This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: cDJrW9yl0Kw6HIHHTGPpGpTLbQ+n3AG9ZaMvMOsgu6I= Subject key identifier: 26:06:84:72:6F:58:DA:52:E9:35:D4:8D:2E:21:F2:7C:61:B6:EE:42 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 68 Signing time: Sat 17 Jan 2026 06:01:44 +0000 Manifest this update: Sat 17 Jan 2026 06:01:43 +0000 Manifest next update: Sat 24 Jan 2026 06:01:43 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: Xf7aRyzYy+e8z4Juf4owwdjMcFKmACggwSWNY0Nbkrg=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Jan 17 06:01:43 2026 GMT Not After : Jan 24 06:01:43 2026 GMT Subject: CN=696b25c8-6300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:00:36:b9:91:ba:21:01:0e:29:b2:c1:26:84: c3:1b:80:fa:55:72:4b:c7:50:89:12:6f:b5:82:0c: 0d:8c:8d:d0:94:3d:91:45:a9:5b:2b:3e:95:05:21: 69:d9:85:fe:c9:fc:35:31:27:f5:6b:10:cc:38:78: a7:de:2c:04:66:ac:3c:f1:6d:20:8e:ee:55:84:6f: 45:f7:5d:44:16:b2:d3:f6:9a:1b:1b:92:ef:23:05: 7a:8e:57:c8:b2:33:21:aa:84:4d:c5:6c:a1:ee:73: 47:43:93:20:67:fd:68:31:56:0b:16:1f:cb:0a:7f: d1:41:4f:69:45:26:fa:b9:7c:e8:d1:e1:38:c0:9c: 3e:6c:11:62:83:09:47:6d:f5:bb:98:c7:4c:51:4f: 30:d9:4f:90:b2:e4:4a:ff:82:97:09:6b:ae:a0:f7: ad:ba:7d:3c:94:b6:87:81:4b:d6:b8:c2:3f:b8:d5: c4:e8:99:ee:43:be:3c:0c:53:ba:20:d0:67:44:83: 59:bb:cb:c2:4d:4c:2d:d3:2a:90:3b:67:08:fd:e6: 9b:19:4f:dd:11:29:c8:6c:b2:2f:6d:27:19:ec:21: 45:76:23:bb:f4:61:26:e7:fa:ef:c6:ef:c3:d3:ed: d7:5c:4b:50:cd:88:33:48:de:1c:80:e2:23:8d:76: db:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:06:84:72:6F:58:DA:52:E9:35:D4:8D:2E:21:F2:7C:61:B6:EE:42 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:58:cf:de:12:b4:da:8d:3d:b0:9a:5a:d1:f0:9e:95:7d:88: 9f:26:64:a6:2d:60:9c:6a:62:02:1e:54:a0:cf:2e:74:a0:83: 96:e8:30:e8:5a:2e:21:69:da:e7:b6:4f:9d:1d:94:04:9b:83: d4:98:cc:1a:2c:f7:cb:15:2a:f2:af:a6:71:22:05:55:28:d3: 7d:77:e5:05:b0:e6:27:af:a1:d6:c0:30:2d:31:6d:b1:28:c8: 56:76:81:d1:6c:ce:f6:f4:30:fc:3a:80:cd:f9:d5:bb:93:de: bf:43:dd:10:80:95:ef:0e:72:b0:e3:b9:c0:40:88:c6:0e:c3: a9:ce:8b:44:47:5d:b4:56:94:82:77:54:55:ca:69:0f:a3:6b: 11:d0:0f:57:cf:c0:a3:65:36:71:15:7d:a1:a4:63:a5:b9:e1: cd:e6:04:85:60:c2:43:5f:c2:10:4f:92:63:17:36:f0:b1:79: 99:77:4f:4e:66:5f:1e:68:dd:19:aa:9e:65:fc:ca:1a:ef:d0: d3:76:26:3c:1d:85:df:1f:ef:11:16:2b:86:77:f6:22:f3:d2: 33:dd:23:9b:b6:4f:1d:09:e3:37:3b:61:c9:1a:69:e9:47:ed: ef:f3:d6:30:04:bc:bd:4b:53:cb:d4:13:17:94:3d:b8:0c:22: be:3f:d4:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNjAxMTcwNjAxNDNaFw0yNjAxMjQwNjAxNDNaMBgxFjAUBgNV BAMMDTY5NmIyNWM4LTYzMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbADa5kbohAQ4pssEmhMMbgPpVckvHUIkSb7WCDA2MjdCUPZFFqVsrPpUFIWnZ hf7J/DUxJ/VrEMw4eKfeLARmrDzxbSCO7lWEb0X3XUQWstP2mhsbku8jBXqOV8iy MyGqhE3FbKHuc0dDkyBn/WgxVgsWH8sKf9FBT2lFJvq5fOjR4TjAnD5sEWKDCUdt 9buYx0xRTzDZT5Cy5Er/gpcJa66g9626fTyUtoeBS9a4wj+41cTome5DvjwMU7og 0GdEg1m7y8JNTC3TKpA7Zwj95psZT90RKchssi9tJxnsIUV2I7v0YSbn+u/G78PT 7ddcS1DNiDNI3hyA4iONdttRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJgaEcm9Y 2lLpNdSNLiHyfGG27kIwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAClYz94StNqNPbCaWtHwnpV9iJ8mZKYtYJxqYgIeVKDPLnSgg5boMOha LiFp2ue2T50dlASbg9SYzBos98sVKvKvpnEiBVUo03135QWw5ievodbAMC0xbbEo yFZ2gdFszvb0MPw6gM351buT3r9D3RCAle8OcrDjucBAiMYOw6nOi0RHXbRWlIJ3 VFXKaQ+jaxHQD1fPwKNlNnEVfaGkY6W54c3mBIVgwkNfwhBPkmMXNvCxeZl3T05m Xx5o3RmqnmX8yhrv0NN2Jjwdhd8f7xEWK4Z39iLz0jPdI5u2Tx0J4zc7YckaaelH 7e/z1jAEvL1LU8vUExeUPbgMIr4/1EI= -----END CERTIFICATE-----Generated at Sun Jan 18 22:10:43 2026 by rpki-client