This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: 0U7s/LgJL8+b1ZICRFesR3vlUMsV5LQp4CQ3quskbKc= Subject key identifier: 33:6E:A2:4F:6B:22:9A:C9:A5:60:63:C4:F0:28:EB:52:F6:9E:78:D5 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 0502 Signing time: Tue 20 Jan 2026 16:16:59 +0000 Manifest this update: Tue 20 Jan 2026 16:16:58 +0000 Manifest next update: Tue 27 Jan 2026 16:16:58 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: QhcaikGP2Ou3RgselqtVBnjD/klgTKTum4VcYJdFxx8=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Jan 20 16:16:58 2026 GMT Not After : Jan 27 16:16:58 2026 GMT Subject: CN=696faa7b-0774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8b:d3:f9:3a:10:7f:75:b7:fc:f3:d6:01:9a: c8:94:dd:e0:2c:62:77:71:91:11:10:b9:88:c5:bd: e3:d7:3d:57:3c:57:df:2d:84:b0:51:5e:ce:d5:b5: 8f:6c:f0:5f:1e:81:92:27:2e:32:d9:42:a7:37:97: d0:0c:04:2d:b9:89:f6:56:5c:a6:17:e4:8e:42:9c: 18:af:e3:81:28:3f:b8:8e:f4:b8:56:9f:7f:21:50: 84:5a:9a:a5:c7:2b:46:5c:4d:e9:4a:6f:a0:89:f9: e8:3c:89:db:c5:3c:d2:94:36:7a:48:71:35:be:d7: c5:25:7e:80:30:ef:10:f7:66:94:52:0d:a5:af:9f: 77:c5:42:a4:5f:9f:9c:a3:01:a3:43:99:58:f9:b3: 3d:71:02:f8:67:31:06:b6:64:af:ae:da:db:01:7e: be:63:0c:af:0f:b4:bd:18:59:0d:0d:d8:20:f6:bf: 02:ed:d3:31:c7:e6:f3:56:7e:d4:22:93:12:98:e7: 3d:26:64:dd:f8:6f:48:6a:7f:a1:b2:8f:41:98:ed: 31:c9:aa:17:d5:b8:d4:6d:43:64:f3:42:ca:0a:34: 93:ca:87:45:17:ad:b0:f4:a3:ac:21:0f:45:3c:47: 2f:4d:3b:f0:be:bc:ea:27:99:06:91:3d:70:79:dc: e2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6E:A2:4F:6B:22:9A:C9:A5:60:63:C4:F0:28:EB:52:F6:9E:78:D5 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:8d:d8:e4:54:47:aa:7c:82:25:0d:56:b0:15:b4:ea:3c:35: 08:5f:94:99:9a:f8:eb:6e:4c:ce:28:db:3d:03:70:3f:a4:3c: 1c:68:66:18:7b:a0:14:b2:c7:eb:1f:23:dc:fc:a2:d2:0e:75: 72:aa:e4:50:08:2b:ea:5d:ec:7a:63:ae:b9:1e:a0:b6:98:b6: 3b:cc:88:97:be:32:49:d2:11:8c:0f:71:a7:91:e7:75:b5:41: b3:27:8a:78:fb:6f:5c:8b:03:0a:01:a1:ec:4b:92:3a:26:a8: d0:a9:12:44:ea:91:c3:13:57:dc:2d:6f:c5:f3:43:c8:70:cf: 5a:b6:67:9e:d6:6e:5a:38:2e:40:2d:37:ee:26:a7:ed:85:96: 37:6a:fa:8d:26:b9:29:2b:6e:75:f5:11:9a:e3:45:84:06:af: ec:9f:79:5d:cf:4c:8f:09:4e:f3:8f:98:3f:ff:c7:ed:b8:34: 7c:c8:09:c8:bc:85:ec:6c:87:b6:eb:42:d3:02:99:08:a2:59: 10:99:bc:d1:15:65:68:15:55:4c:52:48:6b:3d:06:40:74:1b: 59:46:4f:c9:bc:18:49:2e:c7:03:94:09:89:80:92:9a:da:cb: 43:92:74:85:0b:93:47:8b:d3:01:7b:b8:7b:c8:32:ac:ba:3e: 1c:5f:68:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjYwMTIwMTYxNjU4WhcNMjYwMTI3MTYxNjU4WjAYMRYwFAYD VQQDDA02OTZmYWE3Yi0wNzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYvT+ToQf3W3/PPWAZrIlN3gLGJ3cZERELmIxb3j1z1XPFffLYSwUV7O1bWP bPBfHoGSJy4y2UKnN5fQDAQtuYn2VlymF+SOQpwYr+OBKD+4jvS4Vp9/IVCEWpql xytGXE3pSm+gifnoPInbxTzSlDZ6SHE1vtfFJX6AMO8Q92aUUg2lr593xUKkX5+c owGjQ5lY+bM9cQL4ZzEGtmSvrtrbAX6+YwyvD7S9GFkNDdgg9r8C7dMxx+bzVn7U IpMSmOc9JmTd+G9Ian+hso9BmO0xyaoX1bjUbUNk80LKCjSTyodFF62w9KOsIQ9F PEcvTTvwvrzqJ5kGkT1wedziCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNuok9r IprJpWBjxPAo61L2nnjVMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHjdjkVEeqfIIlDVawFbTqPDUIX5SZmvjrbkzOKNs9A3A/pDwcaGYY e6AUssfrHyPc/KLSDnVyquRQCCvqXex6Y665HqC2mLY7zIiXvjJJ0hGMD3Gnked1 tUGzJ4p4+29ciwMKAaHsS5I6JqjQqRJE6pHDE1fcLW/F80PIcM9atmee1m5aOC5A LTfuJqfthZY3avqNJrkpK2519RGa40WEBq/sn3ldz0yPCU7zj5g//8ftuDR8yAnI vIXsbIe260LTApkIolkQmbzRFWVoFVVMUkhrPQZAdBtZRk/JvBhJLscDlAmJgJKa 2stDknSFC5NHi9MBe7h7yDKsuj4cX2gv -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:05 2026 by rpki-client