This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft File: 3qY-MQG_FZkCCkCD-hw9lkshMMA.mft (raw, json) Hash identifier: aJusTl5+5NWhR9yXzmtLL6SR1cLUKxJc6M4na6rXASE= Subject key identifier: 3C:85:4C:60:FB:B9:8A:D5:2F:DD:C6:9F:D1:7C:03:56:F5:86:56:89 Authority key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 Certificate issuer: /CN=A9161857/serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft Manifest number: 80 Signing time: Fri 09 Jan 2026 06:06:50 +0000 Manifest this update: Fri 09 Jan 2026 06:06:50 +0000 Manifest next update: Fri 16 Jan 2026 06:06:50 +0000 Files and hashes: 1: 3qY-MQG_FZkCCkCD-hw9lkshMMA.crl (hash: 7Qq8eeGYVkl5YBZn/tcfNvW9P5kc7sHIhNSNY3m7Vp0=) 2: 375E8232C13411F0A297231CC4F9AE02.roa (hash: AwII9RDgUNte9KKbs2S59qK6HMN8L+pjlEIiZqATsVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 Jan 2026 06:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Validity Not Before: Jan 9 06:06:50 2026 GMT Not After : Jan 16 06:06:50 2026 GMT Subject: CN=69609afa-091f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:e8:8c:74:fb:98:a7:c9:6c:83:46:ed:dc: d0:ec:3e:04:7a:3a:af:fc:e5:fb:fa:00:14:54:b3: 97:a9:d1:a1:23:e3:c6:58:3c:52:8b:e1:8b:11:b1: d6:88:53:19:b5:95:80:4f:f0:b6:6f:64:ae:2d:06: 24:ab:46:75:8d:27:d3:de:8f:5f:97:f8:44:35:ba: b2:b7:13:e6:de:fb:0b:f2:99:5b:54:db:6a:28:5e: 07:20:fc:f7:d8:e7:c1:10:03:3c:a1:1e:ef:83:ee: 46:d9:cb:78:a8:9e:86:ce:eb:a6:47:21:cc:2e:84: 0d:31:31:69:9a:00:b7:c8:2d:f1:e3:e7:25:6f:da: 05:95:01:b9:d7:43:f7:cf:7b:41:88:a8:0a:de:a3: 8b:f4:cd:42:a5:de:af:61:ef:65:96:c2:37:7f:69: 0c:e0:7c:14:35:7e:eb:18:3c:5a:0d:20:81:f3:bf: 6b:4d:fb:c2:d0:f0:81:b1:0e:5f:56:f5:f3:56:81: 30:8a:58:5f:84:ba:ae:c8:41:f4:6c:73:84:f1:1d: 7a:f7:46:8a:91:51:b0:25:ae:bf:0b:30:0d:6a:c7: 1a:6e:dc:f7:71:ac:d7:11:73:e8:6b:10:93:e8:a8: c1:0f:bb:5f:99:a7:97:e1:9e:49:9a:ce:c6:9e:6a: fa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:85:4C:60:FB:B9:8A:D5:2F:DD:C6:9F:D1:7C:03:56:F5:86:56:89 X509v3 Authority Key Identifier: keyid:DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:4f:47:39:cc:ec:a4:2b:03:19:0d:99:7e:ed:3e:b0:00:f3: 73:bd:ab:1d:e8:90:ba:c2:ab:71:07:b8:20:cd:ca:cb:84:9a: d5:cc:8b:c6:38:5d:25:c7:50:ab:c8:58:3b:27:65:59:b4:8c: 1a:9d:42:e6:73:a0:46:1a:4e:83:18:5e:95:d2:51:e0:b9:0b: 22:8a:7a:22:28:cb:06:b4:b2:bc:60:d2:d1:79:53:cd:db:07: 58:31:ae:bd:98:11:60:c4:55:4b:b3:18:7f:09:82:7b:a6:f7: 47:5a:66:e0:0d:0e:38:4d:74:ee:59:18:92:d9:88:96:bf:09: 8e:6a:7a:7c:5a:82:50:6b:ed:bc:68:ff:3f:72:1d:8b:96:fe: db:0f:69:27:cf:ae:d0:24:d7:1d:76:48:57:b3:88:bf:b9:e6: 4f:bf:3d:79:1d:79:2f:97:b5:e6:b3:51:53:e6:f5:0e:03:a6: 18:39:2f:a5:70:f0:81:c8:6a:e8:4e:9b:2a:22:fc:c7:7f:9a: c1:90:77:7f:81:9d:92:29:a3:01:b8:53:28:3b:34:ae:52:6f: ba:75:52:90:ff:28:fa:e5:e1:8e:71:0e:95:43:88:9e:2f:30: f8:d8:91:58:42:a6:48:57:d9:af:01:fe:7c:7d:6d:78:e2:24: b1:85:6f:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjE4NTcxMTAvBgNVBAUTKERFQTYzRTMxMDFCRjE1OTkwMjBBNDA4M0ZBMUMzRDk2 NEIyMTMwQzAwHhcNMjYwMTA5MDYwNjUwWhcNMjYwMTE2MDYwNjUwWjAYMRYwFAYD VQQDDA02OTYwOWFmYS0wOTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyXojHT7mKfJbING7dzQ7D4Eejqv/OX7+gAUVLOXqdGhI+PGWDxSi+GLEbHW iFMZtZWAT/C2b2SuLQYkq0Z1jSfT3o9fl/hENbqytxPm3vsL8plbVNtqKF4HIPz3 2OfBEAM8oR7vg+5G2ct4qJ6GzuumRyHMLoQNMTFpmgC3yC3x4+clb9oFlQG510P3 z3tBiKgK3qOL9M1Cpd6vYe9llsI3f2kM4HwUNX7rGDxaDSCB879rTfvC0PCBsQ5f VvXzVoEwilhfhLquyEH0bHOE8R1690aKkVGwJa6/CzANascabtz3cazXEXPoaxCT 6KjBD7tfmaeX4Z5Jms7Gnmr64wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyFTGD7 uYrVL93Gn9F8A1b1hlaJMB8GA1UdIwQYMBaAFN6mPjEBvxWZAgpAg/ocPZZLITDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTg1Ny9DQjE0QkYyNjND OTgxMUYwQUYxMjRCMzhDNEY5QUUwMi8zcVktTVFHX0Zaa0NDa0NELWh3OWxrc2hN TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxWS1NUUdfRlprQ0NrQ0QtaHc5bGtzaE1NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTg1Ny9DQjE0QkYyNjNDOTgxMUYwQUYxMjRCMzhDNEY5QUUwMi8zcVktTVFHX0Za a0NDa0NELWh3OWxrc2hNTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIT0c5zOykKwMZDZl+7T6wAPNzvasd6JC6wqtxB7ggzcrLhJrVzIvG OF0lx1CryFg7J2VZtIwanULmc6BGGk6DGF6V0lHguQsiinoiKMsGtLK8YNLReVPN 2wdYMa69mBFgxFVLsxh/CYJ7pvdHWmbgDQ44TXTuWRiS2YiWvwmOanp8WoJQa+28 aP8/ch2Llv7bD2knz67QJNcddkhXs4i/ueZPvz15HXkvl7Xms1FT5vUOA6YYOS+l cPCByGroTpsqIvzHf5rBkHd/gZ2SKaMBuFMoOzSuUm+6dVKQ/yj65eGOcQ6VQ4ie LzD42JFYQqZIV9mvAf58fW144iSxhW/B -----END CERTIFICATE-----Generated at Fri Jan 9 09:38:52 2026 by rpki-client