This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: +a0sSSdlLyuI0WTsfTpgW7mSfp2/QRmQDcK7oM6bh8U= Subject key identifier: 52:23:17:5E:C8:7E:8C:AC:51:D5:1B:AE:60:D4:D1:05:7B:F2:40:E6 Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 0291 Signing time: Sun 25 Jan 2026 00:42:43 +0000 Manifest this update: Sun 25 Jan 2026 00:42:42 +0000 Manifest next update: Sun 01 Feb 2026 00:42:42 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: Ih3bdSy43L2ANXsmKjRwmCo6foqg7KgIJDj0jrhU/Kc=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: g8vcclbbREYqZXoYauTIQjOb/RVyOM/9dHk3sz7i1Lc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Jan 25 00:42:42 2026 GMT Not After : Feb 1 00:42:42 2026 GMT Subject: CN=69756703-b14f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:05:34:9d:48:e3:81:23:8b:d5:9b:ea:d0:50: 10:13:fd:24:c9:d8:7d:5b:d4:6f:98:b8:74:b5:62: 87:89:8b:5d:00:cf:c2:da:95:4a:31:a2:e4:43:56: 8d:ad:2b:20:dd:1f:d4:e0:18:29:f2:08:ae:c4:fb: c2:e2:7d:98:a8:a1:19:be:07:c5:2c:69:a8:21:2f: 6f:bf:5e:ee:f4:a3:50:95:98:a3:0a:93:07:a3:f4: e5:e7:0d:13:69:2d:8c:6e:b0:df:56:fa:6c:0d:d4: ba:9b:5b:36:16:0e:dd:84:e6:58:ea:01:0a:b2:d3: ed:6d:fc:ba:7c:fa:be:b1:5c:31:fd:77:48:c9:3e: 43:1d:b2:50:4c:42:d0:81:40:50:8f:f4:3f:e0:6e: 28:5d:c6:8a:d6:c9:1a:5e:c4:9e:45:ee:08:19:fb: 5e:c7:28:34:1b:f3:51:ed:36:d0:87:5b:bf:3c:3a: ff:fb:f8:4e:f7:fb:79:52:c4:cb:b3:4e:02:69:15: c0:bf:f1:63:a0:d9:2c:49:82:9d:e8:dd:02:5a:2b: 62:2a:d9:d0:90:44:c3:cd:e7:ea:5b:60:2c:88:ce: 04:13:75:ba:f6:28:09:8d:19:bd:0f:14:e9:64:be: 2b:dd:51:31:b5:eb:d5:75:ec:33:90:c9:2a:a5:bd: 4b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:23:17:5E:C8:7E:8C:AC:51:D5:1B:AE:60:D4:D1:05:7B:F2:40:E6 X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f1:c6:13:b4:ca:90:b5:b4:73:94:5c:89:34:4d:0a:51:b4: e5:79:33:4a:cc:5d:e3:85:d4:86:60:f9:ae:67:61:6f:66:68: e6:da:0f:f9:be:91:19:2a:41:6a:33:b2:f4:4d:34:21:26:64: 10:51:48:d6:47:70:69:31:41:de:41:2c:31:5c:6c:09:24:0c: 11:85:a7:3e:a1:2f:87:48:94:a0:b2:10:d0:ef:79:1e:5c:ae: 08:d5:6a:fc:6c:00:40:b5:44:88:9c:17:1b:79:62:13:62:dc: 89:e2:e7:74:9d:6c:ac:a1:6f:95:f2:ee:26:3c:a0:bc:3f:a6: 3b:a2:a9:e0:92:6e:3f:db:df:52:10:89:52:f2:84:a0:73:7a: 1c:09:2a:1d:57:5e:74:d5:7b:96:45:95:3f:66:39:d9:95:f5: 4f:d6:cc:5c:30:3c:06:57:c9:d0:15:8c:3c:c3:5d:85:d9:c0: 16:a3:c7:92:40:40:e8:6e:48:a2:3f:82:97:c7:48:d6:64:c7: 29:a7:42:61:ac:fd:c5:f0:ff:7b:4e:55:80:e1:60:57:2f:2f: ed:3a:37:2d:0a:96:cc:64:9a:0e:09:00:e4:21:b2:57:6d:ca: a2:b5:3f:c5:92:a0:6c:67:38:f8:49:2c:60:42:0a:39:56:26: 40:fe:e6:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjYwMTI1MDA0MjQyWhcNMjYwMjAxMDA0MjQyWjAYMRYwFAYD VQQDDA02OTc1NjcwMy1iMTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgU0nUjjgSOL1Zvq0FAQE/0kydh9W9RvmLh0tWKHiYtdAM/C2pVKMaLkQ1aN rSsg3R/U4Bgp8giuxPvC4n2YqKEZvgfFLGmoIS9vv17u9KNQlZijCpMHo/Tl5w0T aS2MbrDfVvpsDdS6m1s2Fg7dhOZY6gEKstPtbfy6fPq+sVwx/XdIyT5DHbJQTELQ gUBQj/Q/4G4oXcaK1skaXsSeRe4IGftexyg0G/NR7TbQh1u/PDr/+/hO9/t5UsTL s04CaRXAv/FjoNksSYKd6N0CWitiKtnQkETDzefqW2AsiM4EE3W69igJjRm9DxTp ZL4r3VExtevVdewzkMkqpb1LWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIjF17I foysUdUbrmDU0QV78kDmMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+8cYTtMqQtbRzlFyJNE0KUbTleTNKzF3jhdSGYPmuZ2FvZmjm2g/5 vpEZKkFqM7L0TTQhJmQQUUjWR3BpMUHeQSwxXGwJJAwRhac+oS+HSJSgshDQ73ke XK4I1Wr8bABAtUSInBcbeWITYtyJ4ud0nWysoW+V8u4mPKC8P6Y7oqngkm4/299S EIlS8oSgc3ocCSodV1501XuWRZU/ZjnZlfVP1sxcMDwGV8nQFYw8w12F2cAWo8eS QEDobkiiP4KXx0jWZMcpp0JhrP3F8P97TlWA4WBXLy/tOjctCpbMZJoOCQDkIbJX bcqitT/FkqBsZzj4SSxgQgo5ViZA/ub2 -----END CERTIFICATE-----Generated at Sun Jan 25 09:25:36 2026 by rpki-client