This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: i7I7TyqriDAZayPPQGwjQa+lgfGMEbdyPO574dJgY+Y= Subject key identifier: F7:DB:3A:31:CA:28:8D:44:45:9F:58:18:B8:D9:3A:B6:2F:9A:BC:CA Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C67 Signing time: Sat 24 Jan 2026 18:12:58 +0000 Manifest this update: Sat 24 Jan 2026 18:12:58 +0000 Manifest next update: Sat 31 Jan 2026 18:12:58 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: FN9/NGScMb2tMSqKrojuoW05m6cNz670SUUKMbVggic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Jan 24 18:12:58 2026 GMT Not After : Jan 31 18:12:58 2026 GMT Subject: CN=69750baa-5d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:53:a4:75:41:bb:94:9b:56:ac:46:86:04:f8: 32:a9:7b:93:c1:52:f1:c0:e3:35:c4:01:83:0a:e8: e3:fa:3e:dc:71:4a:32:b8:f5:ff:19:d5:39:8e:0b: c4:d6:df:24:e2:9d:6f:b8:30:32:b4:2d:7c:ff:1c: 77:62:9d:c6:03:70:42:bc:39:6d:da:e4:f3:5f:eb: 77:20:c4:b1:71:a5:f0:1d:64:6e:e6:a4:2c:6a:53: bf:0c:32:70:99:8d:98:33:3e:bb:64:c9:b1:6c:03: 0d:ee:20:ce:83:2b:04:df:d7:07:f7:97:fc:29:d2: a8:12:db:25:67:24:0d:1a:f5:59:b6:f5:c9:bc:82: a1:9e:6e:b3:53:71:78:d0:da:98:ae:c3:cd:22:6c: fd:33:52:38:0f:51:cd:19:9d:86:73:b0:ac:4b:ba: cd:e9:1b:07:9a:a9:ba:c9:98:ee:f8:ff:8c:62:42: 4a:05:b1:8d:9f:73:46:7e:04:12:dc:da:33:21:35: e1:87:e0:fb:86:31:64:7d:0d:ea:9b:e7:45:6f:ce: 3b:7f:a9:a7:40:36:86:aa:92:63:1d:70:64:ab:aa: af:ff:32:09:2f:e6:10:4a:43:53:36:13:a3:2e:0a: 6d:a5:73:d4:34:2f:e6:aa:89:28:8d:5f:38:ad:02: 7b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DB:3A:31:CA:28:8D:44:45:9F:58:18:B8:D9:3A:B6:2F:9A:BC:CA X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:39:6d:c9:c0:c4:1a:3d:df:0b:a2:be:5b:33:a7:4b:a8:13: 76:39:a0:13:be:79:85:38:35:28:7a:92:1b:08:05:15:90:d6: 51:7c:c8:d2:d8:db:75:ee:0e:4a:28:5b:70:5c:37:ca:03:95: 10:f5:23:f1:76:84:36:f3:e2:e8:99:1a:fb:95:2e:96:68:24: 72:32:67:3f:60:6d:01:53:27:b0:f6:84:b2:80:cf:3c:35:63: 33:86:a1:13:41:b7:7d:97:29:f1:54:57:a5:e3:d3:07:92:18: bc:3d:3a:2e:3f:38:a6:cb:5f:15:99:b7:f6:67:e9:c0:75:15: c4:51:cf:3a:e1:05:c9:d0:a9:1c:2a:2f:0a:08:3b:b3:81:ce: 10:2e:f7:f8:a2:47:4e:72:8e:c0:8b:11:35:a1:6e:68:6f:18: 9c:70:85:43:2e:db:66:d0:02:4e:bf:7c:73:4c:5e:62:1b:9d: 03:bc:b6:7e:74:67:8b:48:7e:34:97:c5:42:6e:ef:3e:b5:4e: 6e:ea:04:04:ca:05:af:ab:db:75:d2:e2:e4:cf:8e:72:19:7b: 67:68:e3:3a:9c:48:a1:5c:4f:ce:e6:91:fd:37:9e:79:93:d4: de:e7:3e:35:ea:56:b3:53:77:a9:df:fb:e0:30:f4:cb:63:09: f5:7d:29:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjYwMTI0MTgxMjU4WhcNMjYwMTMxMTgxMjU4WjAYMRYwFAYD VQQDDA02OTc1MGJhYS01ZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1OkdUG7lJtWrEaGBPgyqXuTwVLxwOM1xAGDCujj+j7ccUoyuPX/GdU5jgvE 1t8k4p1vuDAytC18/xx3Yp3GA3BCvDlt2uTzX+t3IMSxcaXwHWRu5qQsalO/DDJw mY2YMz67ZMmxbAMN7iDOgysE39cH95f8KdKoEtslZyQNGvVZtvXJvIKhnm6zU3F4 0NqYrsPNImz9M1I4D1HNGZ2Gc7CsS7rN6RsHmqm6yZju+P+MYkJKBbGNn3NGfgQS 3NozITXhh+D7hjFkfQ3qm+dFb847f6mnQDaGqpJjHXBkq6qv/zIJL+YQSkNTNhOj LgptpXPUNC/mqokojV84rQJ7RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfbOjHK KI1ERZ9YGLjZOrYvmrzKMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcOW3JwMQaPd8Lor5bM6dLqBN2OaATvnmFODUoepIbCAUVkNZRfMjS 2Nt17g5KKFtwXDfKA5UQ9SPxdoQ28+LomRr7lS6WaCRyMmc/YG0BUyew9oSygM88 NWMzhqETQbd9lynxVFel49MHkhi8PTouPzimy18Vmbf2Z+nAdRXEUc864QXJ0Kkc Ki8KCDuzgc4QLvf4okdOco7AixE1oW5obxiccIVDLttm0AJOv3xzTF5iG50DvLZ+ dGeLSH40l8VCbu8+tU5u6gQEygWvq9t10uLkz45yGXtnaOM6nEihXE/O5pH9N555 k9Te5z416lazU3ep3/vgMPTLYwn1fSkY -----END CERTIFICATE-----Generated at Sun Jan 25 06:19:04 2026 by rpki-client