This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: TJVZc09Q+q5cwPcrebzZUgC0/GhYQ96Vba67FI/6jc4= Subject key identifier: FF:92:E1:A8:54:19:51:12:49:5E:0E:A5:53:79:93:81:E5:37:F0:4F Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 17B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 17A6 Signing time: Sat 24 Jan 2026 16:20:06 +0000 Manifest this update: Sat 24 Jan 2026 16:20:05 +0000 Manifest next update: Sat 31 Jan 2026 16:20:05 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: SsDL4VkOx1wZQtwMKt0q7Zq97h83dhmelNbtQhPjxyA=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: lHKNLWfYNI9WQcRtKzmUJBeHs5miXzhGVpBtJH3ux+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6064 (0x17b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD, serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: Jan 24 16:20:05 2026 GMT Not After : Jan 31 16:20:05 2026 GMT Subject: CN=6974f136-3f6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:9a:2a:6b:d9:01:92:6e:12:dc:b9:d2:52: 81:93:c3:86:5d:ae:34:76:71:bf:67:12:fd:83:a6: 24:7f:64:e6:c2:76:ff:2a:3e:ba:f7:c1:da:2a:c0: 22:12:09:29:56:27:dc:23:f8:05:e3:fe:6f:94:57: c7:43:92:bd:ca:83:87:c4:f0:34:c4:79:d6:27:2d: ba:51:d2:36:e4:d5:d1:de:dc:3f:bb:70:aa:2f:e3: 15:69:1b:38:21:97:21:ef:6e:c2:d7:e4:cb:40:e1: 92:cb:52:7e:25:a7:00:37:70:5a:6a:96:d6:e8:ed: 6a:66:f2:ce:af:02:4f:63:fc:23:d3:dc:ca:18:2f: 49:fb:45:a1:fc:a9:29:49:8c:33:d7:22:fa:81:33: c1:9e:c6:19:f8:38:cc:74:1e:c1:b1:93:f9:6b:cb: 89:25:a2:0f:c3:6d:7f:86:31:7b:65:a7:45:d1:99: 1e:71:37:48:c5:cb:72:20:e8:80:ab:c2:89:da:c5: 68:2a:e2:f5:3c:1e:de:d2:6f:6f:d3:76:dc:6c:b4: 3c:7e:51:6b:c0:dc:b0:ad:fb:ee:4b:06:3f:2f:43: bf:45:22:c1:8e:1b:07:08:e6:aa:3b:9b:85:9d:e1: 8b:d8:68:b9:c5:53:88:82:dd:f9:01:4c:3c:59:6e: 40:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:92:E1:A8:54:19:51:12:49:5E:0E:A5:53:79:93:81:E5:37:F0:4F X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:f9:e2:e3:32:93:0a:3e:62:f7:5b:02:54:42:30:af:c6:19: 31:aa:a6:cb:0e:d4:da:6d:1a:db:65:1c:17:7e:ca:fd:0a:87: 5b:55:58:5b:76:9e:b7:a5:58:59:83:70:24:17:36:9d:62:00: e6:63:20:3d:ef:6b:42:63:7a:19:ae:19:87:79:09:30:d0:17: 41:31:af:c6:33:0b:ce:2c:2b:85:8a:02:de:98:1b:ca:63:bb: 92:1c:f5:34:98:1e:47:8f:be:9c:94:c0:b8:2d:53:18:e6:9f: d2:09:c8:ac:18:d3:4b:1d:b6:56:37:95:58:51:e8:ef:e9:2f: 23:1c:a3:4f:e5:0e:3b:f7:20:bc:08:cd:24:d7:82:3d:58:ef: e3:4f:c7:35:e2:3c:86:d5:e9:aa:0c:f8:53:3b:4d:75:68:3d: 26:35:28:b0:56:20:40:d3:86:fa:87:8c:f1:37:23:32:21:93: b2:b3:32:ba:eb:37:ec:50:b2:cf:d3:58:a5:a6:a1:07:70:68: 3c:d2:f6:3d:14:64:9d:c3:f7:4e:48:54:a1:9b:07:c7:6a:6f: 12:4f:26:1f:b0:ee:9b:b1:5a:dc:fd:23:33:e3:65:34:db:e5: 0f:54:72:74:40:b0:11:b6:a8:57:43:fa:92:0e:51:f8:1b:c8: 44:b1:ba:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjYwMTI0MTYyMDA1WhcNMjYwMTMxMTYyMDA1WjAYMRYwFAYD VQQDDA02OTc0ZjEzNi0zZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsryaKmvZAZJuEty50lKBk8OGXa40dnG/ZxL9g6Ykf2Tmwnb/Kj6698HaKsAi EgkpVifcI/gF4/5vlFfHQ5K9yoOHxPA0xHnWJy26UdI25NXR3tw/u3CqL+MVaRs4 IZch727C1+TLQOGSy1J+JacAN3BaapbW6O1qZvLOrwJPY/wj09zKGC9J+0Wh/Kkp SYwz1yL6gTPBnsYZ+DjMdB7BsZP5a8uJJaIPw21/hjF7ZadF0ZkecTdIxctyIOiA q8KJ2sVoKuL1PB7e0m9v03bcbLQ8flFrwNywrfvuSwY/L0O/RSLBjhsHCOaqO5uF neGL2Gi5xVOIgt35AUw8WW5AxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+S4ahU GVESSV4OpVN5k4HlN/BPMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT+eLjMpMKPmL3WwJUQjCvxhkxqqbLDtTabRrbZRwXfsr9CodbVVhb dp63pVhZg3AkFzadYgDmYyA972tCY3oZrhmHeQkw0BdBMa/GMwvOLCuFigLemBvK Y7uSHPU0mB5Hj76clMC4LVMY5p/SCcisGNNLHbZWN5VYUejv6S8jHKNP5Q479yC8 CM0k14I9WO/jT8c14jyG1emqDPhTO011aD0mNSiwViBA04b6h4zxNyMyIZOyszK6 6zfsULLP01ilpqEHcGg80vY9FGSdw/dOSFShmwfHam8STyYfsO6bsVrc/SMz42U0 2+UPVHJ0QLARtqhXQ/qSDlH4G8hEsbqV -----END CERTIFICATE-----Generated at Sun Jan 25 09:25:23 2026 by rpki-client