This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft File: 9ES43awaKuycmNiYFhxzSCwu1Ig.mft (raw, json) Hash identifier: YDptN3Gg93j63VeD4x9i1FZFQkvJCEyVIXjAqINyako= Subject key identifier: 0C:BE:4B:96:69:DE:B4:26:EA:38:21:0D:66:FB:4B:A7:94:CC:AA:64 Authority key identifier: F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88 Certificate issuer: /CN=A91427E2/serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft Manifest number: E8 Signing time: Sat 17 Jan 2026 04:36:10 +0000 Manifest this update: Sat 17 Jan 2026 04:36:10 +0000 Manifest next update: Sat 24 Jan 2026 04:36:10 +0000 Files and hashes: 1: 9ES43awaKuycmNiYFhxzSCwu1Ig.crl (hash: Qepg66g2DfXRAa/MgyDT5j6BgSnX0JiwbfeUleUDrZo=) 2: 52EADE54935111EF98AA8C86C4F9AE02.roa (hash: EP8IMn/Dpz37JzTGpl131u/EdByNY9mypWBz1crTuiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91427E2, serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488 Validity Not Before: Jan 17 04:36:10 2026 GMT Not After : Jan 24 04:36:10 2026 GMT Subject: CN=696b11ba-e73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ba:f0:5c:cf:f2:1f:e7:db:0d:a4:53:95:c5: 8b:69:54:96:3e:d7:78:7a:16:ff:00:7f:1a:3b:fe: ec:31:1a:95:96:81:a4:25:1c:d5:8d:11:38:89:96: db:31:59:ed:d2:f7:26:23:6a:2f:eb:d6:b3:dd:3b: f6:bf:72:e3:3b:36:03:d2:b0:13:15:14:8d:6b:b9: 3f:a2:c0:2d:ff:22:b8:6c:7d:51:fb:2c:2f:9b:b1: cc:16:a9:9d:10:93:07:22:5d:a9:33:ea:8a:53:f6: ec:d6:1a:d6:e2:72:99:cd:cb:ec:f5:90:15:2f:a5: 4b:25:3f:3f:6b:76:88:90:37:55:f5:6c:20:9e:bc: f3:78:f3:b5:de:e3:c2:e0:49:50:7c:82:8c:41:bd: fb:28:0b:02:8b:50:39:10:98:04:00:5b:d4:a0:37: fc:54:22:81:1d:f9:10:93:61:10:58:2c:fd:05:45: 4b:4e:6a:c8:94:4c:98:87:ad:70:5d:c1:b3:5f:2b: 85:56:c6:34:81:f5:4a:a5:be:cd:55:9a:ed:0d:2f: 4c:2f:36:f6:5c:32:6f:2f:e5:1a:08:a0:a2:f6:95: 91:0b:d6:a9:fb:bf:39:fd:3c:94:c1:94:d5:29:0e: 1b:4c:7d:9f:6d:d5:f2:5f:16:5b:9b:6d:e3:17:55: 14:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BE:4B:96:69:DE:B4:26:EA:38:21:0D:66:FB:4B:A7:94:CC:AA:64 X509v3 Authority Key Identifier: keyid:F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:65:0b:12:27:0a:b5:58:a2:83:27:ec:bb:75:c6:72:96:66: b3:9e:82:45:0a:9e:8e:b8:90:a7:f7:cf:cd:af:8d:56:54:23: 9c:54:2f:ec:9c:0d:d2:e8:27:24:31:12:6d:7e:24:8e:22:a2: 1e:fe:66:ca:76:67:fd:b9:08:b3:59:e3:15:d3:25:e6:78:fa: d2:d2:2b:f5:b9:41:db:de:75:e8:69:8c:a3:5c:a6:0c:5d:90: cf:0f:da:2c:57:85:ed:33:f0:de:58:e7:a0:4f:d3:d8:1e:c4: af:1f:29:a0:e2:9d:2b:9b:ab:00:8f:76:3f:f2:ef:ac:c5:35: a8:24:4c:d7:32:1d:08:fc:a7:8c:f2:79:ae:bc:3f:82:f7:7c: fd:95:48:94:f5:10:d7:54:a7:d8:5a:89:cc:f3:19:d6:ec:c9: 12:b1:d7:99:1d:71:82:5c:3a:cc:13:bb:bd:ad:3c:3c:1c:62: 15:77:99:64:52:b0:8b:85:d1:0d:28:41:57:d9:23:51:e7:72: d8:aa:2e:c8:1f:65:28:eb:57:07:f3:e4:54:49:1f:86:e1:24: 8e:68:78:7f:2a:e6:8a:31:5a:e2:5a:1e:0b:51:c5:fe:7c:58: 71:37:d8:3e:79:40:12:6e:bb:5e:ca:e1:9a:ff:24:7d:eb:5b: 82:55:44:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3RTIxMTAvBgNVBAUTKEY0NDRCOEREQUMxQTJBRUM5Qzk4RDg5ODE2MUM3MzQ4 MkMyRUQ0ODgwHhcNMjYwMTE3MDQzNjEwWhcNMjYwMTI0MDQzNjEwWjAYMRYwFAYD VQQDDA02OTZiMTFiYS1lNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4brwXM/yH+fbDaRTlcWLaVSWPtd4ehb/AH8aO/7sMRqVloGkJRzVjRE4iZbb MVnt0vcmI2ov69az3Tv2v3LjOzYD0rATFRSNa7k/osAt/yK4bH1R+ywvm7HMFqmd EJMHIl2pM+qKU/bs1hrW4nKZzcvs9ZAVL6VLJT8/a3aIkDdV9WwgnrzzePO13uPC 4ElQfIKMQb37KAsCi1A5EJgEAFvUoDf8VCKBHfkQk2EQWCz9BUVLTmrIlEyYh61w XcGzXyuFVsY0gfVKpb7NVZrtDS9MLzb2XDJvL+UaCKCi9pWRC9ap+785/TyUwZTV KQ4bTH2fbdXyXxZbm23jF1UUTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAy+S5Zp 3rQm6jghDWb7S6eUzKpkMB8GA1UdIwQYMBaAFPREuN2sGirsnJjYmBYcc0gsLtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjdFMi83MDMxQTFFQzkz NTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1eWNtTmlZRmh4elNDd3Ux SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlFUzQzYXdhS3V5Y21OaVlGaHh6U0N3dTFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjdFMi83MDMxQTFFQzkzNTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1 eWNtTmlZRmh4elNDd3UxSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ZQsSJwq1WKKDJ+y7dcZylmaznoJFCp6OuJCn98/Nr41WVCOcVC/s nA3S6CckMRJtfiSOIqIe/mbKdmf9uQizWeMV0yXmePrS0iv1uUHb3nXoaYyjXKYM XZDPD9osV4XtM/DeWOegT9PYHsSvHymg4p0rm6sAj3Y/8u+sxTWoJEzXMh0I/KeM 8nmuvD+C93z9lUiU9RDXVKfYWonM8xnW7MkSsdeZHXGCXDrME7u9rTw8HGIVd5lk UrCLhdENKEFX2SNR53LYqi7IH2Uo61cH8+RUSR+G4SSOaHh/KuaKMVriWh4LUcX+ fFhxN9g+eUASbrteyuGa/yR961uCVUQY -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:36 2026 by rpki-client