This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: AzWXnDUTNuA8jZEG/lsjJFYmqL0VBzflVwOTLyCns7k= Subject key identifier: F5:65:73:02:8E:A5:11:BD:86:B0:08:C7:68:66:43:39:A1:85:6E:33 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0CEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0CE0 Signing time: Tue 06 Jan 2026 17:49:01 +0000 Manifest this update: Tue 06 Jan 2026 17:49:01 +0000 Manifest next update: Tue 13 Jan 2026 17:49:01 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: p6IiKCA5H+4F5V4MXR2wqZGtd3GL+IupQu1gs+uRT7s=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 Jan 2026 17:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3311 (0xcef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Jan 6 17:49:01 2026 GMT Not After : Jan 13 17:49:01 2026 GMT Subject: CN=695d4b0d-2a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:6c:9e:e9:09:65:10:1d:7f:23:8e:23:ed:46: 93:49:eb:62:b6:eb:1b:4b:24:7d:e3:2a:d7:3f:e9: 02:c3:c5:52:7a:3d:96:3c:b5:62:76:05:97:b9:1c: fb:96:54:fe:b5:34:ea:c2:64:b5:c3:4e:a7:21:f5: 98:ec:b1:3e:bf:6c:33:2f:3d:75:8d:91:0d:c3:58: 1e:96:14:bd:34:fc:34:11:ab:70:c4:44:34:6e:25: 5a:2c:66:14:7b:89:dd:5f:a2:4a:6c:8e:b7:cf:7f: fe:f0:a8:2c:3b:cd:4e:71:c5:ad:16:bd:c3:73:f7: bd:c0:e9:19:c1:8e:42:4e:25:3b:3c:bf:41:b8:b7: c4:d8:46:45:04:c5:f6:69:48:cc:fd:85:32:20:e1: 69:d2:fc:56:70:b6:a4:bb:5f:42:0e:1d:9e:27:d3: bc:41:2b:02:38:f6:3d:47:9a:4a:94:db:0d:2e:6f: ac:ca:31:a4:f4:63:75:0a:3a:af:e6:55:66:53:43: 0c:82:9f:9c:70:95:16:00:38:ae:24:cb:64:9b:42: 6a:16:80:d7:d6:1d:8d:34:ab:cf:e9:9d:b6:48:21: 5d:1f:a3:cb:a9:4d:7b:0c:14:14:af:6b:0f:1f:19: 2f:5b:09:83:eb:f7:7b:3c:8d:9c:fc:b9:1c:88:e2: a2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:65:73:02:8E:A5:11:BD:86:B0:08:C7:68:66:43:39:A1:85:6E:33 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:8d:4a:a3:9f:eb:d3:ee:b3:4f:ae:fc:75:ab:ca:08:0b:82: 0e:c5:5c:af:28:04:81:f2:1b:cd:a3:e9:22:a3:1c:1d:cf:5f: 35:c6:5c:ec:9f:2e:c3:de:e9:fe:31:56:c5:2c:96:cd:ec:1e: a8:9e:a2:af:0c:78:84:e0:38:09:f1:c9:af:b9:85:e0:ae:d0: e9:97:bf:ca:b6:97:81:9d:30:28:a3:e0:8e:57:9a:78:9c:0f: 37:b7:6e:f6:8f:65:64:61:54:fd:33:23:da:d7:45:2c:54:6f: 72:8f:7a:69:49:2b:1a:1c:81:a2:b2:b9:dd:72:bd:6d:30:2a: 9a:a6:39:73:cd:4e:11:9f:02:06:5a:1f:f3:49:c9:68:c2:4e: 58:b3:27:64:89:28:98:ab:66:3e:10:15:71:ce:e1:80:c9:54: b1:8d:f8:3c:41:79:ac:b3:0a:2e:4b:e3:43:0a:c2:07:56:6e: 7d:81:55:30:41:ca:8a:f6:6d:34:74:02:05:e5:b0:7f:a5:bf: c0:fe:27:1c:4e:c5:50:cb:36:7e:af:2e:88:d4:ce:c2:34:e9: 30:e6:55:6b:77:e9:2c:8c:ab:4f:1b:21:a9:a0:29:45:72:f3: a1:2b:9b:57:a5:fb:bc:ec:10:49:89:dd:08:82:33:b5:13:0a: 0b:18:34:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjYwMTA2MTc0OTAxWhcNMjYwMTEzMTc0OTAxWjAYMRYwFAYD VQQDDA02OTVkNGIwZC0yYTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgmye6QllEB1/I44j7UaTSetitusbSyR94yrXP+kCw8VSej2WPLVidgWXuRz7 llT+tTTqwmS1w06nIfWY7LE+v2wzLz11jZENw1gelhS9NPw0EatwxEQ0biVaLGYU e4ndX6JKbI63z3/+8KgsO81OccWtFr3Dc/e9wOkZwY5CTiU7PL9BuLfE2EZFBMX2 aUjM/YUyIOFp0vxWcLaku19CDh2eJ9O8QSsCOPY9R5pKlNsNLm+syjGk9GN1Cjqv 5lVmU0MMgp+ccJUWADiuJMtkm0JqFoDX1h2NNKvP6Z22SCFdH6PLqU17DBQUr2sP HxkvWwmD6/d7PI2c/LkciOKi1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVlcwKO pRG9hrAIx2hmQzmhhW4zMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQjUqjn+vT7rNPrvx1q8oIC4IOxVyvKASB8hvNo+kioxwdz181xlzs ny7D3un+MVbFLJbN7B6onqKvDHiE4DgJ8cmvuYXgrtDpl7/KtpeBnTAoo+COV5p4 nA83t272j2VkYVT9MyPa10UsVG9yj3ppSSsaHIGisrndcr1tMCqapjlzzU4RnwIG Wh/zSclowk5YsydkiSiYq2Y+EBVxzuGAyVSxjfg8QXmsswouS+NDCsIHVm59gVUw QcqK9m00dAIF5bB/pb/A/iccTsVQyzZ+ry6I1M7CNOkw5lVrd+ksjKtPGyGpoClF cvOhK5tXpfu87BBJid0IgjO1EwoLGDRJ -----END CERTIFICATE-----Generated at Thu Jan 8 18:02:07 2026 by rpki-client