This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: eoVhcvwGAXHLDGB7knK9EXDxwoOV6hCxm6KEluODjoU= Subject key identifier: C7:59:B8:B1:2C:82:D0:68:9D:74:5E:43:80:DB:21:5F:C5:E1:0B:C1 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 0500 Signing time: Tue 20 Jan 2026 22:53:50 +0000 Manifest this update: Tue 20 Jan 2026 22:53:50 +0000 Manifest next update: Tue 27 Jan 2026 22:53:50 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: zNBxhJYxR7nmiAqKsl/V+jNEpWqFLA0AzI+rk8GYaAY=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Jan 20 22:53:50 2026 GMT Not After : Jan 27 22:53:50 2026 GMT Subject: CN=6970077e-e1e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b3:77:e7:f6:de:37:0d:99:26:9d:f6:67:34: 93:93:ea:80:1d:9b:4e:c9:02:3e:20:15:4f:a4:fc: be:40:f1:b1:4c:9a:24:a1:a9:4e:a8:f8:dd:80:1d: 39:83:c5:07:73:ea:28:41:54:8d:16:bf:b5:ac:c1: 68:8f:b0:13:3a:e2:25:b1:19:2b:79:e1:7b:06:f7: 19:48:e8:49:4a:57:da:0f:c8:96:41:21:99:d2:c9: dd:77:b8:73:da:12:14:65:aa:14:2f:79:4c:9c:84: c4:12:e1:58:2d:35:c4:6b:e8:93:95:2c:8f:9d:a0: 3b:8b:aa:fe:74:97:25:3e:91:5f:5c:f7:26:54:a4: 16:d1:af:9a:f0:4d:20:ad:23:0f:c2:47:4f:9d:18: 83:1c:6a:0c:c4:9f:98:f1:ad:4a:67:e6:de:78:2c: e9:5a:0a:ca:be:3c:a3:9b:7c:93:9f:13:54:43:a3: 28:4e:b5:9d:28:1c:e5:18:ec:b6:c2:50:ee:1d:b7: db:f9:06:9e:fe:84:62:be:a3:7a:71:20:8f:5b:3b: 67:93:d9:c8:d6:99:17:82:67:73:33:bd:9a:b3:e7: f2:82:68:c4:45:15:b0:6a:55:ec:81:5d:8a:ea:47: 13:ee:25:21:77:66:9d:9e:c3:68:57:e5:7d:ce:8e: 21:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:59:B8:B1:2C:82:D0:68:9D:74:5E:43:80:DB:21:5F:C5:E1:0B:C1 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:8d:9e:30:7e:c0:12:0e:d9:93:e7:b9:ca:2c:e8:77:a5:96: b8:e5:f2:90:23:85:a8:5b:3b:a0:e8:2c:d6:9b:5a:ac:d1:57: 7c:e3:45:51:7c:2a:10:d5:a2:e9:5f:c9:99:5b:3f:1f:a5:e6: 5d:5e:6b:16:51:24:87:73:04:f8:ff:e4:68:00:5a:9a:75:7d: 74:1d:98:d1:11:9a:96:9e:d2:56:72:2b:f1:48:cb:84:b4:a7: 07:e7:ff:fb:72:a9:33:0e:f2:8f:89:2a:c3:89:b1:31:60:68: dc:ee:12:de:95:46:c9:2f:ee:ee:0c:98:23:aa:ee:3e:dc:02: 79:ec:fa:4f:74:17:3e:c4:3c:4f:a4:be:56:7b:3f:d6:58:34: a3:5c:40:01:30:d4:19:16:44:49:ab:f7:45:cd:68:14:7a:35: 5d:38:da:8d:28:38:58:fb:0a:90:62:90:36:96:b5:69:ca:a8: e9:9c:00:8a:c3:ab:8a:d2:80:4b:47:5c:69:9e:ad:df:97:00: 77:d3:1f:cd:4f:2d:d9:2b:1e:ce:50:01:35:79:c0:1d:e7:b5: 9b:12:6e:61:a1:47:cf:12:f7:ac:11:10:f9:15:91:18:db:42: 8e:34:6a:66:90:d8:5e:50:c9:d9:39:5b:09:bd:fe:6b:a8:0a: 68:01:97:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjYwMTIwMjI1MzUwWhcNMjYwMTI3MjI1MzUwWjAYMRYwFAYD VQQDDA02OTcwMDc3ZS1lMWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrN35/beNw2ZJp32ZzSTk+qAHZtOyQI+IBVPpPy+QPGxTJokoalOqPjdgB05 g8UHc+ooQVSNFr+1rMFoj7ATOuIlsRkreeF7BvcZSOhJSlfaD8iWQSGZ0sndd7hz 2hIUZaoUL3lMnITEEuFYLTXEa+iTlSyPnaA7i6r+dJclPpFfXPcmVKQW0a+a8E0g rSMPwkdPnRiDHGoMxJ+Y8a1KZ+beeCzpWgrKvjyjm3yTnxNUQ6MoTrWdKBzlGOy2 wlDuHbfb+Qae/oRivqN6cSCPWztnk9nI1pkXgmdzM72as+fygmjERRWwalXsgV2K 6kcT7iUhd2adnsNoV+V9zo4hxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdZuLEs gtBonXReQ4DbIV/F4QvBMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsjZ4wfsASDtmT57nKLOh3pZa45fKQI4WoWzug6CzWm1qs0Vd840VR fCoQ1aLpX8mZWz8fpeZdXmsWUSSHcwT4/+RoAFqadX10HZjREZqWntJWcivxSMuE tKcH5//7cqkzDvKPiSrDibExYGjc7hLelUbJL+7uDJgjqu4+3AJ57PpPdBc+xDxP pL5Wez/WWDSjXEABMNQZFkRJq/dFzWgUejVdONqNKDhY+wqQYpA2lrVpyqjpnACK w6uK0oBLR1xpnq3flwB30x/NTy3ZKx7OUAE1ecAd57WbEm5hoUfPEvesERD5FZEY 20KONGpmkNheUMnZOVsJvf5rqApoAZfb -----END CERTIFICATE-----Generated at Thu Jan 22 12:17:39 2026 by rpki-client