This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft File: 2TIL_awMkLNCikT8fcoOL3kJd0E.mft (raw, json) Hash identifier: KC0qpTiESm1OfDuaG+NLUAc4F8wDDOsvtLcjU4CbQWo= Subject key identifier: E3:A0:E8:B0:88:D3:F5:05:D5:B0:C5:63:DA:42:0A:E3:1D:49:C8:FA Authority key identifier: D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 Certificate issuer: /CN=A9197ADE/serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft Manifest number: A4 Signing time: Fri 23 Jan 2026 05:24:29 +0000 Manifest this update: Fri 23 Jan 2026 05:24:29 +0000 Manifest next update: Fri 30 Jan 2026 05:24:29 +0000 Files and hashes: 1: 2TIL_awMkLNCikT8fcoOL3kJd0E.crl (hash: WomJ29eB2jUVidJmnYjz4BFMTJqKef+oNhHM4rY9HCQ=) 2: E0CFA54EFE4D11EF8274971BC4F9AE02.roa (hash: xErSiwEVGbEN6QlFmGLkFVWsdMEkeNM0TxyRejXCRHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197ADE, serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Validity Not Before: Jan 23 05:24:29 2026 GMT Not After : Jan 30 05:24:29 2026 GMT Subject: CN=6973060d-a089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5f:3b:c1:73:14:65:00:fa:6d:20:45:cf:88: 09:25:ed:e5:23:a1:e0:bb:af:d5:d9:bf:a0:07:c0: 34:81:a2:9f:ca:20:ba:4c:eb:b5:12:f0:48:ac:ba: 39:d7:85:87:f0:5a:0f:3b:6c:2f:c1:24:2d:75:76: ea:14:bc:b6:3f:dd:52:d6:44:70:ac:fb:74:22:f7: b9:2b:03:61:7e:7c:42:ca:9c:77:24:42:83:da:72: 69:e1:f1:15:b0:cd:31:47:1f:14:a0:c0:5c:2b:b6: 47:5f:00:46:ad:75:7d:4b:9d:ea:2f:ef:48:c9:74: f6:a7:f5:ac:f1:f8:55:bd:ba:3f:8b:1d:56:27:ab: 96:58:8d:15:a0:aa:21:89:4e:58:4b:bb:97:e7:d5: 99:6e:dd:ad:fb:29:b5:15:5c:b6:ab:33:f0:cd:14: 0d:ab:7e:d8:0a:6d:d0:7c:25:94:df:04:8f:49:49: ba:b5:40:5a:c1:a3:f3:e0:f6:90:bb:67:0c:17:3f: f1:45:8a:37:43:ea:a4:0a:75:a6:e4:5d:fb:01:e9: 4f:9f:0a:24:9d:b5:ec:53:2e:14:cb:44:72:19:65: 68:df:d0:06:ec:7c:a1:2f:f4:93:66:00:24:0f:6c: 50:a4:b3:84:b3:b6:9d:4e:9c:d7:35:72:6e:57:60: 6e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A0:E8:B0:88:D3:F5:05:D5:B0:C5:63:DA:42:0A:E3:1D:49:C8:FA X509v3 Authority Key Identifier: keyid:D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:66:c5:f2:09:d9:e8:de:ff:6d:2a:32:63:ea:53:3e:8e:a9: 98:02:d6:7b:f9:d2:5a:ee:af:39:92:bf:6a:7b:d3:3f:54:94: 94:72:ad:66:05:1f:ef:84:84:14:60:48:fa:07:28:99:a8:eb: 34:8f:e6:64:45:6a:e1:90:b4:1c:c6:00:03:51:a9:f8:2b:a4: 20:80:78:d5:3c:12:24:dd:8c:29:e3:bc:1b:bd:cc:e3:8a:d2: 13:ba:c3:2b:fc:73:dd:cf:b2:e3:61:de:20:32:f8:79:8f:4d: e2:2d:eb:d0:4d:51:79:dc:72:77:9f:f9:df:58:36:f4:ed:1f: ed:98:40:2c:40:2e:87:92:4a:05:0b:5f:c2:23:da:1b:46:52: c1:b9:33:63:29:9d:1d:63:d1:97:3f:cc:7c:3f:df:c2:af:ae: e8:4d:37:14:19:14:11:27:46:c3:54:35:7f:88:e5:61:e8:37: a3:66:c4:c4:75:14:50:27:78:02:7a:d4:cd:12:2b:ab:a2:de: 32:7a:ef:65:d2:1d:99:73:0f:ce:a4:65:6b:57:7d:6b:07:a7: b5:f3:31:a2:a6:42:bd:60:57:50:51:d0:91:77:a7:d6:e8:6c: 0d:b1:44:5e:ac:97:40:c9:ee:d8:95:01:31:ea:03:62:b7:68: f5:ce:88:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBREUxMTAvBgNVBAUTKEQ5MzIwQkZEQUMwQzkwQjM0MjhBNDRGQzdEQ0EwRTJG NzkwOTc3NDEwHhcNMjYwMTIzMDUyNDI5WhcNMjYwMTMwMDUyNDI5WjAYMRYwFAYD VQQDDA02OTczMDYwZC1hMDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4F87wXMUZQD6bSBFz4gJJe3lI6Hgu6/V2b+gB8A0gaKfyiC6TOu1EvBIrLo5 14WH8FoPO2wvwSQtdXbqFLy2P91S1kRwrPt0Ive5KwNhfnxCypx3JEKD2nJp4fEV sM0xRx8UoMBcK7ZHXwBGrXV9S53qL+9IyXT2p/Ws8fhVvbo/ix1WJ6uWWI0VoKoh iU5YS7uX59WZbt2t+ym1FVy2qzPwzRQNq37YCm3QfCWU3wSPSUm6tUBawaPz4PaQ u2cMFz/xRYo3Q+qkCnWm5F37AelPnwoknbXsUy4Uy0RyGWVo39AG7HyhL/STZgAk D2xQpLOEs7adTpzXNXJuV2BuKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOg6LCI 0/UF1bDFY9pCCuMdScj6MB8GA1UdIwQYMBaAFNkyC/2sDJCzQopE/H3KDi95CXdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0FERS84OUE0OTNFMkZF NEQxMUVGQTFBRkZDMUFDNEY5QUUwMi8yVElMX2F3TWtMTkNpa1Q4ZmNvT0wza0pk MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJUSUxfYXdNa0xOQ2lrVDhmY29PTDNrSmQwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0FERS84OUE0OTNFMkZFNEQxMUVGQTFBRkZDMUFDNEY5QUUwMi8yVElMX2F3TWtM TkNpa1Q4ZmNvT0wza0pkMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7ZsXyCdno3v9tKjJj6lM+jqmYAtZ7+dJa7q85kr9qe9M/VJSUcq1m BR/vhIQUYEj6ByiZqOs0j+ZkRWrhkLQcxgADUan4K6QggHjVPBIk3Ywp47wbvczj itITusMr/HPdz7LjYd4gMvh5j03iLevQTVF53HJ3n/nfWDb07R/tmEAsQC6HkkoF C1/CI9obRlLBuTNjKZ0dY9GXP8x8P9/Cr67oTTcUGRQRJ0bDVDV/iOVh6DejZsTE dRRQJ3gCetTNEiurot4yeu9l0h2Zcw/OpGVrV31rB6e18zGipkK9YFdQUdCRd6fW 6GwNsURerJdAye7YlQEx6gNit2j1zohH -----END CERTIFICATE-----Generated at Sun Jan 25 02:49:16 2026 by rpki-client