This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: JR7y4bzqv5iGtjle/AECjXSWxnt6rfsO7Is5wfR9kpo= Subject key identifier: 59:EF:15:24:1F:F2:57:23:35:27:92:71:2B:FD:ED:49:03:EB:F9:36 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 060A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 0602 Signing time: Sat 24 Jan 2026 22:10:49 +0000 Manifest this update: Sat 24 Jan 2026 22:10:48 +0000 Manifest next update: Sat 31 Jan 2026 22:10:48 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: 3YiRGm9yKlj97cBsCkv3WYS1So8eb9U3fXf5oUd1Tuo=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: BH/z7dAKTqAskzwNrhdIelrqYYR7ZR+hGgbRW0cxyK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Jan 24 22:10:48 2026 GMT Not After : Jan 31 22:10:48 2026 GMT Subject: CN=69754369-fdd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ce:47:67:f6:50:f5:a0:e6:d5:67:84:75:6c: bf:f1:8d:65:62:93:83:89:44:4e:d5:97:c6:7b:65: 6f:d6:3a:bb:6a:7a:49:e1:69:5e:0f:11:95:7c:5c: 08:a6:86:50:5d:cf:69:a0:d0:3f:7d:5b:d1:e1:6c: 4f:83:23:6d:6c:a8:9c:af:a9:ce:84:6b:26:a0:29: 2d:92:87:6e:42:16:9f:b6:f5:07:6c:f9:a1:1c:dc: 0d:94:63:08:bb:90:f9:df:6a:a8:9f:8d:27:a6:fd: d3:ed:8b:b6:c2:e5:97:a7:7c:43:e9:fd:78:2b:6c: 6a:6f:2b:4c:fc:d8:ac:e9:68:b7:0b:e2:57:13:da: 18:9f:b7:f5:5a:aa:36:fa:ed:ac:b9:ea:47:b6:67: 02:15:75:88:f4:98:b4:e5:81:8e:b7:c1:9c:c0:71: 9b:4a:ab:3e:05:4e:1a:24:89:57:f8:65:cb:93:9f: b4:38:04:bc:77:96:7d:7b:7a:f6:e1:e0:a0:75:2b: f0:df:e4:6e:a4:80:d7:0b:ba:6f:88:de:26:6b:be: e7:04:16:fa:7a:51:56:9e:9b:e2:21:a8:ee:23:e7: 67:71:d0:b8:c1:48:36:93:79:72:43:22:3b:37:61: 78:d4:df:e0:fc:b5:32:65:05:17:e6:d8:a1:32:48: df:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EF:15:24:1F:F2:57:23:35:27:92:71:2B:FD:ED:49:03:EB:F9:36 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:34:f5:34:54:e3:26:57:42:e2:56:82:87:e3:af:70:10:b9: 4b:a5:18:d3:7e:ed:e6:69:2c:25:77:52:22:db:1d:01:77:7f: 39:da:cf:01:b9:04:64:8c:5a:7e:6c:91:5a:32:9f:bc:d3:80: d1:67:6b:01:76:87:d8:01:23:5a:09:e5:e3:45:99:1a:a4:73: 75:47:20:89:98:3e:0c:5c:8c:64:e2:6b:ef:28:38:ad:90:ea: 46:52:26:d3:13:1f:c8:c9:a9:c7:fc:d4:65:95:be:6a:03:84: 32:c9:7c:85:b8:51:79:91:8e:56:3c:1a:a8:c5:c5:47:25:49: 5f:e3:23:4e:4a:eb:70:dd:56:5a:dc:82:f8:12:65:8c:7d:12: 9d:9d:34:70:8c:78:04:cc:1e:fd:37:45:f6:0b:01:ec:eb:17: 28:c7:18:59:47:f3:19:cd:59:b9:7b:e1:33:1a:7b:11:1b:a6: 02:3a:24:1d:ef:6e:7b:35:c9:61:5b:42:fd:b4:f8:6a:97:43: 99:6b:e4:02:30:ef:2e:cb:3f:46:52:25:87:7a:f9:04:d1:d4: 8c:88:0e:23:1a:a5:53:e3:dd:77:df:c5:68:e3:21:ad:0c:6a: 84:a7:df:05:f5:0c:8d:23:49:ba:7e:bb:8b:db:64:06:cb:40: 91:f9:f5:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjYwMTI0MjIxMDQ4WhcNMjYwMTMxMjIxMDQ4WjAYMRYwFAYD VQQDDA02OTc1NDM2OS1mZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkc5HZ/ZQ9aDm1WeEdWy/8Y1lYpODiURO1ZfGe2Vv1jq7anpJ4WleDxGVfFwI poZQXc9poNA/fVvR4WxPgyNtbKicr6nOhGsmoCktkoduQhaftvUHbPmhHNwNlGMI u5D532qon40npv3T7Yu2wuWXp3xD6f14K2xqbytM/Nis6Wi3C+JXE9oYn7f1Wqo2 +u2suepHtmcCFXWI9Ji05YGOt8GcwHGbSqs+BU4aJIlX+GXLk5+0OAS8d5Z9e3r2 4eCgdSvw3+RupIDXC7pviN4ma77nBBb6elFWnpviIajuI+dncdC4wUg2k3lyQyI7 N2F41N/g/LUyZQUX5tihMkjfYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnvFSQf 8lcjNSeScSv97UkD6/k2MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWNPU0VOMmV0LiVoKH469wELlLpRjTfu3maSwld1Ii2x0Bd3852s8B uQRkjFp+bJFaMp+804DRZ2sBdofYASNaCeXjRZkapHN1RyCJmD4MXIxk4mvvKDit kOpGUibTEx/IyanH/NRllb5qA4QyyXyFuFF5kY5WPBqoxcVHJUlf4yNOSutw3VZa 3IL4EmWMfRKdnTRwjHgEzB79N0X2CwHs6xcoxxhZR/MZzVm5e+EzGnsRG6YCOiQd 7257NclhW0L9tPhql0OZa+QCMO8uyz9GUiWHevkE0dSMiA4jGqVT491338Vo4yGt DGqEp98F9QyNI0m6fruL22QGy0CR+fUo -----END CERTIFICATE-----Generated at Sun Jan 25 23:08:00 2026 by rpki-client