This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: 9xv8PeeciJC8Pf0wRWTJRP7Gl8ndTrUB8P/SlB92zls= Subject key identifier: 86:69:66:2F:6A:99:58:E7:7F:BB:23:D7:34:9D:21:DF:65:FF:96:4B Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: EB Signing time: Sat 17 Jan 2026 04:38:15 +0000 Manifest this update: Sat 17 Jan 2026 04:38:15 +0000 Manifest next update: Sat 24 Jan 2026 04:38:15 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: OaHP8DAsNM47efdis9F7BSMos9jk4VN2NyEm4k4mrUQ=) 2: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: S2OZL34K7y7KU66LSbkx0n+jdpTeHIrf5kcKi6P19ww=) 3: 00926CA2D41F11F092947183C4F9AE02.roa (hash: 6Kb8qTYjaoIOVP7kkTd2rIa7gwLmY36EevcUKuSxehs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Jan 17 04:38:15 2026 GMT Not After : Jan 24 04:38:15 2026 GMT Subject: CN=696b1237-ee24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:01:68:76:fd:97:ea:c6:05:01:78:16:3f: d4:2f:da:4a:22:38:22:7a:06:98:de:e8:ca:b4:d1: 1d:18:5c:0d:9d:47:46:fc:11:0d:23:48:c0:6c:da: cd:4f:75:16:85:25:55:98:0b:09:1d:a0:ae:35:96: 5b:19:37:6d:16:9d:48:56:24:1c:b4:d7:93:02:06: 5b:b9:54:58:2e:a4:f2:c2:53:f4:48:95:59:2d:03: e9:b2:9f:68:c9:f6:2a:1f:dd:59:93:4a:fb:8e:1b: 93:42:c0:98:66:a6:2a:9f:90:aa:38:3d:ba:be:e9: 4e:17:ee:be:85:b1:bc:ba:ac:a4:ab:2d:3f:96:63: 09:a6:05:5c:86:d8:c8:50:77:24:bc:7a:45:8b:aa: de:2f:e2:14:91:48:58:18:87:b3:a5:2e:4b:2c:c2: 2c:c2:13:64:b1:09:de:22:4e:12:b3:6b:27:3f:a4: d6:fb:b3:12:1f:37:d9:44:14:07:b6:29:8b:4b:5c: 0f:50:90:cd:d4:6b:bb:61:01:f5:e4:9e:f1:d7:ad: 7e:d5:de:a2:1e:4a:ae:21:83:1e:b4:47:02:2d:d6: c0:33:5c:38:f6:e1:80:04:15:77:17:a5:b7:55:26: 73:07:2f:88:04:84:ff:7f:4a:30:39:7b:80:95:5e: 32:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:69:66:2F:6A:99:58:E7:7F:BB:23:D7:34:9D:21:DF:65:FF:96:4B X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:1e:2a:c0:1d:72:ae:bf:ad:cb:eb:c9:d5:b2:3f:bb:4d:97: 0e:23:5c:67:34:b7:d3:8f:87:c9:9f:40:a9:96:50:45:78:b9: fd:23:88:62:2d:71:94:4d:02:a7:76:9a:1e:05:0f:93:34:fb: 6f:14:87:7c:80:ec:5e:19:05:65:34:bf:88:bb:7a:ae:91:b0: a3:d5:c3:c1:c3:b6:18:e6:fb:99:84:48:4f:3e:56:33:aa:7b: 46:eb:a6:57:c5:f1:96:7d:dd:13:7f:71:d5:06:1d:f6:cf:a4: 9f:8b:aa:c8:f0:25:e0:ce:a2:2c:2b:1c:91:9c:20:66:f0:1c: fc:6e:0e:28:4a:f4:7d:1d:88:96:a7:da:4a:f1:91:cc:48:16: 4b:63:59:6c:23:b8:d4:c7:0e:46:1c:10:e8:68:d1:92:f6:ee: 2c:bf:90:f9:c8:90:3f:68:29:6d:c6:54:7d:02:45:02:57:72: d1:9b:a8:e3:30:17:b7:02:64:d8:fe:42:cc:34:9e:55:a2:99: 3e:3f:50:27:1b:53:ae:f4:8f:d7:42:08:01:95:13:e7:53:25: 73:ad:53:2c:51:25:fa:04:21:84:fa:36:95:52:f7:4f:93:db: f4:6b:c2:1a:75:c0:c6:59:59:a4:8e:c8:59:c5:41:75:44:13: 76:60:56:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjYwMTE3MDQzODE1WhcNMjYwMTI0MDQzODE1WjAYMRYwFAYD VQQDDA02OTZiMTIzNy1lZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGABaHb9l+rGBQF4Fj/UL9pKIjgiegaY3ujKtNEdGFwNnUdG/BENI0jAbNrN T3UWhSVVmAsJHaCuNZZbGTdtFp1IViQctNeTAgZbuVRYLqTywlP0SJVZLQPpsp9o yfYqH91Zk0r7jhuTQsCYZqYqn5CqOD26vulOF+6+hbG8uqykqy0/lmMJpgVchtjI UHckvHpFi6reL+IUkUhYGIezpS5LLMIswhNksQneIk4Ss2snP6TW+7MSHzfZRBQH timLS1wPUJDN1Gu7YQH15J7x161+1d6iHkquIYMetEcCLdbAM1w49uGABBV3F6W3 VSZzBy+IBIT/f0owOXuAlV4ypwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZpZi9q mVjnf7sj1zSdId9l/5ZLMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6HirAHXKuv63L68nVsj+7TZcOI1xnNLfTj4fJn0CpllBFeLn9I4hi LXGUTQKndpoeBQ+TNPtvFId8gOxeGQVlNL+Iu3qukbCj1cPBw7YY5vuZhEhPPlYz qntG66ZXxfGWfd0Tf3HVBh32z6Sfi6rI8CXgzqIsKxyRnCBm8Bz8bg4oSvR9HYiW p9pK8ZHMSBZLY1lsI7jUxw5GHBDoaNGS9u4sv5D5yJA/aCltxlR9AkUCV3LRm6jj MBe3AmTY/kLMNJ5Vopk+P1AnG1Ou9I/XQggBlRPnUyVzrVMsUSX6BCGE+jaVUvdP k9v0a8IadcDGWVmkjshZxUF1RBN2YFZR -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:24 2026 by rpki-client