This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: c3cmqpbRjHVjaUkQ30R70mmyXkwsKoNZRCUmctMNVR4= Subject key identifier: AC:8A:1C:85:C3:5F:78:D3:18:77:0B:5E:EF:1F:92:24:CF:C6:D3:84 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0209 Signing time: Thu 01 Jan 2026 09:21:00 +0000 Manifest this update: Thu 01 Jan 2026 09:21:00 +0000 Manifest next update: Thu 08 Jan 2026 09:21:00 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: Oj7wx1Vrj3wAYLA1Ami7MWJAOD53GXYsCYXkvkBm+P8=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: dM5/AFaQpUXJQOWyb82qNyEz12TKb/CugkVKzBW9rPQ=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 09:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Jan 1 09:21:00 2026 GMT Not After : Jan 8 09:21:00 2026 GMT Subject: CN=69563c7c-2a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6d:f8:29:3a:06:88:49:4e:ce:42:76:ca:d7: f5:04:12:d8:8d:af:54:b0:32:9b:4c:e1:d8:69:37: a1:ec:a4:6e:2b:8f:35:d1:4d:82:bc:6f:29:96:81: 4c:01:b0:3d:41:48:a3:b3:dd:c9:31:78:63:13:a8: 81:9c:a8:61:ac:54:72:b0:a1:08:01:6e:02:1e:3f: 30:83:5c:3a:92:d7:56:70:71:a4:cc:47:57:fb:e3: 9d:29:49:5a:28:3c:06:fd:6a:cd:95:19:0a:f3:04: 49:d3:cb:93:ac:5c:6b:3c:76:94:fb:5a:85:1e:b3: 58:90:32:ee:65:7d:ed:a5:40:d2:d9:16:63:79:9c: dd:93:ac:b4:81:6a:db:f0:38:50:e3:82:31:66:c4: a8:47:26:d0:14:d1:11:55:a6:5f:9a:48:93:e6:5b: 15:0b:af:6d:5b:d8:9a:f0:2e:36:77:7a:12:65:9c: 49:87:7e:52:cf:2b:12:ea:ef:ff:83:21:21:2e:99: 1c:2b:64:97:7d:42:1b:91:eb:be:ee:0b:26:b5:19: 62:b6:52:01:af:7a:a1:cb:f9:d8:5b:ba:87:3d:74: a5:69:58:d5:a2:3d:87:05:eb:ac:56:52:bf:88:ad: 4a:0a:c8:49:f5:b8:a9:88:d2:a7:97:e3:7b:25:92: c2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:8A:1C:85:C3:5F:78:D3:18:77:0B:5E:EF:1F:92:24:CF:C6:D3:84 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:4f:eb:7f:41:d8:5b:23:e8:49:93:fd:0d:6c:6d:04:6e:2e: 85:5e:80:bc:c8:84:80:2c:76:00:ae:95:fa:98:19:db:9d:5c: 9b:70:0d:4a:29:02:10:59:e8:b3:1e:bb:58:af:15:35:1e:7b: 63:ab:2a:e5:74:ff:14:f9:eb:07:f5:d9:66:b7:95:76:d0:c7: ff:4b:d9:b9:8d:ba:d7:b0:98:ac:f1:df:d6:f0:ac:a3:0d:bf: b2:42:8f:d7:8d:c1:57:fe:ef:f8:d9:8f:07:ef:d8:d0:5e:1b: 43:09:26:cb:54:e5:2c:8f:c9:ad:60:36:68:19:ed:25:ac:8f: e7:3a:eb:45:be:00:86:09:2c:37:f0:58:b9:be:f8:a6:06:32: a9:86:ec:46:07:da:de:e3:fd:1b:7c:83:c6:31:f2:c7:e1:0d: bc:90:6a:92:d8:aa:98:f6:65:60:d9:c9:e9:90:66:80:2a:3c: 07:b8:12:19:00:9f:d8:2d:31:11:fd:81:a6:17:4f:17:89:fa: 72:01:9a:ed:79:e2:1f:a6:3b:2a:b8:20:0b:0b:71:49:b5:c6: b1:27:17:3c:2b:87:40:13:37:37:71:c3:e5:f1:2d:75:25:b6: 49:83:c7:9d:ac:fe:cd:2b:08:53:d1:c7:d6:1f:76:50:e9:31: ab:1a:21:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjYwMTAxMDkyMTAwWhcNMjYwMTA4MDkyMTAwWjAYMRYwFAYD VQQDDA02OTU2M2M3Yy0yYTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmG34KToGiElOzkJ2ytf1BBLYja9UsDKbTOHYaTeh7KRuK4810U2CvG8ploFM AbA9QUijs93JMXhjE6iBnKhhrFRysKEIAW4CHj8wg1w6ktdWcHGkzEdX++OdKUla KDwG/WrNlRkK8wRJ08uTrFxrPHaU+1qFHrNYkDLuZX3tpUDS2RZjeZzdk6y0gWrb 8DhQ44IxZsSoRybQFNERVaZfmkiT5lsVC69tW9ia8C42d3oSZZxJh35SzysS6u// gyEhLpkcK2SXfUIbkeu+7gsmtRlitlIBr3qhy/nYW7qHPXSlaVjVoj2HBeusVlK/ iK1KCshJ9bipiNKnl+N7JZLCywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyKHIXD X3jTGHcLXu8fkiTPxtOEMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMT+t/QdhbI+hJk/0NbG0Ebi6FXoC8yISALHYArpX6mBnbnVybcA1K KQIQWeizHrtYrxU1HntjqyrldP8U+esH9dlmt5V20Mf/S9m5jbrXsJis8d/W8Kyj Db+yQo/XjcFX/u/42Y8H79jQXhtDCSbLVOUsj8mtYDZoGe0lrI/nOutFvgCGCSw3 8Fi5vvimBjKphuxGB9re4/0bfIPGMfLH4Q28kGqS2KqY9mVg2cnpkGaAKjwHuBIZ AJ/YLTER/YGmF08XifpyAZrteeIfpjsquCALC3FJtcaxJxc8K4dAEzc3ccPl8S11 JbZJg8edrP7NKwhT0cfWH3ZQ6TGrGiE1 -----END CERTIFICATE-----Generated at Fri Jan 2 17:04:36 2026 by rpki-client