This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: J1uW/n7WY8MPIwAivR4sXvVBK/bmEBztetd/EGwPUuk= Subject key identifier: B4:99:6B:40:B7:A9:E3:6A:48:68:78:A1:40:F8:11:96:D2:8A:EA:0C Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0180 Signing time: Sun 25 Jan 2026 02:59:30 +0000 Manifest this update: Sun 25 Jan 2026 02:59:29 +0000 Manifest next update: Sun 01 Feb 2026 02:59:29 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: WPLzNvs7xfb6geyGF048/T/K0+ozfA0ce7eu5KWkiKo=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: db0WobY2OuSvFKrtHPb4XtM1BwNHUwXNkFsg7pWHA3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Jan 25 02:59:29 2026 GMT Not After : Feb 1 02:59:29 2026 GMT Subject: CN=69758712-166d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1d:df:53:4f:8c:e8:79:39:80:0d:da:01:c1: 36:a2:6f:48:e2:a9:c2:35:87:86:aa:92:2e:ff:a2: db:bc:ba:d0:e2:b3:6a:27:b1:d7:cd:4d:97:b1:0b: e0:88:a5:81:d4:c6:2b:45:23:72:5a:2f:4d:c1:65: e1:c3:22:14:de:06:07:3b:70:0a:a6:46:f2:66:7a: df:fb:8a:92:65:0c:59:b3:4b:a6:2c:73:f3:2a:70: 7a:02:b0:ff:a3:5c:e9:f6:a6:f2:21:1e:c1:af:80: fa:39:7b:9d:27:30:8f:de:7f:b6:ef:d0:54:b3:41: af:b4:04:d0:19:f3:bd:45:4b:40:25:d2:aa:9e:ff: 56:5b:f8:b8:b6:8b:f4:51:b9:60:11:c8:f0:6c:a1: 8d:d2:94:0c:dd:68:73:74:52:b3:79:29:9f:7a:7e: fa:9d:f0:83:d0:db:2a:73:a9:40:dc:8d:c3:71:0e: ee:cb:2c:5d:2d:5e:29:f1:b2:93:8d:eb:64:38:4e: 31:09:a2:8f:ef:61:4e:17:0a:12:e8:c8:a2:d3:9f: 50:a3:d7:fc:4b:65:87:66:1b:95:ea:df:69:ec:11: c1:0a:b6:9f:ed:72:40:ad:dd:f4:53:5e:02:43:cc: 70:82:f0:a0:ad:a1:8d:6e:62:20:7c:2c:b5:d9:b0: 61:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:99:6B:40:B7:A9:E3:6A:48:68:78:A1:40:F8:11:96:D2:8A:EA:0C X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:7f:3f:97:f0:b5:e6:19:11:0a:bf:6a:53:62:12:45:87:f6: e4:a2:02:ca:dd:ea:59:1e:74:05:45:60:a4:c1:eb:17:8c:f1: f3:e9:81:1e:30:1c:02:6b:2b:6a:4d:77:3d:28:a3:ac:6b:d1: 1d:b5:f5:fe:6b:c1:50:c7:8c:f0:af:70:22:ff:de:83:6e:51: d3:ee:c1:6d:7c:54:e3:5a:89:d0:84:34:43:d0:7b:f2:cd:d3: 28:5b:05:ec:01:42:b5:12:73:a8:51:2b:44:1e:35:d5:24:b7: 37:c9:8b:ea:7e:29:b2:98:13:9f:55:3f:01:cc:e8:2f:62:56: 82:06:65:e7:5f:64:97:88:29:96:c4:83:54:f6:2b:90:c7:76: ca:73:2d:f0:48:ae:db:98:82:9e:80:5a:6c:b5:08:03:cd:8b: 68:f2:b9:48:6a:98:76:0a:35:d1:fa:e9:4c:80:ba:75:7d:d4: 1f:99:70:48:e2:8b:39:44:6b:44:a0:cc:2c:f4:8b:b2:07:8f: 3a:9d:a4:7b:58:30:f3:79:d5:53:40:9b:48:5a:4f:37:2d:96: d4:93:85:25:27:89:dc:1c:a8:0f:15:7a:4d:60:0e:7e:c7:bc: bc:cc:c4:d9:68:36:2b:20:33:bb:18:fc:4e:c3:88:a5:80:7f: bb:be:35:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjYwMTI1MDI1OTI5WhcNMjYwMjAxMDI1OTI5WjAYMRYwFAYD VQQDDA02OTc1ODcxMi0xNjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAox3fU0+M6Hk5gA3aAcE2om9I4qnCNYeGqpIu/6LbvLrQ4rNqJ7HXzU2XsQvg iKWB1MYrRSNyWi9NwWXhwyIU3gYHO3AKpkbyZnrf+4qSZQxZs0umLHPzKnB6ArD/ o1zp9qbyIR7Br4D6OXudJzCP3n+279BUs0GvtATQGfO9RUtAJdKqnv9WW/i4tov0 UblgEcjwbKGN0pQM3WhzdFKzeSmfen76nfCD0Nsqc6lA3I3DcQ7uyyxdLV4p8bKT jetkOE4xCaKP72FOFwoS6Mii059Qo9f8S2WHZhuV6t9p7BHBCraf7XJArd30U14C Q8xwgvCgraGNbmIgfCy12bBh7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSZa0C3 qeNqSGh4oUD4EZbSiuoMMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0fz+X8LXmGREKv2pTYhJFh/bkogLK3epZHnQFRWCkwesXjPHz6YEe MBwCaytqTXc9KKOsa9EdtfX+a8FQx4zwr3Ai/96DblHT7sFtfFTjWonQhDRD0Hvy zdMoWwXsAUK1EnOoUStEHjXVJLc3yYvqfimymBOfVT8BzOgvYlaCBmXnX2SXiCmW xINU9iuQx3bKcy3wSK7bmIKegFpstQgDzYto8rlIaph2CjXR+ulMgLp1fdQfmXBI 4os5RGtEoMws9IuyB486naR7WDDzedVTQJtIWk83LZbUk4UlJ4ncHKgPFXpNYA5+ x7y8zMTZaDYrIDO7GPxOw4ilgH+7vjVB -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:01 2026 by rpki-client