This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: bN6pvK6PkJA1fe6mu3pW3rFfNAJMWU6ALRibfOYlAkk= Subject key identifier: 7C:0A:E3:E3:4B:70:6D:20:9A:8A:F1:6C:B1:40:06:FB:83:94:66:5F Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 16EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 16AC Signing time: Thu 08 Jan 2026 16:29:37 +0000 Manifest this update: Thu 08 Jan 2026 16:29:37 +0000 Manifest next update: Thu 15 Jan 2026 16:29:37 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: wqxiJX+MbjlBXMJ7mOc5KlQIAymWWvNXPNz74RrETCY=) 2: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: J0L9nDFdFV6ZiImc3zHe9UUNBLYublvIh0RA4SsVHPQ=) 4: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 3RtBD83ZJNmQpXwmbagiYu3nHPOh0MloLGGIQPhUGxM=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: XuW38uZAfeN4keo/onpljpRS5BHBZ8INJxFDXHjJZ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 16:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5870 (0x16ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jan 8 16:29:37 2026 GMT Not After : Jan 15 16:29:37 2026 GMT Subject: CN=695fdb71-d18b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fa:47:84:3f:65:75:79:4f:ac:b6:ae:19:88: 98:b9:3a:3a:2e:9a:32:ab:05:29:ca:fe:15:fd:57: 54:33:a9:c5:cf:20:6e:f5:49:c9:7e:50:9c:75:12: ca:46:c4:2c:0a:4a:e5:15:8c:b4:e7:cc:90:7a:6a: 50:b6:89:fb:43:da:b4:0d:51:64:9c:e0:19:c6:10: ca:f6:82:28:48:c1:e0:bc:71:19:e7:18:18:b7:4f: 0b:c4:ad:cb:c8:3d:f9:00:fd:9d:56:cc:0c:7e:9f: 2c:4c:0a:7a:17:a0:0f:46:21:76:c6:5f:98:21:20: 28:c6:c1:dd:37:9e:bc:1b:7c:03:31:88:b3:f9:55: fb:ad:10:6d:bc:4c:1f:c9:15:76:3e:80:15:99:33: d3:27:24:ba:46:ba:23:78:ca:97:b6:fb:98:48:0e: a1:a4:40:b5:4d:44:39:87:c9:3f:8c:f0:f6:87:71: c9:9b:68:23:ed:56:b4:16:64:5a:3e:df:f8:70:64: e7:02:7a:24:41:43:15:76:1a:e1:1b:ef:21:e3:99: e1:81:8c:97:8e:6d:92:59:0a:71:23:e0:62:ab:10: 6a:89:a5:9b:93:f3:3a:51:5a:ba:85:4d:b7:0b:9b: f8:f5:58:21:6c:22:06:94:10:89:d3:ca:04:ce:7c: be:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0A:E3:E3:4B:70:6D:20:9A:8A:F1:6C:B1:40:06:FB:83:94:66:5F X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:08:7a:85:bc:e8:be:07:33:9f:30:e3:8b:f1:50:93:d4:10: 7a:7a:65:28:0c:05:35:14:45:65:13:1b:bd:96:f0:97:11:0e: 6a:da:5b:b5:f7:ad:f0:02:3f:3c:7b:7a:3b:c8:54:7b:9f:13: 05:66:0b:75:21:b4:84:ea:d5:1e:f6:e6:63:df:68:ec:d4:74: d3:5f:4b:98:17:9b:cd:cd:fb:6f:e7:d9:fb:f4:0e:0c:ad:59: ed:37:ac:a5:6e:8d:12:85:3e:d0:d0:ea:8d:0b:7a:38:6c:82: 6c:d6:aa:0f:0c:e4:2a:ee:01:91:3a:47:b4:00:b0:d1:4a:15: 1f:7e:0c:a8:69:a5:d5:c8:3b:df:83:53:c8:8f:64:7c:4a:32: 36:b5:95:8a:ed:18:76:2e:2a:52:b1:43:47:b7:79:72:68:95: dc:38:52:b5:d3:46:39:cd:20:85:28:c8:0a:46:b1:cb:79:fe: 48:f3:6e:ea:ca:2a:d9:f4:2b:67:43:50:7c:0a:1b:79:f4:71: ae:c7:cd:6a:eb:dc:6b:11:f9:fb:80:12:47:c4:62:8e:2b:e6: d5:9b:1c:eb:91:8a:11:c8:11:54:b0:99:9d:2e:8a:89:c4:c9: 6f:c3:4f:1d:6a:7c:cd:d4:94:11:b0:f8:e0:4e:d9:06:99:44: 19:0f:e7:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjYwMTA4MTYyOTM3WhcNMjYwMTE1MTYyOTM3WjAYMRYwFAYD VQQDDA02OTVmZGI3MS1kMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fpHhD9ldXlPrLauGYiYuTo6LpoyqwUpyv4V/VdUM6nFzyBu9UnJflCcdRLK RsQsCkrlFYy058yQempQton7Q9q0DVFknOAZxhDK9oIoSMHgvHEZ5xgYt08LxK3L yD35AP2dVswMfp8sTAp6F6APRiF2xl+YISAoxsHdN568G3wDMYiz+VX7rRBtvEwf yRV2PoAVmTPTJyS6RrojeMqXtvuYSA6hpEC1TUQ5h8k/jPD2h3HJm2gj7Va0FmRa Pt/4cGTnAnokQUMVdhrhG+8h45nhgYyXjm2SWQpxI+BiqxBqiaWbk/M6UVq6hU23 C5v49VghbCIGlBCJ08oEzny++QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwK4+NL cG0gmorxbLFABvuDlGZfMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0CHqFvOi+BzOfMOOL8VCT1BB6emUoDAU1FEVlExu9lvCXEQ5q2lu1 963wAj88e3o7yFR7nxMFZgt1IbSE6tUe9uZj32js1HTTX0uYF5vNzftv59n79A4M rVntN6ylbo0ShT7Q0OqNC3o4bIJs1qoPDOQq7gGROke0ALDRShUffgyoaaXVyDvf g1PIj2R8SjI2tZWK7Rh2LipSsUNHt3lyaJXcOFK100Y5zSCFKMgKRrHLef5I827q yirZ9CtnQ1B8Cht59HGux81q69xrEfn7gBJHxGKOK+bVmxzrkYoRyBFUsJmdLoqJ xMlvw08danzN1JQRsPjgTtkGmUQZD+dW -----END CERTIFICATE-----Generated at Fri Jan 9 00:58:02 2026 by rpki-client