This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: 0jgor4Y47FEni67lFsl6DwXkvlrIfiQtxHHbl1FjDxk= Subject key identifier: BE:F8:92:47:A1:D2:CA:77:3A:81:B4:BB:A7:85:CE:0E:A1:8A:A3:BD Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CA3 Signing time: Mon 26 Jan 2026 18:03:59 +0000 Manifest this update: Mon 26 Jan 2026 18:03:59 +0000 Manifest next update: Mon 02 Feb 2026 18:03:59 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: YhO6fwhvhUkEE08ouN1l22QV558vEBcb277cg2VvcA8=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 18:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3259 (0xcbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jan 26 18:03:59 2026 GMT Not After : Feb 2 18:03:59 2026 GMT Subject: CN=6977ac8f-da27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f7:1e:ab:77:56:b7:48:0d:84:22:3f:1b:5e: 4b:03:6a:e3:bf:a3:60:4d:21:af:0b:1a:92:e9:32: 75:39:86:cc:7f:a5:e2:72:0e:f5:82:ae:64:51:1b: 22:26:0a:f7:4a:58:88:8a:60:70:2b:f5:27:4f:53: 30:36:78:40:96:6e:cb:37:f1:18:6d:5c:4a:f6:6a: 5d:14:8f:ee:63:aa:c4:bb:80:1c:bc:87:1c:04:5f: fb:51:25:54:74:4f:4d:78:ac:15:9e:22:3d:cb:dc: 7a:af:37:63:40:69:bb:da:87:b7:ff:d9:ef:89:81: 3b:37:4c:08:15:a6:7a:ef:cf:af:e9:e1:0b:fd:e7: 64:04:82:43:13:52:ba:f5:d2:93:8a:a7:d3:32:f3: c4:3b:90:92:76:63:e8:0f:71:d0:31:3d:ee:dd:30: 26:94:d9:f0:6d:70:9b:ba:b9:44:ff:2a:a8:1b:a1: a6:aa:df:a0:e9:c2:d1:1c:85:c4:e3:2e:7a:5b:fe: ff:ef:d5:f8:69:bf:e4:60:ef:8c:99:00:0b:32:13: 46:e3:22:dc:84:02:0c:4e:dd:eb:4c:30:c3:ce:07: 6c:f6:8c:62:29:20:9e:80:3d:cc:26:c3:eb:bd:dc: 73:24:2b:94:68:8e:53:a3:3c:98:d1:db:a9:cf:09: 8d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F8:92:47:A1:D2:CA:77:3A:81:B4:BB:A7:85:CE:0E:A1:8A:A3:BD X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e0:d6:d9:1f:4d:e2:02:86:cb:5d:5e:0b:d2:4a:70:68:ae: 96:8b:95:57:d0:4e:72:3a:58:45:e7:cc:70:da:f0:6b:88:87: 7a:5d:82:dd:a1:00:a2:80:1c:77:66:f6:f0:8d:3e:42:ae:18: 26:de:5a:53:a8:7f:f0:be:2e:25:12:4e:66:10:1b:24:24:46: 96:78:a7:46:8c:f4:c9:61:c2:63:f7:36:8a:28:29:22:4c:8c: e8:e8:f5:07:6a:8f:75:6a:4f:ba:10:ab:ea:98:95:37:f5:8c: 43:8e:1b:05:e2:59:5a:a1:ad:15:5c:80:ca:16:f5:09:9f:27: 41:5c:b2:ad:93:a7:56:0a:05:f2:6d:b2:df:2e:34:66:75:d6: 07:a8:b7:5b:af:e6:93:15:e1:31:bd:32:6e:49:f9:3c:2c:4e: 5c:85:d3:ab:f5:d8:1d:b3:cc:80:bf:6d:0a:4a:e6:5d:c5:4e: 0a:a5:bc:de:d6:50:ec:6d:07:63:8b:9e:a3:38:55:99:87:f7: 12:48:3a:ab:5a:6b:86:12:64:b5:9d:34:1f:65:12:f6:b6:ec: 29:56:e9:84:36:e6:1c:55:cb:8e:f5:7b:f2:4f:7f:af:67:5d: 5d:8f:a9:58:f6:a2:a9:9b:8a:b1:ae:be:7e:05:f2:97:b5:f7: e5:08:2c:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwMTI2MTgwMzU5WhcNMjYwMjAyMTgwMzU5WjAYMRYwFAYD VQQDDA02OTc3YWM4Zi1kYTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvceq3dWt0gNhCI/G15LA2rjv6NgTSGvCxqS6TJ1OYbMf6Xicg71gq5kURsi Jgr3SliIimBwK/UnT1MwNnhAlm7LN/EYbVxK9mpdFI/uY6rEu4AcvIccBF/7USVU dE9NeKwVniI9y9x6rzdjQGm72oe3/9nviYE7N0wIFaZ678+v6eEL/edkBIJDE1K6 9dKTiqfTMvPEO5CSdmPoD3HQMT3u3TAmlNnwbXCburlE/yqoG6Gmqt+g6cLRHIXE 4y56W/7/79X4ab/kYO+MmQALMhNG4yLchAIMTt3rTDDDzgds9oxiKSCegD3MJsPr vdxzJCuUaI5TozyY0dupzwmN9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL74kkeh 0sp3OoG0u6eFzg6hiqO9MB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb4NbZH03iAobLXV4L0kpwaK6Wi5VX0E5yOlhF58xw2vBriId6XYLd oQCigBx3ZvbwjT5Crhgm3lpTqH/wvi4lEk5mEBskJEaWeKdGjPTJYcJj9zaKKCki TIzo6PUHao91ak+6EKvqmJU39YxDjhsF4llaoa0VXIDKFvUJnydBXLKtk6dWCgXy bbLfLjRmddYHqLdbr+aTFeExvTJuSfk8LE5chdOr9dgds8yAv20KSuZdxU4Kpbze 1lDsbQdji56jOFWZh/cSSDqrWmuGEmS1nTQfZRL2tuwpVumENuYcVcuO9XvyT3+v Z11dj6lY9qKpm4qxrr5+BfKXtfflCCz6 -----END CERTIFICATE-----Generated at Wed Jan 28 05:35:57 2026 by rpki-client