This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: KaTf+92BDgOeIhFumJYJ4NoY/nrm3P6S0TxBnlyWeUQ= Subject key identifier: 05:FF:3A:54:74:29:DF:75:7D:FF:38:5A:BC:C8:48:40:B4:58:AF:01 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3573 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3538 Signing time: Sat 24 Jan 2026 14:22:02 +0000 Manifest this update: Sat 24 Jan 2026 14:22:01 +0000 Manifest next update: Sat 31 Jan 2026 14:22:01 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: ZogqbBb+0h1XSKJqwxipCDRKIkzp7CEoj+CDcaA+L/o=) 2: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 6: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 9: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13683 (0x3573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Jan 24 14:22:01 2026 GMT Not After : Jan 31 14:22:01 2026 GMT Subject: CN=6974d58a-53b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:96:fb:d1:61:01:93:1d:67:9a:7d:c8:f4:53: 52:c5:9d:2e:35:e9:a5:3e:ea:17:ff:ca:4a:f4:8e: 25:3c:ce:8e:ae:f3:a7:ee:15:92:f3:b0:0d:40:60: 67:2b:d8:34:f5:52:97:b9:28:5f:ee:fc:42:1e:b5: fe:65:b5:ec:89:4c:73:9c:3b:2f:e4:3d:64:ad:8a: 92:a5:70:d8:1d:ff:97:3a:fe:3a:8c:26:a7:22:aa: 66:0e:98:0c:e2:03:99:91:1f:74:19:82:c8:87:dc: 10:ea:cf:2d:fa:a1:67:8f:56:4e:c3:df:fb:01:13: ea:f9:7d:cc:ba:c9:68:d3:d5:8a:5c:8f:5d:4f:42: 4e:e0:25:09:11:71:23:b7:00:8d:58:ee:22:42:27: 86:4f:b4:ed:02:3f:1d:47:87:bd:51:6b:c0:44:6d: f9:9a:f1:aa:c9:b4:ea:a7:5a:5a:27:69:48:dc:d7: 95:ba:fe:c7:3f:84:50:60:2d:a6:f8:c3:3f:33:a7: 7a:be:5e:fc:cb:c1:91:22:d7:e7:8a:be:78:1c:04: 2f:6e:87:f9:c7:69:18:61:52:7f:18:3d:6e:ec:c9: aa:0c:b2:e8:a0:16:1f:24:c5:f0:a1:cd:e1:7d:bf: 5d:6c:51:5e:6b:88:35:43:b9:1a:5e:e5:ca:17:4b: 4a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FF:3A:54:74:29:DF:75:7D:FF:38:5A:BC:C8:48:40:B4:58:AF:01 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:3c:7d:ca:06:6c:e3:77:20:e0:61:0a:20:91:99:46:81:70: 6f:f3:fb:c9:15:01:60:b6:83:ba:70:20:9b:e8:6e:c2:84:87: d4:e3:e4:6b:71:3f:3e:e2:f7:5a:2c:74:b5:f3:e7:96:ca:65: b7:d5:78:f2:cd:31:17:a9:4a:00:7c:b0:7c:f5:05:64:ef:c3: 44:6a:ff:74:ea:86:c3:4b:f3:a4:a5:53:0f:35:34:e9:b7:9f: 5e:da:44:b8:16:ad:63:97:9d:57:ad:8f:72:ae:23:dd:c0:35: 53:ba:b9:1d:15:5d:fb:ed:d5:1b:66:d9:00:01:d5:11:1c:f0: 54:fb:86:47:ef:9c:6e:10:85:3e:f3:c1:61:16:f9:01:0c:29: c9:7b:71:7a:3d:38:40:a7:97:37:47:57:c1:78:b7:e3:c9:5d: ab:ff:2d:0d:6a:7d:f7:4a:09:a0:4d:cc:34:e1:0c:5d:c3:60: b9:6a:45:9d:d3:71:5e:29:fd:df:59:87:d8:cd:19:32:b1:75: 4f:df:ee:6f:6b:b1:73:ef:c7:a6:33:82:dd:68:cf:2b:5c:9d: d9:29:32:c6:97:0e:6e:5a:fc:f9:ce:1c:4f:e8:68:36:35:34: 01:59:b8:a1:3d:ef:07:65:fe:c1:1d:a1:2b:45:a3:98:aa:4c: f7:de:51:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjYwMTI0MTQyMjAxWhcNMjYwMTMxMTQyMjAxWjAYMRYwFAYD VQQDDA02OTc0ZDU4YS01M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Jb70WEBkx1nmn3I9FNSxZ0uNemlPuoX/8pK9I4lPM6OrvOn7hWS87ANQGBn K9g09VKXuShf7vxCHrX+ZbXsiUxznDsv5D1krYqSpXDYHf+XOv46jCanIqpmDpgM 4gOZkR90GYLIh9wQ6s8t+qFnj1ZOw9/7ARPq+X3Muslo09WKXI9dT0JO4CUJEXEj twCNWO4iQieGT7TtAj8dR4e9UWvARG35mvGqybTqp1paJ2lI3NeVuv7HP4RQYC2m +MM/M6d6vl78y8GRItfnir54HAQvbof5x2kYYVJ/GD1u7MmqDLLooBYfJMXwoc3h fb9dbFFea4g1Q7kaXuXKF0tKHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAX/OlR0 Kd91ff84WrzISEC0WK8BMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrPH3KBmzjdyDgYQogkZlGgXBv8/vJFQFgtoO6cCCb6G7ChIfU4+Rr cT8+4vdaLHS18+eWymW31XjyzTEXqUoAfLB89QVk78NEav906obDS/OkpVMPNTTp t59e2kS4Fq1jl51XrY9yriPdwDVTurkdFV377dUbZtkAAdURHPBU+4ZH75xuEIU+ 88FhFvkBDCnJe3F6PThAp5c3R1fBeLfjyV2r/y0Nan33SgmgTcw04Qxdw2C5akWd 03FeKf3fWYfYzRkysXVP3+5va7Fz78emM4LdaM8rXJ3ZKTLGlw5uWvz5zhxP6Gg2 NTQBWbihPe8HZf7BHaErRaOYqkz33lE7 -----END CERTIFICATE-----Generated at Sun Jan 25 15:41:36 2026 by rpki-client