This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: Fln8mKS9xqlp5EK/NpA/AbvN9nIjJmd9FyGHgKNVKQI= Subject key identifier: EE:42:07:3A:8C:79:1D:04:B1:19:F8:E9:A8:A7:1E:CF:63:6E:75:91 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 0102 Signing time: Sun 11 Jan 2026 04:20:35 +0000 Manifest this update: Sun 11 Jan 2026 04:20:35 +0000 Manifest next update: Sun 18 Jan 2026 04:20:35 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: ChS7hO+Q3HcYOQH92YA/1FDZGouA3nvTPLzJB1F12KQ=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 04:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Jan 11 04:20:35 2026 GMT Not After : Jan 18 04:20:35 2026 GMT Subject: CN=69632513-6ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c6:b7:e2:9d:6d:df:27:88:79:4a:1b:5a:db: ec:61:e5:71:21:57:3e:6a:7c:4e:e7:7e:d9:5f:72: 61:e3:5b:a8:ea:c2:e8:67:72:55:47:57:03:b2:c6: 1d:79:29:b6:ba:32:e0:de:ec:d3:f4:c5:b8:87:f7: e6:92:90:59:b6:f3:18:dc:89:f3:c9:c9:70:b9:f1: 66:a5:b7:d5:02:96:b2:d7:1c:fd:1a:3f:f3:4e:b7: 56:c6:68:c7:7a:27:0a:3c:6b:75:e9:03:43:93:cb: 98:13:1c:45:99:82:30:fe:51:0b:53:ba:e2:e6:f4: 0c:b8:7d:78:00:f8:97:9f:6e:b7:5c:b1:bb:ce:8c: c3:5e:cc:f3:4d:22:86:7a:52:d7:e3:0b:d7:18:17: e1:9f:b2:15:0f:25:29:1f:4f:4f:0f:cf:c9:60:fc: b7:d4:4c:e5:10:3d:06:a0:46:e1:38:2b:fa:67:f6: 4d:ab:49:fa:d3:7f:86:d8:a0:8d:a6:51:3b:dd:65: 99:01:98:d7:d9:87:ee:36:47:da:0e:ae:ad:b5:60: a8:81:61:9c:1f:26:65:46:00:6c:5d:b4:3b:d6:a2: c5:9c:08:df:36:92:3f:fe:82:72:e2:40:36:48:58: 13:29:43:a5:f2:ca:68:08:b2:ad:c7:68:cd:f1:de: b4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:42:07:3A:8C:79:1D:04:B1:19:F8:E9:A8:A7:1E:CF:63:6E:75:91 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:ae:e0:d1:9d:8b:f2:1f:02:af:38:77:75:64:9b:ac:33:25: 7f:48:0e:3e:a0:c9:d0:ca:d4:59:dc:a4:b6:21:2f:97:ce:fe: 69:04:74:4e:cb:45:7d:f2:63:d9:84:a1:fa:dd:67:e6:0a:11: 32:ea:19:f9:be:5b:99:78:30:1b:7e:56:ae:fb:08:9b:32:bf: d0:84:3d:35:b1:ea:b3:55:05:03:0f:50:97:20:67:0f:73:3c: e0:8c:c3:de:39:ca:65:f1:79:57:76:ea:0b:7d:1f:1a:ed:1f: e4:88:1b:51:81:9f:ae:a0:35:d0:f1:64:a9:19:fb:de:de:99: 74:5a:34:ee:21:0c:93:07:37:0d:19:63:42:ad:f5:7b:83:67: 6e:20:0e:52:da:05:06:a8:69:0b:6d:6a:bf:3f:bd:cc:46:a5: 06:b9:04:c7:20:ff:f7:7e:fe:05:7c:6c:d4:cc:f0:f6:3b:96: 26:fe:34:48:6d:45:e6:55:b4:eb:18:07:25:e6:3a:9e:1e:38: 2a:62:81:ec:c7:bb:ba:77:f7:20:b8:05:7a:7f:64:07:7b:d8: 72:44:14:9c:8a:6c:85:38:ce:31:2d:d9:a7:61:db:ba:13:46: a6:53:41:4a:7f:3e:c5:4a:64:d7:f2:2a:9c:d0:3b:a5:3a:4e: 4a:e8:d8:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjYwMTExMDQyMDM1WhcNMjYwMTE4MDQyMDM1WjAYMRYwFAYD VQQDDA02OTYzMjUxMy02ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMa34p1t3yeIeUobWtvsYeVxIVc+anxO537ZX3Jh41uo6sLoZ3JVR1cDssYd eSm2ujLg3uzT9MW4h/fmkpBZtvMY3InzyclwufFmpbfVApay1xz9Gj/zTrdWxmjH eicKPGt16QNDk8uYExxFmYIw/lELU7ri5vQMuH14APiXn263XLG7zozDXszzTSKG elLX4wvXGBfhn7IVDyUpH09PD8/JYPy31EzlED0GoEbhOCv6Z/ZNq0n603+G2KCN plE73WWZAZjX2YfuNkfaDq6ttWCogWGcHyZlRgBsXbQ71qLFnAjfNpI//oJy4kA2 SFgTKUOl8spoCLKtx2jN8d60nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5CBzqM eR0EsRn46ainHs9jbnWRMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJruDRnYvyHwKvOHd1ZJusMyV/SA4+oMnQytRZ3KS2IS+Xzv5pBHRO y0V98mPZhKH63WfmChEy6hn5vluZeDAbflau+wibMr/QhD01seqzVQUDD1CXIGcP czzgjMPeOcpl8XlXduoLfR8a7R/kiBtRgZ+uoDXQ8WSpGfve3pl0WjTuIQyTBzcN GWNCrfV7g2duIA5S2gUGqGkLbWq/P73MRqUGuQTHIP/3fv4FfGzUzPD2O5Ym/jRI bUXmVbTrGAcl5jqeHjgqYoHsx7u6d/cguAV6f2QHe9hyRBScimyFOM4xLdmnYdu6 E0amU0FKfz7FSmTX8iqc0DulOk5K6NiR -----END CERTIFICATE-----Generated at Mon Jan 12 12:19:13 2026 by rpki-client