This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: wALf0eBxJqEjq2fkl9kS/X1WyjFvrp43P4N/pxpL2V0= Subject key identifier: 60:14:AC:CE:A5:B8:40:B0:2C:4E:E8:DA:03:F5:0B:AF:8E:64:0F:DF Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C7D Signing time: Sat 10 Jan 2026 18:10:04 +0000 Manifest this update: Sat 10 Jan 2026 18:10:03 +0000 Manifest next update: Sat 17 Jan 2026 18:10:03 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: LVslCgWN2G1C18t3uNryYdRgyZ59eQBm3BlDwasgnHk=) 2: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: B9PgWoUF+TKonGl7pCL92WHmVPwhmrPhSj6ll1DGQwA=) 3: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: JvXhjoE9cUV4jCMwgWZkjIHHf+CaNT0a6L5+glk4qjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 18:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Jan 10 18:10:03 2026 GMT Not After : Jan 17 18:10:03 2026 GMT Subject: CN=696295fb-1ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:50:6b:e7:b8:f1:41:0f:ad:ee:ad:e1:7f:a7: 39:82:db:0a:10:90:0f:f5:82:15:34:cc:2b:2c:ad: dc:54:9e:95:28:51:f0:a0:2c:ab:29:2f:e3:cd:74: 4e:e3:14:b2:b8:00:38:d4:34:b5:48:b0:ef:76:2c: 87:8b:f0:01:3d:c8:26:99:c2:fc:dd:5b:46:38:48: 26:9f:1e:08:31:0d:e8:52:cf:b0:2e:99:4e:ec:2e: ff:66:5d:e1:e6:0d:9b:7b:4f:c4:be:f7:31:0d:63: 47:42:5d:27:e3:b6:63:79:93:81:76:a4:bc:ad:6b: 7e:b9:2e:e2:d5:3f:59:9e:12:47:bd:3e:a5:fd:77: 92:93:c4:2c:c0:c2:97:1c:03:93:09:81:dd:b7:90: 34:61:b8:7c:71:0d:0f:ac:48:95:14:c1:b0:ff:dc: a1:8e:6b:d0:3e:d9:2c:a1:02:c9:bd:1e:4d:95:57: 3c:4d:f7:b8:b3:cf:62:4e:39:14:8e:c8:6a:81:bf: 2e:0e:d2:18:39:8e:e2:81:40:15:c1:73:35:fe:6d: 4e:d4:24:65:38:5d:5c:67:f9:c9:15:0e:cc:79:52: e1:8e:23:b0:3a:d6:5f:65:6f:a4:55:96:8c:0d:61: 24:23:db:59:2a:e3:ae:18:21:3b:0d:31:60:b6:66: 45:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:14:AC:CE:A5:B8:40:B0:2C:4E:E8:DA:03:F5:0B:AF:8E:64:0F:DF X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:dd:9c:2b:f3:4d:df:00:ff:56:ca:5a:02:b9:87:56:a0:fb: 52:81:54:98:05:e3:fb:50:8f:a0:a9:26:1b:1c:cf:94:20:98: 73:02:74:53:f0:3b:0f:79:a8:85:00:11:3b:74:12:57:e5:ca: 6b:d2:5f:d5:6f:6e:12:3e:aa:a4:7f:df:e4:ec:57:dd:a8:e5: 42:44:b2:76:62:14:e5:00:2d:25:23:56:2c:ca:31:a1:f1:a2: 3b:0a:d6:c4:04:5a:9d:c1:ab:15:dc:fc:19:52:89:8c:ca:ba: aa:1a:c3:92:fb:59:8f:8c:dd:f1:e4:d4:c9:f4:bd:1a:24:b4: 5a:27:09:0f:99:2e:25:50:4e:cf:02:1a:30:c9:42:0a:99:16: 2e:78:c6:46:97:4d:12:51:e2:c7:31:e0:06:1a:d7:8c:f2:b3: 6e:77:7d:7d:29:67:b4:33:83:f5:6e:9e:d7:92:3a:7f:03:c1: 02:07:57:a0:4a:41:53:dd:a4:eb:43:d4:0b:4f:3c:df:09:20: 65:66:e1:be:d5:f2:dc:ed:e2:0c:6c:c3:62:04:9d:42:36:5d: 32:6d:14:d7:a0:00:f7:b3:7e:c4:51:6a:18:96:21:6a:b8:d1: 88:bd:fc:87:a5:a5:5c:8c:bf:08:8d:14:a0:b3:fc:67:14:82: 19:9d:19:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjYwMTEwMTgxMDAzWhcNMjYwMTE3MTgxMDAzWjAYMRYwFAYD VQQDDA02OTYyOTVmYi0xZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1Br57jxQQ+t7q3hf6c5gtsKEJAP9YIVNMwrLK3cVJ6VKFHwoCyrKS/jzXRO 4xSyuAA41DS1SLDvdiyHi/ABPcgmmcL83VtGOEgmnx4IMQ3oUs+wLplO7C7/Zl3h 5g2be0/EvvcxDWNHQl0n47ZjeZOBdqS8rWt+uS7i1T9ZnhJHvT6l/XeSk8QswMKX HAOTCYHdt5A0Ybh8cQ0PrEiVFMGw/9yhjmvQPtksoQLJvR5NlVc8Tfe4s89iTjkU jshqgb8uDtIYOY7igUAVwXM1/m1O1CRlOF1cZ/nJFQ7MeVLhjiOwOtZfZW+kVZaM DWEkI9tZKuOuGCE7DTFgtmZFTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAUrM6l uECwLE7o2gP1C6+OZA/fMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk3Zwr803fAP9WyloCuYdWoPtSgVSYBeP7UI+gqSYbHM+UIJhzAnRT 8DsPeaiFABE7dBJX5cpr0l/Vb24SPqqkf9/k7FfdqOVCRLJ2YhTlAC0lI1YsyjGh 8aI7CtbEBFqdwasV3PwZUomMyrqqGsOS+1mPjN3x5NTJ9L0aJLRaJwkPmS4lUE7P AhowyUIKmRYueMZGl00SUeLHMeAGGteM8rNud319KWe0M4P1bp7Xkjp/A8ECB1eg SkFT3aTrQ9QLTzzfCSBlZuG+1fLc7eIMbMNiBJ1CNl0ybRTXoAD3s37EUWoYliFq uNGIvfyHpaVcjL8IjRSgs/xnFIIZnRkC -----END CERTIFICATE-----Generated at Mon Jan 12 15:15:27 2026 by rpki-client