This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: 7tA0f1qRxSSNxfkYeCSHlZL1pVy0S4A3gyQMXw/Ancw= Subject key identifier: 13:74:41:7D:28:78:66:E6:3D:9C:E5:CA:30:9C:89:D6:AA:1D:E8:78 Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0CE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0CDC Signing time: Sat 24 Jan 2026 17:50:18 +0000 Manifest this update: Sat 24 Jan 2026 17:50:18 +0000 Manifest next update: Sat 31 Jan 2026 17:50:18 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: zU2W9O4DW6RyGyYc0r46D6fuQlJstX9SaYjSupLRNHQ=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Jan 24 17:50:18 2026 GMT Not After : Jan 31 17:50:18 2026 GMT Subject: CN=6975065a-6670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ac:20:df:5b:2e:c0:b3:69:6e:ab:80:3f:17: 02:1b:d4:6c:b7:55:ce:53:e6:7f:c2:3f:98:f9:a1: 25:10:1a:29:0d:92:d0:2e:51:85:bf:e7:43:d3:5c: 01:ff:4d:f7:89:1f:82:84:87:15:76:2c:b5:45:a4: f6:28:9c:88:f9:b6:c1:34:34:97:b8:6c:09:d3:06: 5d:9a:07:20:df:c7:f6:da:72:26:47:f8:55:cc:b1: a0:41:33:75:90:bf:74:88:51:fe:ac:a1:65:0d:1b: 15:58:f0:01:0d:fd:59:0e:b4:bd:1b:8a:05:d1:01: b9:5c:d3:2d:cf:b7:27:4d:ce:28:a1:fc:c0:6b:8e: bb:54:ad:cb:95:66:cc:29:e4:d3:31:7a:a6:bb:4f: 44:4e:c8:6c:5c:ca:06:3c:43:0e:8b:d3:7d:1a:f4: 74:6f:f5:96:36:45:5a:a4:83:3b:ea:63:0c:f9:f6: 06:06:88:50:ab:c1:43:f5:5b:11:23:dc:c3:76:e9: 31:38:f7:d7:28:b7:3a:76:d7:47:26:9c:a6:d5:54: 18:c7:b2:f9:a6:c3:6c:c1:31:5a:15:16:2a:7f:89: 01:a2:37:d2:d6:41:f0:8b:7c:9a:2b:34:0d:99:fa: 50:d9:de:d7:b5:40:81:8c:2d:98:6a:60:8d:26:e0: 44:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:74:41:7D:28:78:66:E6:3D:9C:E5:CA:30:9C:89:D6:AA:1D:E8:78 X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e8:2d:2a:a0:c4:cf:b6:20:cb:4e:07:d3:3a:08:04:d9:bf: a4:fa:cf:36:81:be:6a:b3:cd:43:60:a4:d3:fd:cb:03:a7:f5: 7a:85:ec:2d:7a:84:0e:f5:29:1d:ad:7d:6a:7e:6c:1a:45:ee: e3:59:6d:0d:ea:dc:ed:d9:da:a8:db:18:79:95:e5:ec:c8:b2: 05:96:13:a9:2d:08:72:3e:a3:f2:0d:cc:6a:dd:d3:d2:4b:06: a5:47:da:4a:f8:50:64:51:c1:4c:39:42:50:19:75:34:67:77: 4e:4b:0c:79:1b:20:cf:a8:78:29:44:c8:5c:c7:87:af:cb:a2: ea:88:72:16:64:89:9d:45:13:f5:e9:3c:f6:59:42:db:b4:f3: 2c:5a:b3:ca:33:db:d1:36:4a:c1:f9:60:8d:1c:e3:b7:0b:53: 20:6d:ff:10:02:91:d6:46:84:0d:d9:b7:5f:80:97:84:99:af: 82:fd:3a:d3:f1:84:6d:7c:66:c5:83:db:39:dd:55:74:18:5d: 7d:38:c0:2d:c6:ee:68:2e:fc:44:57:85:b0:ba:df:a0:ea:fe: d6:ad:f7:87:7f:06:21:eb:8e:d5:75:e2:4c:96:4e:97:9b:dd: ce:6b:7a:04:5d:c1:9b:fc:5f:8b:12:d5:b9:de:a2:6e:fe:31: 66:95:04:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjYwMTI0MTc1MDE4WhcNMjYwMTMxMTc1MDE4WjAYMRYwFAYD VQQDDA02OTc1MDY1YS02NjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6wg31suwLNpbquAPxcCG9Rst1XOU+Z/wj+Y+aElEBopDZLQLlGFv+dD01wB /033iR+ChIcVdiy1RaT2KJyI+bbBNDSXuGwJ0wZdmgcg38f22nImR/hVzLGgQTN1 kL90iFH+rKFlDRsVWPABDf1ZDrS9G4oF0QG5XNMtz7cnTc4oofzAa467VK3LlWbM KeTTMXqmu09ETshsXMoGPEMOi9N9GvR0b/WWNkVapIM76mMM+fYGBohQq8FD9VsR I9zDdukxOPfXKLc6dtdHJpym1VQYx7L5psNswTFaFRYqf4kBojfS1kHwi3yaKzQN mfpQ2d7XtUCBjC2YamCNJuBEYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBN0QX0o eGbmPZzlyjCcidaqHeh4MB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm6C0qoMTPtiDLTgfTOggE2b+k+s82gb5qs81DYKTT/csDp/V6hewt eoQO9SkdrX1qfmwaRe7jWW0N6tzt2dqo2xh5leXsyLIFlhOpLQhyPqPyDcxq3dPS SwalR9pK+FBkUcFMOUJQGXU0Z3dOSwx5GyDPqHgpRMhcx4evy6LqiHIWZImdRRP1 6Tz2WULbtPMsWrPKM9vRNkrB+WCNHOO3C1Mgbf8QApHWRoQN2bdfgJeEma+C/TrT 8YRtfGbFg9s53VV0GF19OMAtxu5oLvxEV4Wwut+g6v7WrfeHfwYh647VdeJMlk6X m93Oa3oEXcGb/F+LEtW53qJu/jFmlQQz -----END CERTIFICATE-----Generated at Mon Jan 26 02:15:05 2026 by rpki-client