This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft File: a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft (raw, json) Hash identifier: 3EoYrPcArVOhB1w4cOwGy6QXnytkXAAukgxTSbiDTVU= Subject key identifier: CA:FA:1E:02:FD:0F:ED:6C:BF:54:93:40:A4:C6:BD:66:2C:B5:0E:E3 Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft Manifest number: 01A8 Signing time: Thu 01 Jan 2026 02:50:29 +0000 Manifest this update: Thu 01 Jan 2026 02:50:29 +0000 Manifest next update: Thu 08 Jan 2026 02:50:29 +0000 Files and hashes: 1: a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl (hash: PFYCwk6IwDV59rWgrJDD4kJdDFxx5zg+sYA65qGGpgY=) 2: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (hash: vn17TWtmnQ+kaPqXgcDq2YoeKGokw+dq87l/z9Wtkuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 02:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Jan 1 02:50:29 2026 GMT Not After : Jan 8 02:50:29 2026 GMT Subject: CN=6955e0f5-a45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:45:0b:f3:e0:a7:0d:4f:77:62:09:85:64:a3: c2:13:3b:c4:6c:13:bb:cd:ac:61:2c:95:13:82:31: fb:38:dd:d0:10:0b:f5:92:4e:ad:91:1e:28:e6:43: b2:ac:60:83:13:09:ba:55:bc:75:26:51:5f:87:19: 6e:64:3a:4a:ac:06:b1:11:6e:25:81:b6:7c:76:0d: 7c:43:f7:93:0f:a7:99:df:c6:53:61:ae:0b:aa:88: ef:9d:f9:52:b5:a4:cf:d3:09:d6:a8:2c:07:15:53: fe:d2:63:1e:0f:ef:38:aa:ff:c5:5d:b1:56:27:60: 6a:58:e9:ab:1a:35:89:c1:be:9d:20:6b:4d:19:ec: 9a:60:53:47:dc:f0:e7:10:f6:05:60:cf:32:c8:34: d6:84:ef:82:47:14:2a:8a:0d:a6:92:cd:90:81:24: 7b:f3:46:12:44:58:49:8d:ae:fb:59:20:a7:3d:38: 1c:a8:5a:c5:69:0d:9a:e2:25:37:e0:1c:49:9b:82: 4f:82:ef:9b:88:d1:c3:13:9c:91:45:4d:09:a7:8f: b7:49:ed:2e:dd:07:ec:22:97:a4:b4:c6:8f:7d:ee: f3:42:6f:c6:71:28:ad:f1:20:af:3d:50:c3:a4:f8: 45:82:62:ec:8e:77:75:f3:21:92:d5:3f:df:36:b9: 4a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FA:1E:02:FD:0F:ED:6C:BF:54:93:40:A4:C6:BD:66:2C:B5:0E:E3 X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f7:7b:af:d6:f0:a4:42:2a:bf:20:7c:54:18:7a:12:c5:b1: 08:24:77:67:a8:85:87:d4:b4:4a:5b:da:24:53:5c:3e:5c:b6: 59:ff:98:cf:f8:17:99:4f:1f:0c:66:c1:ee:09:d0:09:72:74: 49:81:1b:4d:43:78:c0:6a:93:ad:de:dd:cc:f1:90:77:b3:6e: 29:7e:83:c4:e3:08:a7:8c:31:00:74:3f:63:24:c4:41:70:e4: 12:95:90:d3:ff:4a:aa:87:73:0e:e5:79:a5:0a:40:38:ca:71: bf:5b:bf:b2:5e:e2:03:cb:c0:3a:3e:80:f3:a3:23:a9:86:b4: 19:60:e2:9c:20:d3:ab:4f:89:44:25:31:3e:1e:32:e5:ec:45: 20:7f:71:ed:8f:bf:a5:55:61:fc:0d:d7:48:6f:7d:f9:55:30: 27:fd:f6:8a:a7:9a:a3:9f:92:8e:9a:91:c9:80:cf:c3:9f:26: 97:c2:cd:f1:45:4c:2b:60:1e:e2:0a:a1:dd:f8:cd:07:51:b6: 08:64:94:db:5a:54:08:a0:78:cf:9b:88:99:14:a2:9f:8f:58: 7a:44:d7:bd:78:43:97:c2:0d:95:1e:86:80:ad:e8:0f:3c:26: 09:b8:36:3e:4c:1e:22:9c:94:56:99:e9:54:b2:11:60:66:1b: cc:0e:5f:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjYwMTAxMDI1MDI5WhcNMjYwMTA4MDI1MDI5WjAYMRYwFAYD VQQDDA02OTU1ZTBmNS1hNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kUL8+CnDU93YgmFZKPCEzvEbBO7zaxhLJUTgjH7ON3QEAv1kk6tkR4o5kOy rGCDEwm6Vbx1JlFfhxluZDpKrAaxEW4lgbZ8dg18Q/eTD6eZ38ZTYa4LqojvnflS taTP0wnWqCwHFVP+0mMeD+84qv/FXbFWJ2BqWOmrGjWJwb6dIGtNGeyaYFNH3PDn EPYFYM8yyDTWhO+CRxQqig2mks2QgSR780YSRFhJja77WSCnPTgcqFrFaQ2a4iU3 4BxJm4JPgu+biNHDE5yRRU0Jp4+3Se0u3QfsIpektMaPfe7zQm/GcSit8SCvPVDD pPhFgmLsjnd18yGS1T/fNrlK+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr6HgL9 D+1sv1STQKTGvWYstQ7jMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgy WFB1UjhTRXNLTTl6UDV3clUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN93uv1vCkQiq/IHxUGHoSxbEIJHdnqIWH1LRKW9okU1w+XLZZ/5jP +BeZTx8MZsHuCdAJcnRJgRtNQ3jAapOt3t3M8ZB3s24pfoPE4winjDEAdD9jJMRB cOQSlZDT/0qqh3MO5XmlCkA4ynG/W7+yXuIDy8A6PoDzoyOphrQZYOKcINOrT4lE JTE+HjLl7EUgf3Htj7+lVWH8DddIb335VTAn/faKp5qjn5KOmpHJgM/DnyaXws3x RUwrYB7iCqHd+M0HUbYIZJTbWlQIoHjPm4iZFKKfj1h6RNe9eEOXwg2VHoaAregP PCYJuDY+TB4inJRWmelUshFgZhvMDl+d -----END CERTIFICATE-----Generated at Thu Jan 1 19:46:48 2026 by rpki-client