This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: weZp8X/7OBj/E859G0FkukQrJLOI9Pifl50x1B9xRj4= Subject key identifier: A2:92:D0:31:96:AD:21:45:D1:CF:C3:2B:EC:35:7B:A0:AD:0F:FC:81 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 1117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10FC Signing time: Sat 24 Jan 2026 16:59:26 +0000 Manifest this update: Sat 24 Jan 2026 16:59:25 +0000 Manifest next update: Sat 31 Jan 2026 16:59:25 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: Mw4jLLeU9/jr/IYpSyaR8jW0uIqpJOVBa5h3HEuhtJU=) 2: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) 3: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 4: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4375 (0x1117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Jan 24 16:59:25 2026 GMT Not After : Jan 31 16:59:25 2026 GMT Subject: CN=6974fa6d-e10a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ed:fd:28:ac:3a:c6:94:4a:5c:a8:cf:3b:d5: 3e:a6:82:6f:c7:07:3a:f3:22:31:d4:17:9c:94:09: 7c:2a:79:f7:dc:6f:be:67:1b:bc:a0:af:a3:4e:71: 86:41:9e:14:56:0a:d8:37:71:7b:70:d1:21:92:db: f8:c8:a0:2a:8b:a0:91:35:c3:be:67:a8:3c:17:43: f8:10:96:df:5e:05:94:21:6d:e5:19:44:5b:a0:3f: 7c:f8:42:3f:b6:af:5a:85:e7:40:75:43:81:be:f2: 96:27:fb:91:14:68:50:39:a2:02:68:b4:f3:8d:43: 6e:60:87:33:61:2c:d9:61:5b:3f:27:a0:48:e1:7b: 18:d4:66:32:db:3b:41:07:0d:8e:65:79:1e:8c:3e: ee:73:f1:9b:b1:6c:76:1e:a3:03:e5:36:49:6b:91: a3:03:a7:0f:ca:47:8c:7e:5b:55:41:fa:05:46:42: 75:92:64:d4:64:68:f4:d3:c5:33:93:bf:a4:21:ec: c4:7d:55:44:b5:da:76:bb:82:45:d9:b8:78:a9:30: 7c:f0:79:2f:46:d8:19:95:c2:d8:91:78:cb:d0:c6: dd:1c:f0:59:48:73:e4:25:a8:1b:69:f9:8f:bc:e1: 2c:b4:ed:1e:28:b3:8b:97:9e:d5:c0:2e:bf:52:de: da:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:92:D0:31:96:AD:21:45:D1:CF:C3:2B:EC:35:7B:A0:AD:0F:FC:81 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:12:ed:7c:ff:8e:fa:55:aa:5b:cc:b1:3e:8a:5a:14:44:dc: 05:fe:a4:56:30:09:d1:c1:6e:29:8c:ce:bc:0c:78:39:85:5f: e2:8a:14:7a:ca:c1:d2:c9:01:75:ce:8b:93:33:94:fd:88:fb: 50:84:f0:0d:43:5b:3b:88:1c:9e:44:00:0a:d7:b8:24:ea:8f: 07:86:a9:30:71:1f:64:57:5d:57:f4:b5:6f:f3:59:fd:4c:9d: 2d:fc:57:2c:45:e5:d1:66:0a:a5:6a:5b:e1:a3:e7:07:e8:d3: d4:82:f8:30:ed:01:6f:fe:74:c3:9f:45:c2:b5:25:56:f2:57: 0c:6d:ee:c8:23:a7:ad:e1:f0:ef:e0:9d:69:9c:4b:81:23:6b: 47:02:ed:64:59:68:2e:49:8e:69:a0:5a:ef:5d:5e:9a:86:0b: 60:fc:74:9f:11:4f:46:9c:43:16:2f:cc:49:59:7b:da:3b:82: 2c:92:84:79:82:79:1d:ba:4a:d9:9a:9d:c4:d3:8b:b3:d8:3f: 6d:b5:f6:82:44:9f:52:79:5c:cc:4a:0f:be:3c:59:af:a1:8a: dc:39:47:47:76:db:19:8b:0a:4b:61:0e:48:4d:42:4f:8b:05: 96:bc:67:1f:df:47:0c:52:43:c7:ee:0a:82:f7:1d:86:1c:34: fa:04:8c:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjYwMTI0MTY1OTI1WhcNMjYwMTMxMTY1OTI1WjAYMRYwFAYD VQQDDA02OTc0ZmE2ZC1lMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmO39KKw6xpRKXKjPO9U+poJvxwc68yIx1BeclAl8Knn33G++Zxu8oK+jTnGG QZ4UVgrYN3F7cNEhktv4yKAqi6CRNcO+Z6g8F0P4EJbfXgWUIW3lGURboD98+EI/ tq9ahedAdUOBvvKWJ/uRFGhQOaICaLTzjUNuYIczYSzZYVs/J6BI4XsY1GYy2ztB Bw2OZXkejD7uc/GbsWx2HqMD5TZJa5GjA6cPykeMfltVQfoFRkJ1kmTUZGj008Uz k7+kIezEfVVEtdp2u4JF2bh4qTB88HkvRtgZlcLYkXjL0MbdHPBZSHPkJagbafmP vOEstO0eKLOLl57VwC6/Ut7arQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKS0DGW rSFF0c/DK+w1e6CtD/yBMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVEu18/476VapbzLE+iloURNwF/qRWMAnRwW4pjM68DHg5hV/iihR6 ysHSyQF1zouTM5T9iPtQhPANQ1s7iByeRAAK17gk6o8HhqkwcR9kV11X9LVv81n9 TJ0t/FcsReXRZgqlalvho+cH6NPUgvgw7QFv/nTDn0XCtSVW8lcMbe7II6et4fDv 4J1pnEuBI2tHAu1kWWguSY5poFrvXV6ahgtg/HSfEU9GnEMWL8xJWXvaO4IskoR5 gnkdukrZmp3E04uz2D9ttfaCRJ9SeVzMSg++PFmvoYrcOUdHdtsZiwpLYQ5ITUJP iwWWvGcf30cMUkPH7gqC9x2GHDT6BIyk -----END CERTIFICATE-----Generated at Sun Jan 25 09:21:24 2026 by rpki-client