This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: P3m4pDEvNnVSDnjJigCWzYcGsdZGnqCTpcxlckxv610= Subject key identifier: B3:80:76:B7:A5:0B:D0:E6:63:53:39:E8:2D:AA:52:F3:E1:CD:30:B5 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2CB3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2CB0 Signing time: Tue 20 Jan 2026 14:25:26 +0000 Manifest this update: Tue 20 Jan 2026 14:25:26 +0000 Manifest next update: Tue 27 Jan 2026 14:25:26 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: gQKY9mQ10qgyJ874qEKYsRAEqzgWBypAEEvjo3fo0IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 14:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11443 (0x2cb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Jan 20 14:25:26 2026 GMT Not After : Jan 27 14:25:26 2026 GMT Subject: CN=696f9056-24b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bd:69:7a:d6:70:f6:3c:b4:de:4d:c7:7b:cc: 16:f7:b7:7d:78:7b:1a:bc:7f:8d:94:c0:ba:d3:1d: ea:b5:3a:72:af:6f:bf:a7:e9:aa:e0:69:24:7d:3e: 38:6d:57:04:e1:51:23:81:b0:89:2c:e0:05:d3:4b: 42:fa:0c:4e:79:e6:c4:d4:dd:c7:60:e2:05:6a:d5: 7f:bf:35:10:42:bf:ff:c1:f4:aa:7f:2d:2b:50:29: 8c:2b:08:c4:cf:e7:41:1a:16:2f:f9:00:4c:68:4e: 3d:96:f2:a9:4c:d2:43:ae:23:41:4f:e2:d1:e4:c3: 12:6d:73:79:e7:f0:63:82:81:ef:aa:89:9d:dd:f2: 56:c7:88:41:9e:05:8e:44:39:49:55:4c:5c:66:8e: bf:a8:42:91:2f:61:0a:89:f4:14:1a:e8:7a:81:9e: df:7e:5e:9e:7f:c9:fe:b0:92:14:bb:ec:bb:b4:49: d3:8e:0b:f5:94:c5:82:fa:ec:bd:af:56:51:4b:96: a6:46:06:1d:bd:bc:57:5a:3e:4d:0d:73:04:4b:b5: 93:69:87:ad:da:c4:68:d4:52:b5:72:9b:02:b9:88: dd:ca:df:7e:90:6d:bb:c7:ed:9c:ac:f7:bf:77:89: d2:b4:57:14:20:8b:68:51:3e:d9:e8:88:cf:33:71: 2b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:80:76:B7:A5:0B:D0:E6:63:53:39:E8:2D:AA:52:F3:E1:CD:30:B5 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a3:c8:12:d2:74:bf:d5:12:0a:58:0b:ee:84:95:71:09:b4: 53:09:1f:cd:ca:b2:f2:bf:3e:67:3d:de:e1:92:a0:55:ce:1c: fe:39:fd:30:4c:3b:7e:ec:6e:f5:c7:cc:46:75:78:4b:28:af: 77:7e:04:ff:45:26:72:57:9d:ae:8a:9f:34:35:3f:57:c7:9a: 2a:72:dd:9f:c2:0a:71:82:87:43:72:57:b9:c6:cb:01:2f:06: cc:9c:15:63:c6:d4:d9:f3:fd:dd:07:25:f7:bb:72:16:f3:a7: 34:57:81:f1:5e:c1:c2:24:92:bf:a1:5c:06:ff:cd:d9:9c:6e: f2:ed:9f:44:b8:a4:b2:92:85:c4:28:3c:ec:8c:e1:69:cd:d9: 4b:07:0b:ab:a1:92:d3:61:06:dd:6b:df:f7:6a:79:47:da:52: dd:b1:94:88:9e:24:b2:66:0a:0d:bb:8e:85:8b:3c:2f:fd:9f: f2:af:1e:9f:7c:73:bf:e4:6b:00:b8:ee:6d:ff:cb:34:e1:44: b7:46:16:8f:6c:2d:66:77:02:59:9f:cc:ea:5e:c2:f0:5e:be: 5d:52:80:b0:62:fb:e0:d6:81:e8:95:e7:c0:e9:25:54:5b:7e: ff:3d:e9:fa:fb:d1:d2:d4:8c:ba:30:44:bb:00:40:be:b9:55: 63:b9:c7:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjYwMTIwMTQyNTI2WhcNMjYwMTI3MTQyNTI2WjAYMRYwFAYD VQQDDA02OTZmOTA1Ni0yNGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsL1petZw9jy03k3He8wW97d9eHsavH+NlMC60x3qtTpyr2+/p+mq4GkkfT44 bVcE4VEjgbCJLOAF00tC+gxOeebE1N3HYOIFatV/vzUQQr//wfSqfy0rUCmMKwjE z+dBGhYv+QBMaE49lvKpTNJDriNBT+LR5MMSbXN55/BjgoHvqomd3fJWx4hBngWO RDlJVUxcZo6/qEKRL2EKifQUGuh6gZ7ffl6ef8n+sJIUu+y7tEnTjgv1lMWC+uy9 r1ZRS5amRgYdvbxXWj5NDXMES7WTaYet2sRo1FK1cpsCuYjdyt9+kG27x+2crPe/ d4nStFcUIItoUT7Z6IjPM3ErAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOAdrel C9DmY1M56C2qUvPhzTC1MB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCo8gS0nS/1RIKWAvuhJVxCbRTCR/NyrLyvz5nPd7hkqBVzhz+Of0w TDt+7G71x8xGdXhLKK93fgT/RSZyV52uip80NT9Xx5oqct2fwgpxgodDcle5xssB LwbMnBVjxtTZ8/3dByX3u3IW86c0V4HxXsHCJJK/oVwG/83ZnG7y7Z9EuKSykoXE KDzsjOFpzdlLBwuroZLTYQbda9/3anlH2lLdsZSIniSyZgoNu46Fizwv/Z/yrx6f fHO/5GsAuO5t/8s04US3RhaPbC1mdwJZn8zqXsLwXr5dUoCwYvvg1oHolefA6SVU W37/Pen6+9HS1Iy6MES7AEC+uVVjucd4 -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:25 2026 by rpki-client