This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: zrTGQ2Kn0s88HWTdTCDtL51sUao1kGMOLJWwDNrDBFU= Subject key identifier: 22:41:D5:B1:9F:37:2A:70:1C:0A:9D:87:7F:0A:20:17:4A:BF:A3:D7 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0C80 Signing time: Sat 24 Jan 2026 17:33:12 +0000 Manifest this update: Sat 24 Jan 2026 17:33:12 +0000 Manifest next update: Sat 31 Jan 2026 17:33:12 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: l2KQc2LVeexH6VPbvWBp2D9MK1Pm5PwtuWWHSFO/5wo=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: QRoywFWHXAug9pKBi9YxGY/9TL/+S30Eoh/rpvCNFc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Jan 24 17:33:12 2026 GMT Not After : Jan 31 17:33:12 2026 GMT Subject: CN=69750258-b7a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:9b:7d:7e:f1:ac:ce:4d:a7:e5:27:cf:d6: 1c:f0:cb:bf:ec:7d:1b:5d:88:fd:6c:bf:9d:f5:3d: ee:19:db:8d:2c:7f:9c:bf:e5:2a:0a:94:46:34:5a: db:47:f5:d7:54:b7:d6:82:3c:b7:8b:0d:65:33:9a: 80:27:d5:05:e8:d0:00:6a:b0:ab:cc:4a:58:6f:9e: 6c:0f:dc:29:7d:9a:18:37:de:7d:7d:2d:f3:67:fd: 81:41:51:ea:cb:a4:9b:4b:f4:06:0f:ae:19:95:73: 8e:e4:d5:64:2d:9f:24:3e:6f:81:4c:7c:73:cf:73: 65:84:96:c0:d7:45:ec:62:41:62:d9:c0:c8:11:5d: d6:63:38:2e:0b:ef:bc:0d:ea:5a:a6:5c:b7:72:13: cf:ac:d4:05:6f:4a:1f:4d:f5:c0:00:35:16:58:0a: 71:5c:6e:73:c7:b7:43:69:3c:db:c4:58:94:b1:cd: 45:19:9e:a8:2d:01:87:94:26:29:29:5e:12:5e:a9: 69:37:96:c8:64:16:9f:b2:92:e1:50:5f:af:24:a5: 24:43:c3:5d:b1:3a:a1:db:25:68:3a:1c:d0:43:b8: f3:b5:ce:71:c8:0d:45:b0:95:f7:c1:df:0e:ea:0f: 4b:83:c5:af:34:6d:8c:18:f1:c8:aa:86:3e:0a:f8: 3d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:41:D5:B1:9F:37:2A:70:1C:0A:9D:87:7F:0A:20:17:4A:BF:A3:D7 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:77:44:6d:60:ac:86:eb:b6:fd:af:48:55:1b:13:6b:df:6d: db:a9:e6:13:d8:5a:74:4a:68:fe:1e:74:45:bb:0e:57:e9:20: 03:ce:9b:6d:4c:84:15:e0:20:0f:91:53:26:36:ec:92:ab:56: 40:a3:d3:54:85:54:50:08:73:eb:cc:2d:a5:e7:98:2d:94:20: ea:2e:fd:95:91:52:e3:42:bb:09:eb:2a:e0:14:50:e6:46:22: 20:84:5e:30:b8:f6:34:64:7c:78:75:67:ea:6a:21:e5:2b:27: f7:9a:7a:bd:34:cc:4d:34:80:38:e0:3c:7e:9c:13:69:a5:3b: 12:1e:a9:11:05:e4:73:34:63:ac:cb:54:c4:16:53:7a:37:69: 99:5e:a0:2b:28:2f:28:59:5b:0e:0f:7d:d4:f5:70:53:16:70: ef:43:15:88:28:14:d2:4a:07:b4:1f:d3:3e:22:2f:59:a0:15: 34:bc:c5:7d:c1:37:48:64:2c:7d:fc:76:b1:c6:37:c4:30:98: 76:f1:9a:fc:bc:dd:25:1f:ac:cf:4c:8a:55:ce:46:8c:cf:d2: d7:7f:0a:7e:40:13:88:80:01:45:d8:3d:e5:1a:39:e1:c2:c2: c3:f6:c0:69:f2:20:66:cb:23:a5:08:62:74:ec:c8:c5:6b:71: 82:7d:07:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwMTI0MTczMzEyWhcNMjYwMTMxMTczMzEyWjAYMRYwFAYD VQQDDA02OTc1MDI1OC1iN2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lCbfX7xrM5Np+Unz9Yc8Mu/7H0bXYj9bL+d9T3uGduNLH+cv+UqCpRGNFrb R/XXVLfWgjy3iw1lM5qAJ9UF6NAAarCrzEpYb55sD9wpfZoYN959fS3zZ/2BQVHq y6SbS/QGD64ZlXOO5NVkLZ8kPm+BTHxzz3NlhJbA10XsYkFi2cDIEV3WYzguC++8 Depaply3chPPrNQFb0ofTfXAADUWWApxXG5zx7dDaTzbxFiUsc1FGZ6oLQGHlCYp KV4SXqlpN5bIZBafspLhUF+vJKUkQ8NdsTqh2yVoOhzQQ7jztc5xyA1FsJX3wd8O 6g9Lg8WvNG2MGPHIqoY+Cvg96QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJB1bGf NypwHAqdh38KIBdKv6PXMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBld0RtYKyG67b9r0hVGxNr323bqeYT2Fp0Smj+HnRFuw5X6SADzptt TIQV4CAPkVMmNuySq1ZAo9NUhVRQCHPrzC2l55gtlCDqLv2VkVLjQrsJ6yrgFFDm RiIghF4wuPY0ZHx4dWfqaiHlKyf3mnq9NMxNNIA44Dx+nBNppTsSHqkRBeRzNGOs y1TEFlN6N2mZXqArKC8oWVsOD33U9XBTFnDvQxWIKBTSSge0H9M+Ii9ZoBU0vMV9 wTdIZCx9/HaxxjfEMJh28Zr8vN0lH6zPTIpVzkaMz9LXfwp+QBOIgAFF2D3lGjnh wsLD9sBp8iBmyyOlCGJ07MjFa3GCfQc+ -----END CERTIFICATE-----Generated at Sun Jan 25 09:03:15 2026 by rpki-client