This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: LOtJ8XTQmjWC12BBE13Zaxk0t5GgUwSk+mCRaDHBAf8= Subject key identifier: 46:EA:BB:29:21:A2:21:F4:32:D0:A9:11:4A:48:49:71:92:84:9E:29 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 257D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 257D Signing time: Sat 24 Jan 2026 14:16:32 +0000 Manifest this update: Sat 24 Jan 2026 14:16:32 +0000 Manifest next update: Sat 31 Jan 2026 14:16:32 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: 0N0XeAFS//DRjXWa/cgkMpu4h15lu5pDHedjnk8ZAW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9597 (0x257d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Jan 24 14:16:32 2026 GMT Not After : Jan 31 14:16:32 2026 GMT Subject: CN=6974d440-a83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7c:32:43:e2:5c:9d:7d:f0:75:65:c1:79:99: 4c:dc:7b:b3:bb:ac:29:22:e7:98:15:09:b0:f9:a3: ba:3e:20:6f:d4:b5:47:c1:7f:11:30:70:d6:a7:13: be:c0:8a:38:ad:bc:aa:2c:63:f5:bf:70:ea:8a:70: ce:c1:41:65:e7:77:fd:9d:88:e4:9a:94:bd:65:f7: ce:4f:c4:32:62:35:35:99:14:98:da:7e:a8:54:56: 1c:e3:48:20:8a:15:94:14:f9:05:a7:9a:83:59:3b: 6c:bf:6d:f3:57:86:b3:78:a5:30:3e:d1:7c:b0:9f: b5:f0:5a:21:3c:8f:1c:68:33:fd:06:2f:b8:e1:cd: c6:c1:04:08:e5:d9:fe:a5:b8:be:be:02:89:ce:30: fe:10:15:a7:18:22:8b:03:62:54:3b:b0:06:b7:80: 89:79:d5:24:f7:9a:fd:e1:de:0a:d6:14:24:4a:49: 16:1b:b1:6c:c8:f3:a1:41:cf:70:89:71:50:60:c1: 06:f7:99:c6:8a:51:26:a6:1e:f6:a6:f9:b3:a8:49: 88:d3:73:f3:03:4c:76:97:96:b2:cf:d9:5e:de:10: 5b:89:f1:b0:cf:16:d7:c6:37:85:74:1f:b2:9b:0f: 95:7a:76:6f:06:31:80:25:64:10:9d:6f:59:92:ac: 2f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EA:BB:29:21:A2:21:F4:32:D0:A9:11:4A:48:49:71:92:84:9E:29 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:70:b4:57:87:1a:74:8c:e5:63:88:f2:3f:09:a8:ca:a6:58: ca:c4:b6:20:b9:e7:56:67:56:43:30:3a:6d:09:da:ac:16:f5: e3:ac:4c:f9:65:6e:2c:f7:ac:92:9d:b2:cb:06:c7:03:d4:43: f4:2d:97:86:20:d4:bf:f2:e3:5c:98:a9:c4:02:45:9b:c2:56: 23:04:fe:b4:ad:85:62:bb:d3:4d:18:d3:f1:c5:c7:2a:a3:ac: cc:33:60:99:42:74:a3:77:1f:0c:a5:a1:a6:40:e4:33:fe:d0: d1:97:16:4b:7f:d2:d7:2f:96:c7:83:27:ef:89:c4:15:6a:a0: d5:ee:59:c0:7a:02:d1:a7:4f:13:a4:ae:5b:f0:d3:de:61:af: a6:9e:d1:4a:59:67:1e:28:ad:73:ec:43:b6:16:0f:44:be:87: ef:22:0c:22:93:a5:9b:d1:d4:0d:fc:0c:ee:e9:0c:6b:6c:b5: d6:8f:82:c2:e4:c9:c5:d5:07:19:f3:ff:e5:96:16:6b:74:71: 08:72:b8:43:43:e2:2f:63:5e:b1:03:45:81:d5:cd:e5:86:33: 30:d4:08:fa:a0:2a:8a:75:17:96:01:41:8b:fb:d7:03:b7:98: 7e:d0:c2:03:40:7f:6f:ac:93:f1:4c:53:dd:4f:0d:60:9a:bf: a3:2a:77:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwMTI0MTQxNjMyWhcNMjYwMTMxMTQxNjMyWjAYMRYwFAYD VQQDDA02OTc0ZDQ0MC1hODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nwyQ+JcnX3wdWXBeZlM3Huzu6wpIueYFQmw+aO6PiBv1LVHwX8RMHDWpxO+ wIo4rbyqLGP1v3DqinDOwUFl53f9nYjkmpS9ZffOT8QyYjU1mRSY2n6oVFYc40gg ihWUFPkFp5qDWTtsv23zV4azeKUwPtF8sJ+18FohPI8caDP9Bi+44c3GwQQI5dn+ pbi+vgKJzjD+EBWnGCKLA2JUO7AGt4CJedUk95r94d4K1hQkSkkWG7FsyPOhQc9w iXFQYMEG95nGilEmph72pvmzqEmI03PzA0x2l5ayz9le3hBbifGwzxbXxjeFdB+y mw+VenZvBjGAJWQQnW9Zkqwv3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbquykh oiH0MtCpEUpISXGShJ4pMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3cLRXhxp0jOVjiPI/CajKpljKxLYguedWZ1ZDMDptCdqsFvXjrEz5 ZW4s96ySnbLLBscD1EP0LZeGINS/8uNcmKnEAkWbwlYjBP60rYViu9NNGNPxxccq o6zMM2CZQnSjdx8MpaGmQOQz/tDRlxZLf9LXL5bHgyfvicQVaqDV7lnAegLRp08T pK5b8NPeYa+mntFKWWceKK1z7EO2Fg9EvofvIgwik6Wb0dQN/Azu6QxrbLXWj4LC 5MnF1QcZ8//llhZrdHEIcrhDQ+IvY16xA0WB1c3lhjMw1Aj6oCqKdReWAUGL+9cD t5h+0MIDQH9vrJPxTFPdTw1gmr+jKne6 -----END CERTIFICATE-----Generated at Sun Jan 25 15:42:44 2026 by rpki-client