This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: JzZ5Jd1zKrOklKhZFtUkWIOh7A8xhX59Sf+Sc+B0EzY= Subject key identifier: 57:94:15:DC:3D:C8:BE:D4:B2:A6:20:90:54:F4:F8:8F:CF:E5:AF:37 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 060B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 0603 Signing time: Mon 26 Jan 2026 22:08:42 +0000 Manifest this update: Mon 26 Jan 2026 22:08:42 +0000 Manifest next update: Mon 02 Feb 2026 22:08:42 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: EbK5kPyKq0sG3sLvp389pCt357QWq4qtVTzH07Ex3/w=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: BH/z7dAKTqAskzwNrhdIelrqYYR7ZR+hGgbRW0cxyK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 22:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Jan 26 22:08:42 2026 GMT Not After : Feb 2 22:08:42 2026 GMT Subject: CN=6977e5ea-cfc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e7:ae:c2:a8:a1:0f:e1:78:94:a5:d6:a5:fe: f6:58:de:41:42:84:8f:42:df:b2:9c:af:ea:09:bb: c5:4b:e5:5a:7d:79:d1:b4:5a:12:ce:07:6c:71:65: 36:82:18:55:4d:7d:69:23:fb:46:59:66:75:79:3a: 00:01:9b:d9:ec:9b:29:e8:6c:67:63:aa:9b:8a:53: c9:be:22:6a:4a:f6:af:78:c8:7e:1f:a8:5b:d6:fd: dd:6a:68:1d:d4:2b:57:3a:39:89:f4:a9:59:f0:a1: 11:53:25:a2:b7:8f:81:8f:23:1c:cf:c7:2d:f4:7a: 4e:0e:f0:66:34:36:a5:0f:43:e2:1c:77:ed:fb:b1: ed:4f:43:86:fd:de:bf:aa:4b:5f:76:df:26:f2:e0: 8f:b6:d5:d3:cd:a3:f4:4f:ff:ec:71:48:a1:af:1a: 33:ae:5a:89:f4:18:01:52:bc:67:d3:50:a1:4f:9c: f6:e4:21:ee:65:5b:da:33:b0:c9:a0:b0:0a:4f:00: b6:6e:14:87:87:2f:c2:1c:93:7d:89:4a:94:f3:63: 4e:34:22:2c:75:a4:0a:90:ed:5b:47:1e:84:cd:61: 8c:c8:e5:50:8d:51:75:cd:f4:38:d5:21:12:a1:c7: 7a:24:47:64:ec:2f:88:ab:5c:b0:2f:df:5e:66:e1: 8d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:94:15:DC:3D:C8:BE:D4:B2:A6:20:90:54:F4:F8:8F:CF:E5:AF:37 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:62:41:7e:2f:55:e3:f5:15:c4:10:5a:75:4d:ac:67:de:7b: 70:11:f4:44:f3:ff:c8:15:90:50:06:57:ed:7d:cb:f6:9c:a1: 12:5e:34:7a:4e:1d:0e:1a:94:cb:ec:6b:12:68:e0:30:25:cf: a6:15:c0:92:14:44:5a:0b:37:6f:8c:8d:02:7e:7b:35:43:cf: a0:0a:52:fb:db:7b:3f:7e:7e:f2:af:1d:b9:74:62:58:22:21: 78:fc:f7:65:60:08:a4:2f:21:5c:0f:e3:90:71:1a:aa:92:2b: 99:4a:a8:f9:65:ee:9e:37:2d:ef:26:3c:8a:39:30:b9:b0:62: 8a:3f:c3:8b:f2:84:65:99:52:68:8f:2c:ad:a5:06:13:77:84: 3c:a4:16:4b:7d:cc:8d:a4:2f:33:f7:16:ee:63:26:73:75:61: f7:36:3f:64:e5:5e:aa:25:d8:de:fd:1b:6c:e0:65:8c:ce:15: 00:da:cb:e1:91:20:a5:97:26:b3:ce:19:e6:f0:d7:1a:79:f3: cd:88:f2:66:e5:3f:1c:61:db:e3:12:07:f9:9f:32:e8:6c:ef: 03:de:3d:b7:75:85:a5:58:d4:35:11:b3:98:b3:ce:2c:2e:aa: c8:54:56:cb:a4:34:ae:a0:a8:4b:56:6b:b6:15:10:66:60:30: 43:e7:7f:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjYwMTI2MjIwODQyWhcNMjYwMjAyMjIwODQyWjAYMRYwFAYD VQQDDA02OTc3ZTVlYS1jZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvueuwqihD+F4lKXWpf72WN5BQoSPQt+ynK/qCbvFS+VafXnRtFoSzgdscWU2 ghhVTX1pI/tGWWZ1eToAAZvZ7Jsp6GxnY6qbilPJviJqSvaveMh+H6hb1v3damgd 1CtXOjmJ9KlZ8KERUyWit4+BjyMcz8ct9HpODvBmNDalD0PiHHft+7HtT0OG/d6/ qktfdt8m8uCPttXTzaP0T//scUihrxozrlqJ9BgBUrxn01ChT5z25CHuZVvaM7DJ oLAKTwC2bhSHhy/CHJN9iUqU82NONCIsdaQKkO1bRx6EzWGMyOVQjVF1zfQ41SES ocd6JEdk7C+Iq1ywL99eZuGNhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeUFdw9 yL7UsqYgkFT0+I/P5a83MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUYkF+L1Xj9RXEEFp1Taxn3ntwEfRE8//IFZBQBlftfcv2nKESXjR6 Th0OGpTL7GsSaOAwJc+mFcCSFERaCzdvjI0Cfns1Q8+gClL723s/fn7yrx25dGJY IiF4/PdlYAikLyFcD+OQcRqqkiuZSqj5Ze6eNy3vJjyKOTC5sGKKP8OL8oRlmVJo jyytpQYTd4Q8pBZLfcyNpC8z9xbuYyZzdWH3Nj9k5V6qJdje/Rts4GWMzhUA2svh kSCllyazzhnm8NcaefPNiPJm5T8cYdvjEgf5nzLobO8D3j23dYWlWNQ1EbOYs84s LqrIVFbLpDSuoKhLVmu2FRBmYDBD539W -----END CERTIFICATE-----Generated at Tue Jan 27 00:36:02 2026 by rpki-client