This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: oFrgOs7kIFOzLZr2WPVGuZG7heMXww33ZKfHdXzUpM4= Subject key identifier: F7:45:ED:8D:F3:70:5A:B7:73:24:CC:28:B2:24:BA:CB:D3:E4:25:9A Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: D5 Signing time: Sun 11 Jan 2026 04:53:43 +0000 Manifest this update: Sun 11 Jan 2026 04:53:42 +0000 Manifest next update: Sun 18 Jan 2026 04:53:42 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: wHGOcT/+zfxmcfoMF9woeRFVE+BxSmzJUzeb/vuutgM=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: UULK3IGuSeSocS4VpNG3+RJ93iY/9M8brkzgIb2XiCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 04:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Jan 11 04:53:42 2026 GMT Not After : Jan 18 04:53:42 2026 GMT Subject: CN=69632cd7-b20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:9c:95:b2:f7:32:bb:b1:c1:b0:29:c5:7e: 52:0a:bb:0c:89:57:6c:f8:d8:e4:46:3c:23:50:96: 6a:40:e5:1a:38:74:81:95:d5:2b:41:32:4e:7c:4a: f7:5f:db:c4:37:c0:84:23:18:66:c8:f3:d6:08:cb: 2f:39:c0:09:37:cd:a4:b9:4a:99:5d:69:21:d9:6a: 3f:cb:41:a5:1f:95:8d:34:53:a5:07:0d:e2:66:79: 8d:b0:46:84:64:9f:17:a2:3f:9a:79:90:f4:83:6c: 85:9f:b7:d3:14:cf:64:32:72:a2:3e:a6:1e:13:4d: 8a:10:4b:10:02:3f:71:a4:e2:e0:04:17:14:40:c0: dc:3e:f4:eb:57:f5:e5:d8:46:53:48:be:53:ea:7a: 58:12:88:f9:85:60:3a:23:6b:3b:51:1f:83:c9:cf: 87:38:e1:11:0d:22:0b:78:fc:2f:2e:62:67:04:09: c3:69:92:3f:bf:42:e8:2c:5c:6a:50:32:2b:e1:c3: 73:aa:cd:75:db:04:09:86:5c:fb:8e:df:aa:6c:0f: 3b:f0:a8:61:16:52:85:47:53:4e:3d:03:b6:f9:9f: 92:a5:5b:aa:8e:77:f8:53:03:b7:26:2c:9b:93:0b: b6:f9:89:38:3f:24:b6:b1:27:64:34:2f:a8:82:91: 2b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:45:ED:8D:F3:70:5A:B7:73:24:CC:28:B2:24:BA:CB:D3:E4:25:9A X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:93:78:fa:a3:7a:8c:54:8b:2b:5d:dd:9b:96:fc:d6:37:b9: a9:7e:39:c5:4a:2b:32:82:69:79:e1:08:c5:96:25:36:83:f2: 80:07:3d:82:ac:56:fe:55:a9:01:3d:8d:1a:68:72:82:97:c8: 95:26:7b:fc:f9:d7:a2:8a:a9:4f:25:cf:2f:6e:66:1a:04:bf: ea:79:08:c0:7a:bd:07:9a:6c:49:af:82:9e:a4:3f:60:2d:b9: ad:6d:46:d0:18:50:90:b4:9e:08:58:35:03:fb:4f:73:81:e6: 2b:bf:fe:14:74:40:10:27:d5:7b:ad:ae:16:4f:91:7a:da:b4: 2d:fe:71:4e:fb:36:71:74:de:98:fc:38:8c:86:fe:04:0d:f7: b5:5d:83:6a:4f:c0:eb:90:05:37:bf:c1:bf:7b:c8:5d:57:5f: b8:56:af:7e:e1:0b:99:a4:7c:74:98:f6:41:b9:4a:f6:24:07: 1c:b1:b1:47:89:b9:0a:91:25:8c:40:7b:c7:a5:95:c3:0d:e6: 96:c7:47:40:09:bf:fb:0d:54:58:3c:81:7b:c8:b3:c4:bb:79: 02:07:08:4d:22:5a:17:39:b8:c2:00:ae:ff:72:ab:fa:81:d6: 70:fd:04:8e:1d:de:f3:f5:15:b2:06:d7:7d:b4:0a:40:2d:76: 54:b7:02:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODczMjUxMTAvBgNVBAUTKEQxNzQ0NTNFOTU2M0VCQUZDQkJCMzJBQ0M2Q0Y4NjZG QkQ4RTIyRjAwHhcNMjYwMTExMDQ1MzQyWhcNMjYwMTE4MDQ1MzQyWjAYMRYwFAYD VQQDDA02OTYzMmNkNy1iMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8OclbL3MruxwbApxX5SCrsMiVds+NjkRjwjUJZqQOUaOHSBldUrQTJOfEr3 X9vEN8CEIxhmyPPWCMsvOcAJN82kuUqZXWkh2Wo/y0GlH5WNNFOlBw3iZnmNsEaE ZJ8Xoj+aeZD0g2yFn7fTFM9kMnKiPqYeE02KEEsQAj9xpOLgBBcUQMDcPvTrV/Xl 2EZTSL5T6npYEoj5hWA6I2s7UR+Dyc+HOOERDSILePwvLmJnBAnDaZI/v0LoLFxq UDIr4cNzqs112wQJhlz7jt+qbA878KhhFlKFR1NOPQO2+Z+SpVuqjnf4UwO3Jiyb kwu2+Yk4PyS2sSdkNC+ogpEr+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdF7Y3z cFq3cyTMKLIkusvT5CWaMB8GA1UdIwQYMBaAFNF0RT6VY+uvy7syrMbPhm+9jiLw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS83QjMzNEE0QUFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2X0x1ektzeHMtR2I3Mk9J dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS83QjMzNEE0QUFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2 X0x1ektzeHMtR2I3Mk9JdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjk3j6o3qMVIsrXd2blvzWN7mpfjnFSisygml54QjFliU2g/KABz2C rFb+VakBPY0aaHKCl8iVJnv8+deiiqlPJc8vbmYaBL/qeQjAer0HmmxJr4KepD9g LbmtbUbQGFCQtJ4IWDUD+09zgeYrv/4UdEAQJ9V7ra4WT5F62rQt/nFO+zZxdN6Y /DiMhv4EDfe1XYNqT8DrkAU3v8G/e8hdV1+4Vq9+4QuZpHx0mPZBuUr2JAccsbFH ibkKkSWMQHvHpZXDDeaWx0dACb/7DVRYPIF7yLPEu3kCBwhNIloXObjCAK7/cqv6 gdZw/QSOHd7z9RWyBtd9tApALXZUtwJf -----END CERTIFICATE-----Generated at Sun Jan 11 14:41:58 2026 by rpki-client