This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: iD+FPdFnmmQkSxdjGnyA4SrjmORXrd7bZ7YYiwRyK4U= Subject key identifier: 85:93:FD:46:16:B9:90:47:6E:6F:94:7C:D3:39:55:C3:BD:4A:C9:AE Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 01F2 Signing time: Fri 16 Jan 2026 18:29:50 +0000 Manifest this update: Fri 16 Jan 2026 18:29:50 +0000 Manifest next update: Fri 23 Jan 2026 18:29:50 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: yH6yZRC1ceoCqbZTtUeJsjgskZ2RWxStZedqHRBXY74=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: 5FCghaTHfjGe3056E9DhPQUiNt12XMkuoaYKrbjkSQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 18:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Jan 16 18:29:50 2026 GMT Not After : Jan 23 18:29:50 2026 GMT Subject: CN=696a839e-74e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:26:87:2a:26:bf:86:f6:f1:4d:37:48:4e:c3: 30:ac:5a:a5:93:28:9a:dc:3e:70:60:22:e7:b1:fb: ba:13:02:a3:d8:8c:63:0a:5f:bc:8f:e4:88:86:d3: 62:b2:b9:41:d3:3d:da:07:79:d0:b0:4e:e2:ca:e0: 1d:21:5f:d8:dd:35:36:d3:54:72:e0:5b:54:61:91: d8:2a:c8:73:d2:73:15:60:35:3b:88:66:38:38:ec: 6f:1a:a2:48:24:bf:9e:6d:f4:b4:ec:7f:7c:a3:65: f0:cf:6f:30:3c:2b:6a:9c:ae:ae:34:88:a8:14:9f: 34:52:2a:b0:77:38:01:85:d8:87:20:57:05:43:8e: c2:04:18:7d:21:2c:16:9c:33:ea:d7:4a:f3:cb:d2: ea:45:73:4c:4a:6f:ea:45:80:86:1f:97:61:59:d8: 83:17:59:60:56:f5:8a:9f:7d:37:cc:f5:cd:b2:a5: 5f:14:aa:3d:45:cc:82:fc:6e:b5:d3:da:23:52:86: 7b:c0:12:8a:2b:d4:2b:1b:42:60:dc:2f:aa:a7:0a: dc:f6:2f:d4:ed:3b:ce:b3:8a:ff:cd:8e:0c:82:b8: 76:66:60:c6:ad:f5:34:cd:a3:9c:17:c8:f4:d5:99: 2d:3c:e7:d2:10:3f:7c:49:dd:12:ee:1a:63:95:e9: 9e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:93:FD:46:16:B9:90:47:6E:6F:94:7C:D3:39:55:C3:BD:4A:C9:AE X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ad:07:45:59:47:36:eb:d1:0d:a7:0f:14:e6:ce:08:51:da: 2e:a8:f5:f1:b3:56:76:f6:6d:0a:2e:36:ff:c9:d9:8c:e5:97: 46:d7:52:02:6d:a6:24:bd:98:cc:6c:2a:ad:cd:e9:84:ca:e6: 5c:11:d3:ad:43:0e:9c:90:6e:5d:22:26:ac:9c:4a:9f:ac:54: 5f:de:58:19:94:7c:a2:9a:23:f4:06:81:ed:05:2b:22:66:b7: 37:fd:61:dd:b5:37:6c:3c:dd:90:cc:22:f6:cb:a2:50:11:d2: b4:e0:dc:8d:a3:c7:57:44:38:aa:32:b3:87:3c:b3:bb:1e:ac: 1e:b2:31:4c:a5:f1:49:fb:64:87:5f:1a:87:ac:31:d5:a1:ed: 44:50:4b:c0:44:17:44:1f:de:20:89:f1:92:a2:f6:63:30:4e: de:56:1b:bf:22:7d:f1:98:1a:17:ed:02:d9:96:38:c7:0e:f3: 64:bf:d1:70:71:35:7b:80:43:58:7c:4a:41:b2:c4:92:53:36: 3b:b6:e3:37:24:66:97:d8:ad:b3:9e:45:78:f2:53:c6:84:87: 58:7a:b0:91:17:ef:fb:c2:1f:fd:ff:79:c2:75:90:bb:11:14: 76:d1:59:27:87:50:cc:8d:f2:70:27:96:ba:60:56:25:a1:a0: c4:1f:ad:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwMTE2MTgyOTUwWhcNMjYwMTIzMTgyOTUwWjAYMRYwFAYD VQQDDA02OTZhODM5ZS03NGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyaHKia/hvbxTTdITsMwrFqlkyia3D5wYCLnsfu6EwKj2IxjCl+8j+SIhtNi srlB0z3aB3nQsE7iyuAdIV/Y3TU201Ry4FtUYZHYKshz0nMVYDU7iGY4OOxvGqJI JL+ebfS07H98o2Xwz28wPCtqnK6uNIioFJ80UiqwdzgBhdiHIFcFQ47CBBh9ISwW nDPq10rzy9LqRXNMSm/qRYCGH5dhWdiDF1lgVvWKn303zPXNsqVfFKo9RcyC/G61 09ojUoZ7wBKKK9QrG0Jg3C+qpwrc9i/U7TvOs4r/zY4Mgrh2ZmDGrfU0zaOcF8j0 1ZktPOfSED98Sd0S7hpjlemeVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWT/UYW uZBHbm+UfNM5VcO9SsmuMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwrQdFWUc269ENpw8U5s4IUdouqPXxs1Z29m0KLjb/ydmM5ZdG11IC baYkvZjMbCqtzemEyuZcEdOtQw6ckG5dIiasnEqfrFRf3lgZlHyimiP0BoHtBSsi Zrc3/WHdtTdsPN2QzCL2y6JQEdK04NyNo8dXRDiqMrOHPLO7HqwesjFMpfFJ+2SH XxqHrDHVoe1EUEvARBdEH94gifGSovZjME7eVhu/In3xmBoX7QLZljjHDvNkv9Fw cTV7gENYfEpBssSSUzY7tuM3JGaX2K2znkV48lPGhIdYerCRF+/7wh/9/3nCdZC7 ERR20Vknh1DMjfJwJ5a6YFYloaDEH60V -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:32 2026 by rpki-client