This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: ttZfbdIQKXZvc7F+XowKCiFhvxtwZySolBsJEAZLFrk= Subject key identifier: B2:C8:B6:27:D7:CF:1B:EB:4E:AB:78:78:2E:3D:78:4C:A4:76:86:93 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C7C Signing time: Thu 08 Jan 2026 18:12:36 +0000 Manifest this update: Thu 08 Jan 2026 18:12:36 +0000 Manifest next update: Thu 15 Jan 2026 18:12:36 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: uboQZ6yit4pTZLtFmEDsZG1yoqR5Txa+4jV8fdUE4JU=) 2: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: B9PgWoUF+TKonGl7pCL92WHmVPwhmrPhSj6ll1DGQwA=) 3: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: JvXhjoE9cUV4jCMwgWZkjIHHf+CaNT0a6L5+glk4qjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 18:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Jan 8 18:12:36 2026 GMT Not After : Jan 15 18:12:36 2026 GMT Subject: CN=695ff394-19b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:e1:3e:d3:bb:b9:76:f7:59:9f:ad:54:f5: 47:f7:3c:c5:e4:2d:55:0b:f7:83:2a:fb:c0:0e:77: 3c:1a:ea:35:03:8f:c3:09:08:02:84:ee:cd:69:e0: c4:1a:0b:64:af:1c:0b:86:37:e6:73:61:87:55:d0: 94:11:5b:37:f1:e4:15:ca:a6:3f:7d:bf:bb:f0:e7: e1:92:f3:51:d7:d5:e6:75:e8:7a:4f:74:f5:fd:bb: 5c:bb:d1:75:8a:ec:80:86:32:d3:3c:10:79:c0:81: b9:44:37:f2:bd:a4:a3:fb:0e:4c:c5:36:22:0e:1c: 28:ac:3b:8b:4a:fc:6d:c5:6a:ca:3e:81:f6:62:ed: 08:d7:99:e7:41:e6:b0:93:9f:fa:96:1b:cd:5e:83: 54:43:4b:7f:e2:e5:55:9c:d4:b2:4d:b1:a7:ff:84: 8c:8a:84:21:44:25:ef:2a:fb:3f:7b:1a:54:61:27: ec:92:70:4f:d8:ff:3c:fd:73:44:20:54:3d:c4:05: 16:f2:e9:26:28:6f:33:19:8e:27:1d:96:c1:e6:0f: 41:de:a8:0b:72:9a:8c:70:b3:1a:eb:99:04:e7:8c: 38:5a:b3:41:85:11:3a:2c:f3:9d:db:e7:66:c8:b5: f9:5f:89:0d:f5:ea:07:16:f9:89:89:4a:96:ee:4f: 79:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C8:B6:27:D7:CF:1B:EB:4E:AB:78:78:2E:3D:78:4C:A4:76:86:93 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0a:b5:48:91:83:97:19:8c:79:0c:12:cb:ac:e1:51:fd:b2: e8:ac:8a:42:ca:a7:ce:4b:67:8d:48:1e:91:a4:d8:ea:2f:35: e2:34:75:40:fd:11:11:ee:3a:5c:dc:e9:10:89:10:ea:05:bd: b3:70:17:4d:f7:8c:11:a4:ac:2a:37:a5:9c:e5:e5:48:2f:34: 0a:aa:80:01:28:10:df:a6:c7:f0:2e:43:1e:8a:45:a3:99:e6: 90:b4:af:8c:e8:ac:84:fc:4c:3d:87:74:8e:99:d7:21:21:96: b9:70:ea:f4:74:b4:2d:63:78:35:82:fa:e9:77:b2:16:45:25: 3c:ef:76:02:2d:8c:a3:02:ac:50:ef:32:4c:f2:33:5b:6b:40: 72:52:2a:9d:dc:5a:e4:03:bd:eb:93:2d:a5:a8:34:f8:e0:0e: 00:24:c4:81:66:30:20:2a:a9:8b:3a:82:cd:dd:22:14:e0:00: 88:83:b6:35:ec:f2:52:83:9d:bd:98:9a:d6:3d:0d:9d:77:7c: 89:cd:f9:94:b2:31:e0:99:91:e2:14:ce:23:d0:cf:9c:86:86: 53:10:c3:9c:8e:27:2e:8d:6b:e2:a2:dc:8b:aa:24:2f:a6:a6: a7:ca:ad:e3:8e:69:50:de:ad:fc:7e:78:7f:a5:40:41:96:ee: de:7c:65:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjYwMTA4MTgxMjM2WhcNMjYwMTE1MTgxMjM2WjAYMRYwFAYD VQQDDA02OTVmZjM5NC0xOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxLhPtO7uXb3WZ+tVPVH9zzF5C1VC/eDKvvADnc8Guo1A4/DCQgChO7NaeDE GgtkrxwLhjfmc2GHVdCUEVs38eQVyqY/fb+78OfhkvNR19Xmdeh6T3T1/btcu9F1 iuyAhjLTPBB5wIG5RDfyvaSj+w5MxTYiDhworDuLSvxtxWrKPoH2Yu0I15nnQeaw k5/6lhvNXoNUQ0t/4uVVnNSyTbGn/4SMioQhRCXvKvs/expUYSfsknBP2P88/XNE IFQ9xAUW8ukmKG8zGY4nHZbB5g9B3qgLcpqMcLMa65kE54w4WrNBhRE6LPOd2+dm yLX5X4kN9eoHFvmJiUqW7k95GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLItifX zxvrTqt4eC49eEykdoaTMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuCrVIkYOXGYx5DBLLrOFR/bLorIpCyqfOS2eNSB6RpNjqLzXiNHVA /RER7jpc3OkQiRDqBb2zcBdN94wRpKwqN6Wc5eVILzQKqoABKBDfpsfwLkMeikWj meaQtK+M6KyE/Ew9h3SOmdchIZa5cOr0dLQtY3g1gvrpd7IWRSU873YCLYyjAqxQ 7zJM8jNba0ByUiqd3FrkA73rky2lqDT44A4AJMSBZjAgKqmLOoLN3SIU4ACIg7Y1 7PJSg529mJrWPQ2dd3yJzfmUsjHgmZHiFM4j0M+choZTEMOcjicujWviotyLqiQv pqanyq3jjmlQ3q38fnh/pUBBlu7efGVm -----END CERTIFICATE-----Generated at Fri Jan 9 08:01:48 2026 by rpki-client