This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: 9vrcaguz29A9b9WDL7zNL6pyb13fjYqXSfbWt1r6Wco= Subject key identifier: C7:C6:AC:36:61:AD:C9:EE:1F:90:DA:DC:44:FF:8E:06:F1:D4:76:A0 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 0A34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 0A2C Signing time: Mon 12 Jan 2026 19:12:39 +0000 Manifest this update: Mon 12 Jan 2026 19:12:39 +0000 Manifest next update: Mon 19 Jan 2026 19:12:39 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: ZNfb8tNs/NfhqJbO0bV1ecAvdHXViqPsoop2j+qzloo=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 19:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2612 (0xa34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Jan 12 19:12:39 2026 GMT Not After : Jan 19 19:12:39 2026 GMT Subject: CN=696547a7-1e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e1:3f:49:5d:48:75:d7:6c:ea:db:c4:f0:da: f2:c7:73:6d:0f:57:c9:a5:3e:f0:0a:78:f5:8c:39: 88:51:4c:89:3b:81:d1:09:03:66:56:82:de:89:4c: 88:ea:3b:e7:a8:d5:bd:2e:43:78:8d:8b:ba:1f:93: 22:86:f9:e3:e5:96:25:c2:6e:d5:76:17:f9:82:d7: 65:9b:2a:ac:10:94:06:94:e5:51:98:c7:72:ca:05: 34:ad:52:9f:9e:71:c2:72:f7:b4:46:40:41:7a:fe: 8b:7f:0f:bd:a0:06:09:e6:2d:63:94:9b:b2:74:76: 94:bb:e3:99:1a:80:b3:4d:ea:f3:73:53:ea:ab:a4: f5:77:23:0d:92:2b:d1:39:ce:a6:39:28:f2:3b:b9: 89:bd:ad:b4:77:1e:57:32:2b:95:13:00:27:3d:12: 56:c6:ad:05:d8:07:87:c8:00:2d:7d:7c:c4:3d:68: 1f:b8:84:d2:e4:c5:6d:e1:65:f0:88:bc:b3:f9:7f: e0:34:d5:70:5c:f5:bd:33:d5:38:bb:f1:74:5f:88: f8:1c:ae:07:25:93:89:21:9c:0e:9d:2b:fd:bf:34: ed:0f:07:19:c0:1b:43:49:ad:3f:86:13:d6:d2:d5: 0d:4d:30:c1:08:5b:dd:69:49:80:ca:48:8f:00:59: a7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C6:AC:36:61:AD:C9:EE:1F:90:DA:DC:44:FF:8E:06:F1:D4:76:A0 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:09:b0:cd:86:49:f1:b1:31:9c:91:60:31:a6:dd:ce:e9:e1: 9a:0a:53:c4:b4:65:74:f0:a0:93:de:f8:b8:46:86:12:1f:2e: e5:e1:70:71:40:d9:f4:a8:48:30:dc:26:88:9f:2b:c1:3f:04: d6:2b:ad:ea:b8:d3:1e:1d:80:1e:7b:40:1f:a9:0c:93:55:27: ea:55:9d:4f:a2:35:f9:6f:38:63:80:65:5e:57:7e:38:71:2d: cb:c3:a8:2d:73:61:ba:55:06:7e:5f:01:78:82:09:77:78:43: 05:2c:95:66:f7:40:63:f3:c5:6f:d2:db:9e:ed:07:c8:56:03: d4:cb:40:6f:f3:77:02:0f:7c:fd:3b:78:34:0a:fe:00:91:01: a5:e6:38:0e:f0:eb:d3:5f:c8:08:04:47:85:b9:cf:39:36:3c: dd:21:3d:cb:11:43:0d:93:1b:a3:49:e1:67:9f:52:2d:81:0d: ce:7d:9b:c0:07:f4:54:21:ae:10:53:01:bc:26:26:a6:63:28: 2b:1b:90:6f:8a:7a:05:a4:d2:97:d8:3b:f6:d5:e1:35:5a:ae: 3a:92:9d:33:80:aa:ef:19:05:ab:c2:a1:7a:c1:4a:a4:83:1a: a3:45:1b:8c:7a:58:e1:87:51:47:0d:8b:8f:23:9c:54:75:4e: 83:80:0f:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjYwMTEyMTkxMjM5WhcNMjYwMTE5MTkxMjM5WjAYMRYwFAYD VQQDDA02OTY1NDdhNy0xZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOE/SV1Iddds6tvE8Nryx3NtD1fJpT7wCnj1jDmIUUyJO4HRCQNmVoLeiUyI 6jvnqNW9LkN4jYu6H5Mihvnj5ZYlwm7Vdhf5gtdlmyqsEJQGlOVRmMdyygU0rVKf nnHCcve0RkBBev6Lfw+9oAYJ5i1jlJuydHaUu+OZGoCzTerzc1Pqq6T1dyMNkivR Oc6mOSjyO7mJva20dx5XMiuVEwAnPRJWxq0F2AeHyAAtfXzEPWgfuITS5MVt4WXw iLyz+X/gNNVwXPW9M9U4u/F0X4j4HK4HJZOJIZwOnSv9vzTtDwcZwBtDSa0/hhPW 0tUNTTDBCFvdaUmAykiPAFmnfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfGrDZh rcnuH5Da3ET/jgbx1HagMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgCbDNhknxsTGckWAxpt3O6eGaClPEtGV08KCT3vi4RoYSHy7l4XBx QNn0qEgw3CaInyvBPwTWK63quNMeHYAee0AfqQyTVSfqVZ1PojX5bzhjgGVeV344 cS3Lw6gtc2G6VQZ+XwF4ggl3eEMFLJVm90Bj88Vv0tue7QfIVgPUy0Bv83cCD3z9 O3g0Cv4AkQGl5jgO8OvTX8gIBEeFuc85NjzdIT3LEUMNkxujSeFnn1ItgQ3OfZvA B/RUIa4QUwG8JiamYygrG5BvinoFpNKX2Dv21eE1Wq46kp0zgKrvGQWrwqF6wUqk gxqjRRuMeljhh1FHDYuPI5xUdU6DgA8G -----END CERTIFICATE-----Generated at Tue Jan 13 03:58:12 2026 by rpki-client