This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: sE39IGv9wmnhA/h8qT+PqmoUN6lhR1YayHux2f/1sEs= Subject key identifier: F5:D5:CB:BC:AB:A3:A6:77:54:83:E6:08:84:CD:AC:0D:3D:E7:35:37 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0932 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0905 Signing time: Mon 26 Jan 2026 19:47:43 +0000 Manifest this update: Mon 26 Jan 2026 19:47:43 +0000 Manifest next update: Mon 02 Feb 2026 19:47:43 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: jJctTpWY6BvPKQ8HUsNWnWWK2FzJuk5m7KUUZlQgIGA=) 2: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K4ZsrhlRHbGz6KmikspiKMatFVTA+yV67UI0J6tV1jI=) 3: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: bPeJO2btPaCYUVh0qNcUsTHYhYl9S+AMYJDMiRwcwDE=) 4: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: /6RdNjawuKYuhK/injB7VuoeyL7n6oTSV9kNVsfLQfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 19:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Jan 26 19:47:43 2026 GMT Not After : Feb 2 19:47:43 2026 GMT Subject: CN=6977c4df-e99b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:aa:f9:6b:87:74:5c:b5:01:ae:a3:0d:e1:91: 25:79:3c:43:27:a6:c6:57:a3:cc:f4:8d:44:a6:d2: 28:72:75:e2:9c:3b:01:01:af:00:40:58:7e:49:30: 33:88:cf:cd:53:08:25:ef:e2:24:a2:b7:0e:65:4f: 07:0c:0e:c4:4e:91:3a:c8:80:b7:9f:50:f6:e9:c7: df:c6:7f:c1:f5:7e:11:64:dc:3c:ec:e1:d2:b3:d5: 7e:9a:36:f7:86:ba:e1:e7:13:9a:d4:af:5a:67:31: bc:11:4a:45:c7:00:91:cb:c1:3f:ab:df:eb:fa:e9: 94:a4:6e:45:6f:6e:aa:76:4d:c9:76:cb:1c:57:c2: 0d:5a:9e:1d:1d:90:48:32:55:28:de:df:03:2f:48: 13:e2:e2:9d:39:2d:46:8b:c7:60:3c:ae:4d:43:e2: f9:05:ea:44:34:ee:27:c4:08:ca:c5:f8:92:e0:31: 53:96:1a:d9:bf:5e:80:61:1b:3c:66:b1:dd:04:a3: 84:b5:3e:98:b8:69:bc:54:3f:3d:77:b1:0a:19:a7: d0:db:7b:de:64:2e:85:2c:a5:84:7f:e0:d2:c4:ac: 57:c7:55:fa:ee:4a:de:f0:cf:49:23:97:9d:1a:aa: 4b:60:39:d9:7d:a4:13:6f:9c:c7:b2:bb:52:5f:3a: 9c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D5:CB:BC:AB:A3:A6:77:54:83:E6:08:84:CD:AC:0D:3D:E7:35:37 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:86:e0:96:6a:9a:ef:47:ab:9a:49:b8:23:48:5e:db:99:c7: f3:e7:28:0b:fa:fe:05:29:e5:39:14:fe:df:93:51:1a:c3:2e: 0c:51:e2:5b:c4:d4:4a:f4:e0:36:3b:99:41:51:dd:48:e6:97: 78:4a:78:11:69:ac:67:b1:37:5c:72:6b:e2:15:16:cd:f1:05: 80:93:a3:de:1c:e7:65:ef:18:41:3c:04:3e:be:13:5b:a1:8b: a4:10:be:56:dc:fd:5d:62:ab:75:60:45:e0:23:ab:0c:3d:9e: 1d:f5:4b:09:db:95:53:b2:d6:4c:3a:bd:df:4a:30:12:0a:60: fd:12:a1:8b:da:4e:51:07:77:db:a8:60:d2:d3:f7:44:a3:83: 3f:77:34:a1:7c:b2:af:47:27:7a:c5:ac:3a:da:12:f8:30:cc: 52:25:7a:18:66:e2:31:b3:6e:29:a5:5c:01:cd:f9:a9:25:ff: d1:1c:82:9f:7a:72:bf:ae:1a:22:7f:60:01:b4:20:a8:90:d4: 29:88:97:c6:87:6c:c1:4f:52:d8:9f:d7:66:57:41:34:2c:4e: bf:1d:62:cc:7f:00:07:76:94:c3:71:59:6a:ca:18:ac:98:89: 6d:7c:2c:ba:a9:5e:8c:58:cb:f0:52:1b:ad:2c:47:c5:2a:23: b8:41:e4:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwMTI2MTk0NzQzWhcNMjYwMjAyMTk0NzQzWjAYMRYwFAYD VQQDDA02OTc3YzRkZi1lOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsar5a4d0XLUBrqMN4ZEleTxDJ6bGV6PM9I1EptIocnXinDsBAa8AQFh+STAz iM/NUwgl7+IkorcOZU8HDA7ETpE6yIC3n1D26cffxn/B9X4RZNw87OHSs9V+mjb3 hrrh5xOa1K9aZzG8EUpFxwCRy8E/q9/r+umUpG5Fb26qdk3JdsscV8INWp4dHZBI MlUo3t8DL0gT4uKdOS1Gi8dgPK5NQ+L5BepENO4nxAjKxfiS4DFTlhrZv16AYRs8 ZrHdBKOEtT6YuGm8VD89d7EKGafQ23veZC6FLKWEf+DSxKxXx1X67kre8M9JI5ed GqpLYDnZfaQTb5zHsrtSXzqcgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXVy7yr o6Z3VIPmCITNrA095zU3MB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAShuCWaprvR6uaSbgjSF7bmcfz5ygL+v4FKeU5FP7fk1Eawy4MUeJb xNRK9OA2O5lBUd1I5pd4SngRaaxnsTdccmviFRbN8QWAk6PeHOdl7xhBPAQ+vhNb oYukEL5W3P1dYqt1YEXgI6sMPZ4d9UsJ25VTstZMOr3fSjASCmD9EqGL2k5RB3fb qGDS0/dEo4M/dzShfLKvRyd6xaw62hL4MMxSJXoYZuIxs24ppVwBzfmpJf/RHIKf enK/rhoif2ABtCCokNQpiJfGh2zBT1LYn9dmV0E0LE6/HWLMfwAHdpTDcVlqyhis mIltfCy6qV6MWMvwUhutLEfFKiO4QeRu -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:33 2026 by rpki-client