This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft File: tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json) Hash identifier: HPtiGjjptIU7vcrbZVipHXzbJNizhSXOZZzkaYOtm0Y= Subject key identifier: F3:A3:12:A0:83:1A:62:FF:C7:AF:28:C7:DB:D7:5D:A3:4D:40:E1:CC Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA Certificate issuer: /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft Manifest number: 0120 Signing time: Sun 25 Jan 2026 04:00:00 +0000 Manifest this update: Sun 25 Jan 2026 03:59:59 +0000 Manifest next update: Sun 01 Feb 2026 03:59:59 +0000 Files and hashes: 1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: jXZSZdXOHnzIUg0IFBk5xxcdD1m6z74vJESjm625OBo=) 2: 6A5F29CED8A511F0B3F453F094D3641D.roa (hash: V4JYvS6vIh92au5uufnZnSFxlfzupkzvK15Gc19h2ao=) 3: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: piBG26jjxocqk1EfDzKmzUArtL5VT+oZB8alGAtK9pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Validity Not Before: Jan 25 03:59:59 2026 GMT Not After : Feb 1 03:59:59 2026 GMT Subject: CN=6975953f-34d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:77:10:43:fe:4c:74:58:ca:40:92:77:b3:b0: 5e:20:87:d7:97:6f:54:e0:29:3a:63:9f:d6:58:32: 2f:60:f7:7b:5b:78:49:b5:22:66:84:d1:2a:e0:ed: 4d:9d:28:ed:8c:01:46:b9:dc:06:a6:7b:8a:1c:37: db:67:78:a4:b9:2c:55:4e:e2:b2:32:22:5d:4d:31: 60:dd:90:5a:b1:0b:bd:52:79:0e:cf:ca:92:d0:75: 4f:7b:1a:d8:89:bc:6b:31:5f:09:39:65:7d:53:e3: fd:40:26:55:6f:ee:54:d8:b3:7b:b8:25:eb:fa:2b: 35:bd:ed:a7:24:1f:c6:8a:97:9c:d4:b7:83:d1:af: 21:43:13:f1:ed:6c:5f:35:3e:70:25:7b:cf:f0:aa: 3b:e6:ff:34:9b:e7:9a:44:ef:01:64:ec:69:10:ea: 28:71:03:93:47:ce:91:7d:64:0c:40:3f:dc:25:5c: fb:58:69:62:5a:a4:29:17:fe:50:c2:77:80:0e:7b: ed:b5:84:a5:3d:e0:e7:f6:8e:6e:fb:55:02:89:e7: 2c:7b:5d:98:a6:83:60:6d:1b:17:35:6f:28:8b:0c: 2a:de:3f:fb:01:23:36:8e:f5:33:e5:9f:a4:82:45: 02:58:5b:26:82:f1:54:e9:93:42:5d:51:e2:49:52: 1c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A3:12:A0:83:1A:62:FF:C7:AF:28:C7:DB:D7:5D:A3:4D:40:E1:CC X509v3 Authority Key Identifier: keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:9d:01:74:8a:e1:be:5e:62:fe:06:2e:ec:2e:fb:63:ae:78: fa:10:0b:1b:ae:1e:c5:9d:42:96:b7:35:1b:2e:25:d0:03:c3: c1:76:80:2f:c2:97:e6:0b:41:9d:78:e3:d9:06:80:97:57:0e: 40:db:2f:e2:c8:ed:c3:50:bc:95:33:2d:00:a5:1f:fc:84:91: b8:41:7d:a6:0c:d4:af:6d:a6:67:56:cc:26:07:0c:88:15:ad: 19:ab:ae:e8:b5:24:6c:0e:22:04:5b:ad:7b:ac:9c:ed:03:08: da:d0:d9:0d:15:46:3e:31:a4:e0:95:d4:0d:95:3b:53:7c:6c: 32:2d:a6:dc:70:0e:ff:35:e8:fb:9b:22:50:b9:99:87:a0:0f: 67:da:5b:33:26:b2:28:33:fb:c8:b7:f8:61:bf:27:1c:8a:4f: 28:dc:9d:48:9b:61:1f:37:ce:57:e7:37:9c:da:9b:d6:5e:3a: aa:b7:86:16:a1:5b:03:31:af:f8:8a:85:36:1c:07:db:ea:9c: a5:58:43:eb:cf:85:39:c0:32:22:0b:3d:87:b4:39:25:72:94: 0d:3c:da:a5:bd:8e:a5:fd:e7:98:c8:ce:28:4c:49:c7:97:09: 8f:7e:b6:9e:77:86:c7:6a:60:b0:6d:04:5e:fd:43:01:74:c9: 1b:f6:7e:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKEI0RTdFMzQ0QURDRTM2RDg0RjFGM0FCQ0NEMTRCMjRD MTUxMkJCQUEwHhcNMjYwMTI1MDM1OTU5WhcNMjYwMjAxMDM1OTU5WjAYMRYwFAYD VQQDDA02OTc1OTUzZi0zNGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXcQQ/5MdFjKQJJ3s7BeIIfXl29U4Ck6Y5/WWDIvYPd7W3hJtSJmhNEq4O1N nSjtjAFGudwGpnuKHDfbZ3ikuSxVTuKyMiJdTTFg3ZBasQu9UnkOz8qS0HVPexrY ibxrMV8JOWV9U+P9QCZVb+5U2LN7uCXr+is1ve2nJB/Gipec1LeD0a8hQxPx7Wxf NT5wJXvP8Ko75v80m+eaRO8BZOxpEOoocQOTR86RfWQMQD/cJVz7WGliWqQpF/5Q wneADnvttYSlPeDn9o5u+1UCiecse12YpoNgbRsXNW8oiwwq3j/7ASM2jvUz5Z+k gkUCWFsmgvFU6ZNCXVHiSVIcBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOjEqCD GmL/x68ox9vXXaNNQOHMMB8GA1UdIwQYMBaAFLTn40StzjbYTx86vM0UskwVEruq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8zNkE1MzBGNjQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050aFBIenE4elJTeVRCVVN1 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPZmpSSzNPTnRoUEh6cTh6UlN5VEJVU3U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8zNkE1MzBGNjQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050 aFBIenE4elJTeVRCVVN1Nm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLnQF0iuG+XmL+Bi7sLvtjrnj6EAsbrh7FnUKWtzUbLiXQA8PBdoAv wpfmC0GdeOPZBoCXVw5A2y/iyO3DULyVMy0ApR/8hJG4QX2mDNSvbaZnVswmBwyI Fa0Zq67otSRsDiIEW617rJztAwja0NkNFUY+MaTgldQNlTtTfGwyLabccA7/Nej7 myJQuZmHoA9n2lszJrIoM/vIt/hhvyccik8o3J1Im2EfN85X5zec2pvWXjqqt4YW oVsDMa/4ioU2HAfb6pylWEPrz4U5wDIiCz2HtDklcpQNPNqlvY6l/eeYyM4oTEnH lwmPfraed4bHamCwbQRe/UMBdMkb9n5g -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:20 2026 by rpki-client