This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: OcMTIjkjSQ+AOEeNacClkfp+acwAXapi6CmHacqTfd0= Subject key identifier: F4:B3:0B:82:A4:87:EA:1E:78:4F:7F:91:7E:F2:C5:D5:9D:A1:B9:E2 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C67 Signing time: Mon 26 Jan 2026 18:12:23 +0000 Manifest this update: Mon 26 Jan 2026 18:12:23 +0000 Manifest next update: Mon 02 Feb 2026 18:12:23 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: kgFSDXtOIwLsXrQJx688evkiYaJaeHkdF3Jba5FNgOg=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: gogrAGTq/ykGhVaNrMTatrWlz9qs3Xp20k79SBgW8QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 18:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jan 26 18:12:23 2026 GMT Not After : Feb 2 18:12:23 2026 GMT Subject: CN=6977ae87-55a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:90:1c:8e:b2:7a:25:ae:c5:90:39:93:bb:79: 74:87:54:13:ee:6b:00:95:0d:b5:dd:4b:0a:de:f6: ff:af:3f:d4:93:be:a9:f1:65:ba:20:77:8e:44:35: e2:9f:d4:60:9b:ad:99:42:f5:b4:99:ca:c1:a3:de: f9:67:e2:7e:77:c0:42:7a:8a:8f:c4:55:05:c0:fe: 2f:23:f8:d3:b8:f7:36:a9:04:65:ac:c9:21:3e:37: 49:8a:dd:07:99:a3:16:f3:1b:79:62:b2:5d:db:84: e1:f0:b2:c7:c6:59:d4:c8:b1:c8:ff:d8:a0:aa:a1: 5c:8e:85:57:74:39:28:41:36:6f:34:00:97:07:f8: e5:62:76:69:95:75:66:7e:00:7a:42:85:7c:ba:b0: e9:f1:86:5b:f3:fd:e5:e9:e3:2b:f5:d7:63:09:5a: f4:b5:f4:62:c0:03:82:7c:c0:89:af:c3:77:4f:6b: ec:33:27:86:6a:60:ad:62:d4:f4:84:4e:55:9b:1f: 04:13:fa:de:35:89:9f:79:73:78:79:27:4c:4f:e1: 7f:16:6f:2d:54:ee:48:70:39:e2:43:7f:42:3c:a8: 9c:c7:b4:81:d5:16:26:5e:01:da:cd:72:05:4b:73: ee:be:82:88:51:b4:86:71:e2:3f:5e:73:32:00:97: 82:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B3:0B:82:A4:87:EA:1E:78:4F:7F:91:7E:F2:C5:D5:9D:A1:B9:E2 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:7a:65:74:4e:87:d7:bb:9f:31:c0:31:e3:7e:c9:33:80:30: 10:06:b2:ad:25:47:27:92:b4:e0:7f:92:c1:eb:df:1b:23:78: 0c:5c:30:e8:dd:e1:51:7b:1e:c2:8b:31:c1:de:bf:c5:79:d4: eb:1d:3c:c1:50:7c:a5:2b:10:8b:10:90:06:eb:79:9a:27:a2: 55:21:5f:af:85:35:00:9e:81:25:20:fa:af:51:25:c0:88:58: d5:36:dc:20:63:2d:8c:50:4c:60:f0:ce:77:48:6e:ba:22:6b: 21:6a:85:49:81:dd:c5:25:d7:a0:28:17:4a:a0:af:96:d8:d5: e3:71:8f:4d:3c:65:0c:f1:57:34:79:31:82:b5:50:c6:52:a9: 17:f4:7e:93:58:74:81:3d:ee:f5:25:43:09:31:2f:86:9d:81: f3:48:3a:b2:5d:8d:4d:b9:65:91:f8:da:59:07:44:97:0c:51: 78:fc:d7:1d:ee:98:34:57:33:a0:f4:a1:f7:45:60:db:09:a2: ff:86:94:d8:62:16:44:f3:aa:51:47:cb:92:33:e9:57:25:4f: ba:67:34:06:94:5c:74:e7:78:7d:6b:f7:34:7e:2d:b3:bd:af: 10:4f:49:b7:59:ce:71:5a:d7:f4:58:e4:64:05:a8:84:6e:63: 04:77:c9:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwMTI2MTgxMjIzWhcNMjYwMjAyMTgxMjIzWjAYMRYwFAYD VQQDDA02OTc3YWU4Ny01NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpAcjrJ6Ja7FkDmTu3l0h1QT7msAlQ213UsK3vb/rz/Uk76p8WW6IHeORDXi n9Rgm62ZQvW0mcrBo975Z+J+d8BCeoqPxFUFwP4vI/jTuPc2qQRlrMkhPjdJit0H maMW8xt5YrJd24Th8LLHxlnUyLHI/9igqqFcjoVXdDkoQTZvNACXB/jlYnZplXVm fgB6QoV8urDp8YZb8/3l6eMr9ddjCVr0tfRiwAOCfMCJr8N3T2vsMyeGamCtYtT0 hE5Vmx8EE/reNYmfeXN4eSdMT+F/Fm8tVO5IcDniQ39CPKicx7SB1RYmXgHazXIF S3PuvoKIUbSGceI/XnMyAJeC1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSzC4Kk h+oeeE9/kX7yxdWdobniMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpemV0TofXu58xwDHjfskzgDAQBrKtJUcnkrTgf5LB698bI3gMXDDo 3eFRex7CizHB3r/FedTrHTzBUHylKxCLEJAG63maJ6JVIV+vhTUAnoElIPqvUSXA iFjVNtwgYy2MUExg8M53SG66ImshaoVJgd3FJdegKBdKoK+W2NXjcY9NPGUM8Vc0 eTGCtVDGUqkX9H6TWHSBPe71JUMJMS+GnYHzSDqyXY1NuWWR+NpZB0SXDFF4/Ncd 7pg0VzOg9KH3RWDbCaL/hpTYYhZE86pRR8uSM+lXJU+6ZzQGlFx053h9a/c0fi2z va8QT0m3Wc5xWtf0WORkBaiEbmMEd8k2 -----END CERTIFICATE-----Generated at Tue Jan 27 07:49:00 2026 by rpki-client