This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: 99bH8wImfkPv+ARAwO8wAaiYbBLivvUoiMg2qeRJrjk= Subject key identifier: AA:B1:1B:D0:77:E2:00:EF:37:A9:BA:41:E8:1C:FD:53:56:19:4A:57 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B57 Signing time: Fri 16 Jan 2026 16:04:30 +0000 Manifest this update: Fri 16 Jan 2026 16:04:29 +0000 Manifest next update: Fri 23 Jan 2026 16:04:29 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: yOapCKZ1JM+i8fckU7xeb9rBfrlzolAXgtU9UTYEsu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 16:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7002 (0x1b5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Jan 16 16:04:29 2026 GMT Not After : Jan 23 16:04:29 2026 GMT Subject: CN=696a618d-ea6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6b:45:ad:c0:63:56:db:ab:88:c2:6f:75:16: 2e:71:a2:c1:53:c0:7b:20:9e:d3:eb:d6:13:1e:47: 22:26:14:a6:51:3f:1b:84:c5:cc:76:d4:13:46:c8: 91:3a:94:08:67:91:63:d7:16:be:98:c5:27:b0:5c: c1:79:6a:79:08:fe:07:55:7b:73:df:0b:e7:f0:91: 3f:32:69:c3:9f:0a:a8:9c:6d:d7:fd:e0:99:54:da: d5:f2:6e:ae:d9:2b:14:f2:43:6b:fb:e6:09:96:b6: 84:24:01:51:27:21:1f:d3:05:a6:1c:c0:15:89:e5: 3c:16:d3:c3:3b:f7:f9:2f:69:ee:3d:6a:b8:02:09: e3:9e:83:0b:55:cb:a5:4f:89:82:63:11:46:c3:e1: 3e:b0:3f:dc:fd:2f:76:d4:c4:08:a3:69:7a:46:5f: 5b:86:17:bd:63:2b:67:4b:54:82:c4:fc:18:5f:41: f9:8d:bb:c5:a1:b9:cb:cc:de:78:dc:e6:ec:0d:51: 4f:1a:e9:10:b7:e9:2d:7a:8f:52:2a:7a:83:10:8c: 68:3e:45:18:5c:70:98:8b:2b:c2:2d:ae:61:c9:61: 9a:02:05:6c:91:e7:6d:38:3d:d2:31:ac:8e:dc:40: f6:df:c7:a4:42:40:7e:95:99:5d:d0:47:f3:88:2e: 27:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B1:1B:D0:77:E2:00:EF:37:A9:BA:41:E8:1C:FD:53:56:19:4A:57 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:03:78:b9:5b:cb:c6:02:34:b8:b7:c9:ba:a2:30:1f:c2:a0: 28:44:07:04:c5:96:89:4b:39:3d:11:75:8a:b8:a5:e3:fe:bb: 90:8b:1f:85:41:00:75:2c:4e:e1:71:0f:f6:28:d3:60:26:f1: 06:88:4f:ab:8f:c4:48:4f:e9:e5:4a:44:4f:f4:6f:71:6a:e2: ca:18:30:0d:4d:c0:f2:40:c1:2d:31:d9:a7:09:f8:8a:fb:0b: 36:8c:29:49:6a:f5:78:c8:91:99:57:1e:36:a3:4b:4c:b2:d4: 88:d9:28:ab:b7:cf:fb:e0:23:76:0e:eb:d0:17:43:05:77:d1: ea:fa:0e:b6:fa:28:70:79:f3:22:a1:71:d7:00:7f:71:a0:2c: 7d:37:1a:17:6d:38:b6:94:a3:9b:87:e3:66:5f:56:db:d4:ea: e3:9b:c4:55:c6:8f:bc:91:39:77:6e:7d:1f:3e:44:19:f1:d5: 9b:46:9d:74:be:f7:71:01:67:05:6c:4c:d4:05:c8:84:6f:65: c2:cb:ea:98:de:f7:83:08:05:ee:51:40:bc:1d:67:a4:da:47: 10:ee:5d:c0:f2:7e:ca:b0:ec:07:ac:ef:49:47:82:00:72:8e: 71:e0:3c:83:8d:4c:5d:c7:78:ec:cb:71:91:6d:14:f8:db:f0: ca:44:c4:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjYwMTE2MTYwNDI5WhcNMjYwMTIzMTYwNDI5WjAYMRYwFAYD VQQDDA02OTZhNjE4ZC1lYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWtFrcBjVturiMJvdRYucaLBU8B7IJ7T69YTHkciJhSmUT8bhMXMdtQTRsiR OpQIZ5Fj1xa+mMUnsFzBeWp5CP4HVXtz3wvn8JE/MmnDnwqonG3X/eCZVNrV8m6u 2SsU8kNr++YJlraEJAFRJyEf0wWmHMAVieU8FtPDO/f5L2nuPWq4AgnjnoMLVcul T4mCYxFGw+E+sD/c/S921MQIo2l6Rl9bhhe9YytnS1SCxPwYX0H5jbvFobnLzN54 3ObsDVFPGukQt+kteo9SKnqDEIxoPkUYXHCYiyvCLa5hyWGaAgVskedtOD3SMayO 3ED238ekQkB+lZld0EfziC4nlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqxG9B3 4gDvN6m6Qegc/VNWGUpXMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiA3i5W8vGAjS4t8m6ojAfwqAoRAcExZaJSzk9EXWKuKXj/ruQix+F QQB1LE7hcQ/2KNNgJvEGiE+rj8RIT+nlSkRP9G9xauLKGDANTcDyQMEtMdmnCfiK +ws2jClJavV4yJGZVx42o0tMstSI2Sirt8/74CN2DuvQF0MFd9Hq+g62+ihwefMi oXHXAH9xoCx9NxoXbTi2lKObh+NmX1bb1Orjm8RVxo+8kTl3bn0fPkQZ8dWbRp10 vvdxAWcFbEzUBciEb2XCy+qY3veDCAXuUUC8HWek2kcQ7l3A8n7KsOwHrO9JR4IA co5x4DyDjUxdx3jsy3GRbRT42/DKRMQ9 -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:26 2026 by rpki-client