This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: +6/B9sCjOVD4UHhVQafTygTYSZcSDVoJhW2f3UwOHMs= Subject key identifier: FE:9E:59:2B:07:7A:13:30:5F:47:A4:15:88:C1:FF:48:AC:23:20:88 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0204 Signing time: Sun 25 Jan 2026 01:42:24 +0000 Manifest this update: Sun 25 Jan 2026 01:42:23 +0000 Manifest next update: Sun 01 Feb 2026 01:42:23 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: Nv4xqbBf3+P0leUMFgh1yermlrmGrw83dNsPFR6G7nM=) 2: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: Wwngk0PhTjjlaVWZbm+erGU8S4svzLGsMCsoXoSIiNE=) 3: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: Rkwm42Vb05Pye3RGHBOFC1rkc6+xEeMKra2X3IcXiEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Jan 25 01:42:23 2026 GMT Not After : Feb 1 01:42:23 2026 GMT Subject: CN=69757500-a06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ed:14:31:7a:e9:e5:11:61:9a:61:74:83:ac: 48:20:ac:ce:7b:26:5b:b5:69:1d:d7:ed:78:a1:a0: c9:89:5a:fa:96:43:a7:af:97:b4:34:66:47:bf:49: 52:63:aa:dc:e1:c6:45:71:c8:ba:71:6d:f0:d1:65: 87:f0:f6:99:80:a9:1b:02:00:88:1b:07:26:69:ec: 50:2d:c8:21:21:75:17:46:9e:6c:f6:15:99:0e:be: 2a:b0:f7:19:8f:a6:c2:ce:d6:85:c3:f2:26:9a:ac: ff:95:77:63:75:31:d3:8e:5c:d3:05:63:43:b9:5b: 2b:25:18:4e:6c:1a:c5:33:ff:a0:6f:76:58:4d:d9: 3e:4a:e0:13:44:f8:b0:d7:1f:1e:f3:73:df:1b:ea: 67:e2:2e:12:e9:f0:da:a5:3e:63:a5:26:0c:d4:66: 21:77:59:de:b1:2d:e2:63:85:7e:d1:da:48:f9:cb: 29:d7:97:60:ec:0a:13:0b:18:56:17:70:f1:71:8e: c2:23:3e:83:10:fa:2b:e6:ea:47:ec:e3:51:ae:cd: c4:f1:8a:5d:f8:c0:3e:96:39:eb:40:6f:10:48:f5: 05:0c:56:00:9a:3b:ae:21:c4:ec:67:40:bd:82:0e: 67:34:86:74:5c:44:45:84:4b:55:58:e0:cb:2c:b1: 88:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:9E:59:2B:07:7A:13:30:5F:47:A4:15:88:C1:FF:48:AC:23:20:88 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:f8:86:8f:41:76:7b:a0:ab:8b:71:90:c9:d9:19:38:5d:cd: 63:2c:5a:ed:d7:5a:a8:bd:f7:f4:86:fb:a9:d9:8b:20:0f:0d: 27:f8:66:b8:3e:ec:59:94:80:63:8c:fa:f6:b5:25:88:ff:52: a4:7c:88:c0:d2:1b:3a:54:6c:f6:83:f6:99:17:0f:a5:62:46: 0c:c2:a2:9c:3c:d1:b9:37:93:bd:28:9d:1d:90:56:e3:10:39: 91:dd:65:25:a1:66:c4:45:78:a0:86:20:1a:5c:82:7d:3e:74: d1:a6:c9:ec:14:2f:33:7a:24:b8:e6:a6:2f:8e:dc:f0:6d:e5: 20:df:59:9c:aa:35:7f:0a:3e:03:26:d0:4a:d2:61:ca:30:67: 74:4d:c3:12:a9:b6:ac:c3:94:06:b9:18:7a:a5:5c:86:95:6f: ae:2a:b4:9e:8a:db:42:44:12:b5:db:75:4a:75:6c:d0:aa:b6: 3f:4e:b3:4f:56:3e:88:d3:39:88:cb:59:7c:dd:02:7a:8f:22: e2:21:84:e6:f5:a5:16:de:82:b7:7a:b2:95:98:80:a9:e7:ec: 9a:1e:65:5d:0a:72:6d:22:61:84:92:20:1a:af:47:67:01:66: db:f2:55:ff:69:9c:e6:e2:11:b9:a7:8f:93:6a:c9:b3:e8:8a: 83:a7:67:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjYwMTI1MDE0MjIzWhcNMjYwMjAxMDE0MjIzWjAYMRYwFAYD VQQDDA02OTc1NzUwMC1hMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze0UMXrp5RFhmmF0g6xIIKzOeyZbtWkd1+14oaDJiVr6lkOnr5e0NGZHv0lS Y6rc4cZFcci6cW3w0WWH8PaZgKkbAgCIGwcmaexQLcghIXUXRp5s9hWZDr4qsPcZ j6bCztaFw/Immqz/lXdjdTHTjlzTBWNDuVsrJRhObBrFM/+gb3ZYTdk+SuATRPiw 1x8e83PfG+pn4i4S6fDapT5jpSYM1GYhd1nesS3iY4V+0dpI+csp15dg7AoTCxhW F3DxcY7CIz6DEPor5upH7ONRrs3E8Ypd+MA+ljnrQG8QSPUFDFYAmjuuIcTsZ0C9 gg5nNIZ0XERFhEtVWODLLLGIVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6eWSsH ehMwX0ekFYjB/0isIyCIMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ+IaPQXZ7oKuLcZDJ2Rk4Xc1jLFrt11qovff0hvup2YsgDw0n+Ga4 PuxZlIBjjPr2tSWI/1KkfIjA0hs6VGz2g/aZFw+lYkYMwqKcPNG5N5O9KJ0dkFbj EDmR3WUloWbERXighiAaXIJ9PnTRpsnsFC8zeiS45qYvjtzwbeUg31mcqjV/Cj4D JtBK0mHKMGd0TcMSqbasw5QGuRh6pVyGlW+uKrSeittCRBK123VKdWzQqrY/TrNP Vj6I0zmIy1l83QJ6jyLiIYTm9aUW3oK3erKVmICp5+yaHmVdCnJtImGEkiAar0dn AWbb8lX/aZzm4hG5p4+Tasmz6IqDp2cm -----END CERTIFICATE-----Generated at Sun Jan 25 12:21:15 2026 by rpki-client