This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: bryA5n1sm1HpiOt8FoO8IE8/MbuwTqjro3pPJ2o3sRU= Subject key identifier: C8:E0:8E:69:A2:D8:56:4C:DF:F5:B3:60:86:B7:7E:E5:EA:BC:AC:AD Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 06C2 Signing time: Sat 24 Jan 2026 21:31:32 +0000 Manifest this update: Sat 24 Jan 2026 21:31:32 +0000 Manifest next update: Sat 31 Jan 2026 21:31:32 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: /fNczgPfjQWwkguveMPH6QX/Xp/49n95vRUBcPppvDk=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Jan 24 21:31:32 2026 GMT Not After : Jan 31 21:31:32 2026 GMT Subject: CN=69753a34-44eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:29:89:b2:29:d3:1d:d5:b0:7a:66:8f:92:c8: d1:c3:62:c8:f8:67:46:3e:2f:72:3f:09:20:19:10: 36:d4:57:69:58:f8:67:72:e3:13:66:f4:29:a5:bb: aa:84:bd:72:7c:5a:64:45:9b:32:83:13:56:11:3f: 76:4b:58:4d:e8:77:21:c7:60:f6:98:cf:78:7c:2b: 2e:d8:3b:a1:1f:d5:29:9d:08:3c:ed:2c:03:52:d5: 30:08:c8:8f:2c:dd:80:f0:78:38:5e:84:1c:b8:62: 84:b9:d2:27:c6:41:8e:a5:05:34:a7:25:82:43:5d: 3e:23:84:9c:4b:ac:f1:27:7c:ef:68:64:be:81:c4: 2b:52:b1:d0:e3:48:fa:ac:f6:08:f7:f9:a3:05:51: f7:7f:ec:3b:2a:7a:5c:0a:86:ce:56:49:69:a9:55: a9:37:6b:0d:a8:44:7b:3b:01:d7:d5:02:3c:d6:77: 8c:e6:33:f3:42:a6:8d:2d:b8:93:6c:70:5f:a0:c8: 43:62:ce:8b:00:c1:1d:e6:02:fe:23:b7:8c:1c:79: b7:db:2f:8c:97:a5:e8:5e:90:a0:fd:0a:19:4d:c1: 5f:98:7d:d3:e7:63:ca:1d:26:87:69:4a:94:e6:80: 91:47:18:d2:54:4f:c6:83:08:bf:52:b7:de:0d:51: 37:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E0:8E:69:A2:D8:56:4C:DF:F5:B3:60:86:B7:7E:E5:EA:BC:AC:AD X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:1d:fb:ec:e6:29:52:f5:5a:84:50:09:69:5b:c2:fc:ac:27: 0a:41:2d:7b:d7:c3:6c:ef:79:36:69:0a:cf:87:74:6c:3e:06: 7b:96:cc:d7:5b:92:66:e8:69:e7:4b:2f:7e:ea:cc:58:65:31: b4:38:7c:4d:ee:7f:23:12:62:fb:9e:f1:2c:5f:0f:e6:63:cd: 8d:92:fc:16:c1:10:97:1d:81:d3:98:e1:de:cd:f7:98:b4:f1: c3:9f:b0:d9:df:da:5f:61:4c:f4:bf:43:9f:45:fb:8f:37:2c: 8f:98:ae:35:f2:40:c8:04:e2:bd:5b:14:f4:48:19:38:e3:ac: ae:4a:a4:c5:bf:be:a9:20:db:60:ca:17:fe:cd:b0:9e:b3:82: 8f:f2:9b:7b:b9:e9:55:59:28:a1:8b:e3:19:1e:ef:cb:2a:57: 19:c3:18:c0:3d:26:c2:c9:24:5f:1c:6c:a5:b1:42:8c:77:a6: e8:b0:00:9a:3c:3e:6d:69:7a:69:ed:92:9a:c2:80:57:86:8e: 59:af:87:1c:64:5e:50:a3:cd:3d:81:e3:f0:5b:0a:8a:17:31: 6e:cd:5d:f8:a6:c9:f4:b3:76:9d:de:19:76:a4:12:3e:1e:09: 43:a5:e1:f4:ba:8d:4c:a1:b0:b4:fa:8e:8e:4c:68:2d:29:24: 19:df:60:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjYwMTI0MjEzMTMyWhcNMjYwMTMxMjEzMTMyWjAYMRYwFAYD VQQDDA02OTc1M2EzNC00NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzimJsinTHdWwemaPksjRw2LI+GdGPi9yPwkgGRA21FdpWPhncuMTZvQppbuq hL1yfFpkRZsygxNWET92S1hN6Hchx2D2mM94fCsu2DuhH9UpnQg87SwDUtUwCMiP LN2A8Hg4XoQcuGKEudInxkGOpQU0pyWCQ10+I4ScS6zxJ3zvaGS+gcQrUrHQ40j6 rPYI9/mjBVH3f+w7KnpcCobOVklpqVWpN2sNqER7OwHX1QI81neM5jPzQqaNLbiT bHBfoMhDYs6LAMEd5gL+I7eMHHm32y+Ml6XoXpCg/QoZTcFfmH3T52PKHSaHaUqU 5oCRRxjSVE/Ggwi/UrfeDVE3rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjgjmmi 2FZM3/WzYIa3fuXqvKytMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxHfvs5ilS9VqEUAlpW8L8rCcKQS1718Ns73k2aQrPh3RsPgZ7lszX W5Jm6GnnSy9+6sxYZTG0OHxN7n8jEmL7nvEsXw/mY82NkvwWwRCXHYHTmOHezfeY tPHDn7DZ39pfYUz0v0OfRfuPNyyPmK418kDIBOK9WxT0SBk446yuSqTFv76pINtg yhf+zbCes4KP8pt7uelVWSihi+MZHu/LKlcZwxjAPSbCySRfHGylsUKMd6bosACa PD5taXpp7ZKawoBXho5Zr4ccZF5Qo809gePwWwqKFzFuzV34psn0s3ad3hl2pBI+ HglDpeH0uo1MobC0+o6OTGgtKSQZ32DC -----END CERTIFICATE-----Generated at Sun Jan 25 10:54:24 2026 by rpki-client