e9:eb:54:e0:17:a1:65:f6:3e:6f:95:4f:11:29:5c:f9:1f:a9: de:85:59:f1:38:7c:9f:35:05:7f:07:94:4b:da:50:e2:ae:85: 6d:07:0b:5a:84:54:d6:e9:50:7e:cd:cd:97:32:93:88:c2:f6: e6:6b:28:40:b1:fa:a3:8c:b9:3d:6c:ed:60:80:9d:89:8b:93: 28:29:b1:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwMTI0MTkxMTQ2WhcNMjYwMTMxMTkxMTQ2WjAYMRYwFAYD VQQDDA02OTc1MTk3Mi05NGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ooj7U1OCB7zsPGvy/JkcTkj5iOfFY+QsBV+jsHSUXc6GHQHpQfLMYR4t4jW v3eKa2V7PkOoGoCiNeM7ABm4X9xZ5xhgTl1B8qMEndEVXSJoomjZ4xu//e6mcT3E qB32Nt7KqeIXgsiwVuOs6HVRA/dfkBfage6uuk9+DuHhli1AnYpPDO+mIAzML3OH lNKHXsgsQllsK7AOUlTsndIFuZ145KKkxVFIDzVY+jJQP9RdyDgLfsYtUEvF+G/t GFcHO2S8zyq89FO0/6TXRfnpDElSwK2NB589//Zz0UkYy4fFhhlsaqo+yIjFVsm1 XjK2HpTY8V+fyD/At9Dq2pfrCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcwuWpA Ns+hrtP/KobIxDvBJ6X2MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN+GZlr29QEnglUulR6TTuBtbt2D65LKfCtKJ2ux8axgVlPnBDMvAL VHFuzsVp7jRzbVSQk5b2kutsBgqmKo+u1nCUTlJosyXWnlSEryt1KBNsvI+xvf98 LnY+/C1tHWMj0pTtHI0q0XcQlHEC1G1KRkFAhxUND3Ur0ftCrj3Vk1YrTIhGXoeL wrXqvYxWokceBI6Wp/0ompO5H5hXUNQCmUcHqUhsLUyPtPzExJYf0z/qsbbp61Tg F6Fl9j5vlU8RKVz5H6nehVnxOHyfNQV/B5RL2lDiroVtBwtahFTW6VB+zc2XMpOI wvbmayhAsfqjjLk9bO1ggJ2Ji5MoKbFT -----END CERTIFICATE-----Generated at Sun Jan 25 11:02:37 2026 by rpki-client