This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json) Hash identifier: +g12A29jkqitJ58jlirOmP99ziL7oA9Y/Yrc5MTkHFI= Subject key identifier: 80:ED:AA:95:0A:8C:D0:3F:7E:BA:C1:D5:DD:35:0D:21:E6:D3:D1:2D Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft Manifest number: 016B Signing time: Sat 17 Jan 2026 00:10:38 +0000 Manifest this update: Sat 17 Jan 2026 00:10:37 +0000 Manifest next update: Sat 24 Jan 2026 00:10:37 +0000 Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: YuJcasJ4tdm0pvuCqG4RCaYBgPfq1MzcON7U6OY1VNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 00:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85, serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Validity Not Before: Jan 17 00:10:37 2026 GMT Not After : Jan 24 00:10:37 2026 GMT Subject: CN=696ad37d-3b2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:d8:2a:e1:e7:b1:2c:f0:c0:4f:4e:fd:af: 16:e7:fa:bb:bb:3b:99:13:71:d9:14:07:98:e7:32: 3a:6e:13:e4:97:91:4b:0e:ac:53:6a:5f:8f:83:71: 37:92:eb:f3:cf:d1:f2:5a:88:5b:97:8d:44:a3:b7: 8f:70:f2:cd:6c:76:ec:03:35:d6:93:72:1f:d3:8a: 02:7c:d3:5b:db:37:ce:a9:40:d7:d2:1a:97:8b:c1: f0:5d:90:75:37:d5:cb:76:db:d1:36:85:99:72:be: 2e:90:d1:ae:b9:53:0d:bd:63:23:a4:29:1d:53:53: b7:9d:65:b9:f0:b3:16:be:5f:98:26:0d:f2:41:f1: 34:87:3d:ce:97:88:59:c7:11:e5:d4:30:b7:d1:57: 5a:d9:b4:37:4c:07:02:78:0a:eb:2c:0d:84:03:7f: 2a:be:ac:b2:95:df:4a:45:cd:10:d9:23:c7:36:c6: c1:7e:76:89:cc:7b:f0:3b:ea:38:9a:b7:c3:18:a6: 90:0d:e8:b6:eb:d0:08:37:e3:01:33:fd:10:73:9a: 98:f0:f8:45:ed:96:e7:92:fb:ca:20:1c:3f:73:2c: 6e:0b:6e:7a:0c:ea:88:65:d0:fc:b6:d3:4d:ba:1c: a5:e8:1b:b9:ed:be:8f:45:ca:a7:eb:46:6b:52:92: 75:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:ED:AA:95:0A:8C:D0:3F:7E:BA:C1:D5:DD:35:0D:21:E6:D3:D1:2D X509v3 Authority Key Identifier: keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e5:7a:05:50:25:89:b9:33:53:0f:cf:f1:49:62:51:25:a2: f6:1e:22:65:34:df:04:9a:4b:f8:17:1a:3c:13:80:c0:50:42: aa:33:8b:3b:47:bc:30:df:cc:81:64:d8:97:ca:af:9d:c6:f6: 38:85:70:6e:7c:a1:7a:bb:e7:52:74:d9:80:fc:97:75:25:31: 30:57:f2:34:21:00:5c:7e:ad:57:88:62:db:42:ec:c9:19:48: 73:a6:1c:1f:79:aa:3e:f7:7e:f9:0f:66:23:48:99:07:23:c0: ba:0e:00:c8:8c:72:03:61:b6:bf:e7:f3:52:4a:1e:18:e7:d5: 30:c9:6c:3a:48:a9:a6:7c:6e:a6:3b:de:21:39:f3:f5:9a:00: 4e:03:39:e0:d0:d5:11:30:41:94:d7:75:52:47:a5:62:b3:64: 95:a7:e2:2f:a5:75:de:78:91:fa:58:14:92:98:19:43:fd:ca: f0:12:e4:48:d8:18:e6:14:b9:f8:8b:1c:1d:11:d8:af:d7:36: 60:1e:d5:16:eb:43:be:74:b0:05:90:43:b1:c2:9a:91:dc:61: 3a:48:47:c0:2a:97:6c:09:17:c9:47:c8:fa:93:2c:70:33:e5: 20:3a:54:a7:09:9d:25:bb:47:2a:a5:88:05:f1:44:cc:26:6a: 0f:d9:cd:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDA1QTMzNkY2NDZDNjgzMzc4OUI2QUU3QzkyMDcyQjdG OTREOURDMjkwHhcNMjYwMTE3MDAxMDM3WhcNMjYwMTI0MDAxMDM3WjAYMRYwFAYD VQQDDA02OTZhZDM3ZC0zYjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPDYKuHnsSzwwE9O/a8W5/q7uzuZE3HZFAeY5zI6bhPkl5FLDqxTal+Pg3E3 kuvzz9HyWohbl41Eo7ePcPLNbHbsAzXWk3If04oCfNNb2zfOqUDX0hqXi8HwXZB1 N9XLdtvRNoWZcr4ukNGuuVMNvWMjpCkdU1O3nWW58LMWvl+YJg3yQfE0hz3Ol4hZ xxHl1DC30Vda2bQ3TAcCeArrLA2EA38qvqyyld9KRc0Q2SPHNsbBfnaJzHvwO+o4 mrfDGKaQDei269AIN+MBM/0Qc5qY8PhF7ZbnkvvKIBw/cyxuC256DOqIZdD8ttNN uhyl6Bu57b6PRcqn60ZrUpJ1FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDtqpUK jNA/frrB1d01DSHm09EtMB8GA1UdIwQYMBaAFAWjNvZGxoM3ibaufJIHK3+U2dwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS83RDg2QTIzOEM2 MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6ZUp0cTU4a2djcmY1VFoz Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JhTTI5a2JHZ3plSnRxNThrZ2NyZjVUWjNDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI4NS83RDg2QTIzOEM2MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6 ZUp0cTU4a2djcmY1VFozQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK5XoFUCWJuTNTD8/xSWJRJaL2HiJlNN8Emkv4Fxo8E4DAUEKqM4s7 R7ww38yBZNiXyq+dxvY4hXBufKF6u+dSdNmA/Jd1JTEwV/I0IQBcfq1XiGLbQuzJ GUhzphwfeao+9375D2YjSJkHI8C6DgDIjHIDYba/5/NSSh4Y59UwyWw6SKmmfG6m O94hOfP1mgBOAzng0NURMEGU13VSR6Vis2SVp+IvpXXeeJH6WBSSmBlD/crwEuRI 2BjmFLn4ixwdEdiv1zZgHtUW60O+dLAFkEOxwpqR3GE6SEfAKpdsCRfJR8j6kyxw M+UgOlSnCZ0lu0cqpYgF8UTMJmoP2c2+ -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:24 2026 by rpki-client