This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft File: Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft (raw, json) Hash identifier: 2DCwJ/Le6hf3NuW2h9IxFOo5gwDP9Cn/99upJRV9H74= Subject key identifier: 9A:B4:63:B1:88:8E:23:E9:28:9D:3C:2C:C1:50:C7:61:D2:31:95:79 Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0C47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft Manifest number: 0C40 Signing time: Sat 24 Jan 2026 18:16:51 +0000 Manifest this update: Sat 24 Jan 2026 18:16:51 +0000 Manifest next update: Sat 31 Jan 2026 18:16:51 +0000 Files and hashes: 1: Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl (hash: bSSQHerCeavlT8VKGmkQKPO0H/n08yO5FhCmukSUB44=) 2: EE985C561CEA11EA8B382C0BC4F9AE02.roa (hash: /clDM2qDPD5uC0RxJEAiWWigew7J9uL+PN4x0Vi4eF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3143 (0xc47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20, serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: Jan 24 18:16:51 2026 GMT Not After : Jan 31 18:16:51 2026 GMT Subject: CN=69750c93-c8e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a1:92:1b:70:ed:fa:2b:bc:5a:2b:bb:d6:15: b8:1a:a0:8b:ce:d4:3c:e9:13:49:bc:33:d6:48:17: 93:ff:4d:95:02:52:e7:43:ec:a5:03:14:c9:1b:c7: 2c:e7:e2:44:ff:09:74:23:14:73:27:80:34:9c:68: a5:31:4b:a9:81:3b:85:61:71:fd:ed:ea:1b:f9:86: f0:cb:e1:f4:cd:51:23:4a:5d:ce:84:b7:93:13:03: 4c:66:2a:d8:1f:46:9e:ab:e3:95:7b:e0:34:f3:47: ab:84:c6:92:64:ff:73:fa:22:73:1b:e1:51:1c:99: b6:5d:df:c1:d9:68:15:c4:34:65:c4:39:85:b8:63: 3a:79:38:fb:36:cf:51:e3:38:67:75:22:f7:32:32: 01:eb:08:9b:44:1c:a7:13:c8:b5:2a:ed:4b:13:b0: f3:71:2a:b8:54:56:53:aa:bf:ef:3b:4e:5c:67:49: 2a:4c:55:b2:7c:44:88:13:46:ce:e4:c5:5f:6a:cc: 6d:70:4f:14:35:b7:df:29:2b:4e:2f:f0:77:f5:6f: 74:34:b5:98:a9:57:ad:d3:62:cf:9c:e9:f2:51:02: 95:c3:cd:74:ea:31:e2:be:40:55:3e:bd:67:c0:c0: 7e:28:05:64:71:b6:98:c9:dc:47:e8:0f:56:67:95: a7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B4:63:B1:88:8E:23:E9:28:9D:3C:2C:C1:50:C7:61:D2:31:95:79 X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:b6:3e:c7:7e:c1:aa:fe:18:2e:42:27:6f:6a:be:c6:6d:bb: 83:f0:a0:03:58:74:1d:f2:01:2d:6c:b5:5b:1c:02:64:b0:c8: 85:00:14:cd:e7:d6:a8:43:f5:18:67:b6:fd:8c:9d:5e:4a:53: f0:74:7a:92:85:48:3f:2b:12:f2:84:64:51:d3:2c:31:4e:58: aa:e9:e5:75:5d:d6:53:72:b6:ec:6b:d4:30:49:97:8f:61:9f: ee:22:91:b6:f5:59:0c:4d:e2:ab:e8:a0:f7:06:6b:01:ea:d8: 21:87:b9:b3:53:a5:23:18:4b:00:05:8c:71:fd:61:d3:bb:8d: 03:c7:23:4c:a9:99:1c:62:cd:42:55:37:1e:48:5d:15:e3:b6: 40:51:fc:5f:f7:5a:22:46:ba:6a:b7:a6:a6:a8:ab:a5:e5:8e: 8f:82:fb:c1:48:05:4c:79:43:29:c4:d0:20:05:df:f5:04:60: b6:8a:3d:36:d0:b8:79:b2:57:36:71:c4:9b:b1:da:95:8f:3c: 18:63:69:68:4d:bb:93:18:07:da:53:53:91:0d:2c:bb:43:79: e4:ea:2e:69:93:43:d8:23:a3:3b:52:35:fa:01:85:e7:9b:5d: 0a:a8:45:ec:36:a6:3c:02:9f:30:a2:39:1d:12:2a:44:f9:c3: 4a:3a:6f:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjYwMTI0MTgxNjUxWhcNMjYwMTMxMTgxNjUxWjAYMRYwFAYD VQQDDA02OTc1MGM5My1jOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaGSG3Dt+iu8Wiu71hW4GqCLztQ86RNJvDPWSBeT/02VAlLnQ+ylAxTJG8cs 5+JE/wl0IxRzJ4A0nGilMUupgTuFYXH97eob+Ybwy+H0zVEjSl3OhLeTEwNMZirY H0aeq+OVe+A080erhMaSZP9z+iJzG+FRHJm2Xd/B2WgVxDRlxDmFuGM6eTj7Ns9R 4zhndSL3MjIB6wibRBynE8i1Ku1LE7DzcSq4VFZTqr/vO05cZ0kqTFWyfESIE0bO 5MVfasxtcE8UNbffKStOL/B39W90NLWYqVet02LPnOnyUQKVw8106jHivkBVPr1n wMB+KAVkcbaYydxH6A9WZ5WnywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJq0Y7GI jiPpKJ08LMFQx2HSMZV5MB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQyMC8zRjc3MDNDMjFDRTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNy UTB4cEtMaXI2X0JkWXhQMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjtj7HfsGq/hguQidvar7GbbuD8KADWHQd8gEtbLVbHAJksMiFABTN 59aoQ/UYZ7b9jJ1eSlPwdHqShUg/KxLyhGRR0ywxTliq6eV1XdZTcrbsa9QwSZeP YZ/uIpG29VkMTeKr6KD3BmsB6tghh7mzU6UjGEsABYxx/WHTu40DxyNMqZkcYs1C VTceSF0V47ZAUfxf91oiRrpqt6amqKul5Y6PgvvBSAVMeUMpxNAgBd/1BGC2ij02 0Lh5slc2ccSbsdqVjzwYY2loTbuTGAfaU1ORDSy7Q3nk6i5pk0PYI6M7UjX6AYXn m10KqEXsNqY8Ap8wojkdEipE+cNKOm/C -----END CERTIFICATE-----Generated at Sun Jan 25 12:24:08 2026 by rpki-client