This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: 8CGcVpNyXkB4K/Pl0Sla/3hhZlOzhK1ZlvrQSgzG+iI= Subject key identifier: 65:EE:2F:B0:88:C6:BB:81:2D:02:E7:8E:F0:AA:76:23:AF:C8:4E:23 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 0777 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 0777 Signing time: Sat 10 Jan 2026 20:55:49 +0000 Manifest this update: Sat 10 Jan 2026 20:55:49 +0000 Manifest next update: Sat 17 Jan 2026 20:55:49 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: wmOKGCq7+rqhTSyLwMpT6iEuxSPnazN90ZUyDF9ocB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 20:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1911 (0x777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Jan 10 20:55:49 2026 GMT Not After : Jan 17 20:55:49 2026 GMT Subject: CN=6962bcd5-f885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c7:bb:a0:1c:f9:39:f9:eb:ab:18:01:3d:d7: 07:2d:93:17:ba:eb:9d:ad:b9:2b:a8:69:41:fc:58: dc:03:a0:fa:d6:69:3b:25:73:91:8f:e4:c6:21:93: 84:c2:f2:81:cf:9e:08:08:bc:08:34:1f:51:68:ad: b2:89:b8:79:0e:82:99:ec:aa:fe:f4:eb:fd:28:b0: 42:17:b9:fb:3f:c2:76:d4:c3:66:be:82:75:17:34: a8:e5:3b:52:4e:14:fb:f0:95:13:78:63:c6:be:77: bd:f6:71:56:a5:c2:a7:08:16:62:09:3b:cb:7b:2b: 6a:86:e1:70:c4:cd:ae:97:24:7a:6e:67:ee:2c:d7: 36:d6:e4:55:fd:72:75:5c:c3:62:4a:2c:99:e1:45: bd:b9:49:08:33:ab:55:3f:26:16:a9:8c:67:93:66: e6:7a:f3:3a:db:c9:bc:e1:c0:06:89:ee:89:2b:10: 4c:48:9d:6c:c0:4b:0d:8d:26:09:8f:c7:ec:c3:b5: 6b:30:89:c5:b9:a0:73:08:e7:34:70:7a:35:3e:8e: 6a:0c:7a:11:f4:6c:26:56:09:78:b0:fd:7a:7e:d9: ce:77:08:35:a9:04:bf:df:78:84:06:1d:ae:c3:e6: a2:17:15:23:d3:91:20:d4:c0:17:d7:f9:5f:b6:13: a5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:EE:2F:B0:88:C6:BB:81:2D:02:E7:8E:F0:AA:76:23:AF:C8:4E:23 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:06:34:d7:1f:a3:ab:0c:0d:8e:23:57:f0:05:8e:c0:1e:c0: 15:1b:99:ee:53:bb:4a:38:bf:2c:65:38:95:13:7b:ad:67:e6: 98:69:58:27:e7:c7:29:64:e1:2e:07:33:84:eb:2d:90:97:27: 23:f8:88:92:1c:a0:88:9f:a6:4c:eb:f8:84:e2:80:1b:90:90: 41:e4:4c:d0:9b:bf:ce:64:08:81:0f:14:d6:37:e4:e0:45:3e: ae:1d:2e:c6:19:59:c6:d3:90:75:75:18:25:8f:74:b1:49:e0: c6:ec:41:1a:6e:c9:8a:6a:c5:d4:8b:69:18:90:2c:23:12:55: 09:ef:87:96:f1:1e:5f:97:2b:de:f3:f1:b8:63:04:0b:0b:67: 75:73:99:e3:e9:df:cb:0f:dc:85:b1:50:e9:14:99:68:12:01: d9:5b:ea:bb:49:c7:6d:84:d2:b2:c1:15:1a:6e:9d:4d:e8:51: 22:82:f0:9e:8e:58:95:e0:74:f6:b0:41:f4:82:c6:6d:a1:aa: 63:c3:04:d8:0c:24:f9:03:45:17:fd:b1:d9:4e:fb:d8:2e:7c: 8d:be:d8:d7:be:a0:11:2d:57:28:94:d5:45:2e:8f:39:62:2e: ef:0b:99:d5:af:d9:9b:8b:9b:fb:47:03:83:74:37:8b:87:52: 21:88:ae:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjYwMTEwMjA1NTQ5WhcNMjYwMTE3MjA1NTQ5WjAYMRYwFAYD VQQDDA02OTYyYmNkNS1mODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8e7oBz5OfnrqxgBPdcHLZMXuuudrbkrqGlB/FjcA6D61mk7JXORj+TGIZOE wvKBz54ICLwINB9RaK2yibh5DoKZ7Kr+9Ov9KLBCF7n7P8J21MNmvoJ1FzSo5TtS ThT78JUTeGPGvne99nFWpcKnCBZiCTvLeytqhuFwxM2ulyR6bmfuLNc21uRV/XJ1 XMNiSiyZ4UW9uUkIM6tVPyYWqYxnk2bmevM628m84cAGie6JKxBMSJ1swEsNjSYJ j8fsw7VrMInFuaBzCOc0cHo1Po5qDHoR9GwmVgl4sP16ftnOdwg1qQS/33iEBh2u w+aiFxUj05Eg1MAX1/lfthOlJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXuL7CI xruBLQLnjvCqdiOvyE4jMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqBjTXH6OrDA2OI1fwBY7AHsAVG5nuU7tKOL8sZTiVE3utZ+aYaVgn 58cpZOEuBzOE6y2Qlycj+IiSHKCIn6ZM6/iE4oAbkJBB5EzQm7/OZAiBDxTWN+Tg RT6uHS7GGVnG05B1dRglj3SxSeDG7EEabsmKasXUi2kYkCwjElUJ74eW8R5flyve 8/G4YwQLC2d1c5nj6d/LD9yFsVDpFJloEgHZW+q7ScdthNKywRUabp1N6FEigvCe jliV4HT2sEH0gsZtoapjwwTYDCT5A0UX/bHZTvvYLnyNvtjXvqARLVcolNVFLo85 Yi7vC5nVr9mbi5v7RwODdDeLh1IhiK6p -----END CERTIFICATE-----Generated at Mon Jan 12 10:39:54 2026 by rpki-client