This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: IZnwQAxAowShof8aulxZ82oXUs9jLYGWE/OdeP6pdjY= Subject key identifier: 0B:11:DD:06:92:A1:6A:E7:0A:0F:55:7A:9E:35:7C:A6:68:8C:0D:7F Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01C1 Signing time: Thu 01 Jan 2026 02:34:52 +0000 Manifest this update: Thu 01 Jan 2026 02:34:51 +0000 Manifest next update: Thu 08 Jan 2026 02:34:51 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: ppmn94IxXqcCnQqDioIXqHRIYjV2yTjQU7IlTAJiwAM=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 02:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Jan 1 02:34:51 2026 GMT Not After : Jan 8 02:34:51 2026 GMT Subject: CN=6955dd4c-14c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f0:1f:6f:7a:1c:e7:62:03:05:9e:3b:ea:fb: 57:76:9d:5e:8f:60:a4:d5:3d:e5:47:dc:c2:e8:7f: f7:44:cf:1c:87:4f:24:2d:ce:09:0c:a5:2c:54:40: 73:1a:35:96:c2:1c:5b:b8:84:2a:ae:c2:df:f7:c3: e5:45:75:4b:0a:1c:d6:94:d0:57:03:dd:f3:a4:97: b2:9b:b1:eb:13:c9:53:2b:6c:a1:4f:44:69:b3:c9: 48:98:f0:41:b4:d1:17:f3:b5:86:5b:54:71:6b:51: 32:1c:0c:e3:a5:66:f3:bc:5b:f3:4a:ac:5f:30:f1: 29:7d:95:31:26:b5:80:d2:4d:b5:72:03:1c:19:68: 75:b8:cd:05:8e:62:60:da:5c:66:32:e0:9d:af:15: 24:b3:51:8f:0f:06:c3:01:3d:32:56:18:ff:3b:9a: 34:b8:64:61:56:2d:9a:5c:3a:ff:ad:5e:28:e4:47: 47:cc:b5:3f:6f:18:05:19:76:21:73:93:22:1c:74: ea:09:cb:61:72:1c:fe:01:a4:25:a6:a9:7a:c4:4d: 39:f9:82:f7:c4:23:dd:b9:06:63:37:37:14:73:1d: 48:2a:af:fb:12:c4:7b:d8:f3:a1:98:51:7c:4c:60: 87:fc:be:c8:9c:66:39:a8:09:93:3d:ca:40:67:23: 14:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:11:DD:06:92:A1:6A:E7:0A:0F:55:7A:9E:35:7C:A6:68:8C:0D:7F X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:3e:10:bb:a1:9c:a3:fa:c3:84:27:c6:a6:09:72:04:cf:e6: 75:e7:24:da:fa:ae:af:70:d3:e5:00:a8:f6:24:92:0d:0d:02: 8c:d0:81:b4:c3:cd:44:59:05:c6:4a:fe:d9:3b:76:0b:c6:b5: 33:2e:47:ac:10:17:ea:53:8f:f5:82:b7:60:87:e8:d7:7c:ba: ab:27:6f:06:6b:af:66:50:f8:0b:d1:79:e9:7c:fe:56:02:3f: c6:a9:8c:4f:ec:14:d3:20:51:58:29:ab:5f:1b:5d:2f:a1:a7: 39:fa:0a:57:2e:fa:9e:5c:88:cd:11:01:b6:c4:66:f0:1b:00: 61:a7:48:17:a2:fa:e4:13:4f:99:51:8a:4e:ab:7e:aa:fe:52: 16:f8:b7:df:bb:27:4d:93:88:a2:d9:4c:35:66:a5:82:fe:5d: a3:1b:ed:e3:9a:a9:2b:f1:3b:92:21:bf:7c:b4:b6:15:f3:be: fb:78:2b:9b:a7:f0:1e:96:3b:07:68:0b:b9:c3:ce:28:0c:be: 46:7e:ad:79:b9:63:52:9a:f4:a5:0e:2c:ea:e4:67:14:de:a2: 5b:7c:b7:aa:ff:92:3c:2c:98:89:f2:eb:67:27:f5:83:b9:a9: c1:67:2b:09:c3:90:ce:8c:5f:47:6a:53:ed:f8:05:0f:a8:4e: 22:e1:84:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwMTAxMDIzNDUxWhcNMjYwMTA4MDIzNDUxWjAYMRYwFAYD VQQDDA02OTU1ZGQ0Yy0xNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/Afb3oc52IDBZ476vtXdp1ej2Ck1T3lR9zC6H/3RM8ch08kLc4JDKUsVEBz GjWWwhxbuIQqrsLf98PlRXVLChzWlNBXA93zpJeym7HrE8lTK2yhT0Rps8lImPBB tNEX87WGW1Rxa1EyHAzjpWbzvFvzSqxfMPEpfZUxJrWA0k21cgMcGWh1uM0FjmJg 2lxmMuCdrxUks1GPDwbDAT0yVhj/O5o0uGRhVi2aXDr/rV4o5EdHzLU/bxgFGXYh c5MiHHTqCcthchz+AaQlpql6xE05+YL3xCPduQZjNzcUcx1IKq/7EsR72POhmFF8 TGCH/L7InGY5qAmTPcpAZyMUZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsR3QaS oWrnCg9Vep41fKZojA1/MB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYPhC7oZyj+sOEJ8amCXIEz+Z15yTa+q6vcNPlAKj2JJINDQKM0IG0 w81EWQXGSv7ZO3YLxrUzLkesEBfqU4/1grdgh+jXfLqrJ28Ga69mUPgL0XnpfP5W Aj/GqYxP7BTTIFFYKatfG10voac5+gpXLvqeXIjNEQG2xGbwGwBhp0gXovrkE0+Z UYpOq36q/lIW+LffuydNk4ii2Uw1ZqWC/l2jG+3jmqkr8TuSIb98tLYV8777eCub p/AeljsHaAu5w84oDL5Gfq15uWNSmvSlDizq5GcU3qJbfLeq/5I8LJiJ8utnJ/WD uanBZysJw5DOjF9HalPt+AUPqE4i4YQF -----END CERTIFICATE-----Generated at Thu Jan 1 18:00:58 2026 by rpki-client