This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: v11X5lr/EVzmGLrzOWx+zIiKhWYROYdwfw7iXzRmxkE= Subject key identifier: A4:8B:70:D2:A4:FB:8D:AE:8D:9B:D0:92:EE:95:7D:07:E8:60:C3:2A Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0134 Signing time: Sun 25 Jan 2026 03:46:31 +0000 Manifest this update: Sun 25 Jan 2026 03:46:30 +0000 Manifest next update: Sun 01 Feb 2026 03:46:30 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: 21eVFqo44dchKLIBmoaGYkaNeR4ZG9RV8VLr5OF+e0g=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Jan 25 03:46:30 2026 GMT Not After : Feb 1 03:46:30 2026 GMT Subject: CN=69759217-95ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a9:ce:0f:f1:d1:9d:df:9b:44:fd:e2:4f:bf: 46:3c:83:f8:36:fc:1e:09:77:cd:28:d8:12:fd:7a: 53:f8:19:b8:fb:92:c9:7a:bd:36:4f:f0:c4:88:83: 08:c0:0b:a7:f7:a0:ee:bb:c6:01:8f:f4:30:a3:b4: b3:e3:d3:a6:55:ce:e6:90:67:8e:a8:fa:bf:88:3e: 48:db:e8:3c:e9:22:92:e4:8a:f2:6f:34:af:90:e1: 8f:4b:16:9f:ab:15:73:02:0a:b0:1d:95:e6:ae:62: 65:85:00:f0:53:e4:a3:2a:a7:e1:49:c2:f2:bf:de: 7a:b5:9a:8e:4d:2f:28:e0:c1:32:17:12:cf:fb:4e: 0b:86:ea:4d:e5:24:ab:7f:d3:ab:7c:78:4f:73:be: ae:5b:cc:c0:ae:e1:63:27:a0:d7:2f:a7:c5:8b:f9: 19:b8:37:61:62:d1:e1:fb:ae:43:36:05:09:ee:5c: ff:3f:39:79:5f:5c:35:72:b9:d9:a1:b7:9e:c3:27: 8b:f3:f7:f7:8b:22:43:91:72:e4:c3:fb:91:f8:ae: f0:86:ad:ce:75:50:66:f0:17:df:4a:62:66:16:29: 20:75:1c:a0:47:75:61:52:ef:93:fe:35:5d:a1:bf: 23:06:f8:01:66:11:83:98:cd:3d:ce:eb:12:94:4a: 0f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8B:70:D2:A4:FB:8D:AE:8D:9B:D0:92:EE:95:7D:07:E8:60:C3:2A X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:44:6f:7a:cc:b3:76:0f:5e:cd:19:d5:c7:69:56:d3:47:e3: 88:46:d3:34:39:0e:02:73:17:66:2d:2f:59:a7:af:f2:b0:ee: b8:a2:c2:5c:6a:bf:39:05:c1:e4:ce:a5:fc:55:15:54:01:f6: 65:ca:78:0d:50:66:19:82:9f:74:61:dc:8b:7e:9f:d5:47:96: 0b:fa:8a:c6:d8:6f:57:46:4d:68:8b:55:08:1b:3f:c2:41:05: 28:05:ba:05:ad:14:67:58:e7:43:71:b8:82:3a:01:93:50:3f: 8d:33:f5:08:90:1e:fe:6d:95:67:30:af:87:16:bc:7c:b4:b5: 9d:94:d5:01:c0:06:6c:ab:2a:ab:b8:a3:7e:7d:0a:06:7f:14: 4b:66:e8:2b:b4:83:e8:ca:83:2b:16:48:f1:42:ec:d2:87:ee: f3:33:6f:ab:1d:78:7d:2c:d0:23:9f:39:a6:31:61:da:ae:20: 2f:10:bd:d3:c8:38:e4:6c:13:83:14:ca:c9:62:b5:0c:c6:8a: 9d:b0:28:ef:16:a7:01:f2:c9:a6:40:68:d8:a7:71:fc:60:e8: a4:b7:23:f3:e5:5e:b7:90:07:c3:08:92:f9:d3:f5:69:2d:79: 16:c2:df:77:34:14:3e:21:30:e1:d3:92:13:71:28:5b:f0:90: 44:0d:d3:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjYwMTI1MDM0NjMwWhcNMjYwMjAxMDM0NjMwWjAYMRYwFAYD VQQDDA02OTc1OTIxNy05NWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKnOD/HRnd+bRP3iT79GPIP4NvweCXfNKNgS/XpT+Bm4+5LJer02T/DEiIMI wAun96Duu8YBj/Qwo7Sz49OmVc7mkGeOqPq/iD5I2+g86SKS5IrybzSvkOGPSxaf qxVzAgqwHZXmrmJlhQDwU+SjKqfhScLyv956tZqOTS8o4MEyFxLP+04LhupN5SSr f9OrfHhPc76uW8zAruFjJ6DXL6fFi/kZuDdhYtHh+65DNgUJ7lz/Pzl5X1w1crnZ obeewyeL8/f3iyJDkXLkw/uR+K7whq3OdVBm8BffSmJmFikgdRygR3VhUu+T/jVd ob8jBvgBZhGDmM09zusSlEoPbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSLcNKk +42ujZvQku6VfQfoYMMqMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0RG96zLN2D17NGdXHaVbTR+OIRtM0OQ4CcxdmLS9Zp6/ysO64osJc ar85BcHkzqX8VRVUAfZlyngNUGYZgp90YdyLfp/VR5YL+orG2G9XRk1oi1UIGz/C QQUoBboFrRRnWOdDcbiCOgGTUD+NM/UIkB7+bZVnMK+HFrx8tLWdlNUBwAZsqyqr uKN+fQoGfxRLZugrtIPoyoMrFkjxQuzSh+7zM2+rHXh9LNAjnzmmMWHariAvEL3T yDjkbBODFMrJYrUMxoqdsCjvFqcB8smmQGjYp3H8YOiktyPz5V63kAfDCJL50/Vp LXkWwt93NBQ+ITDh05ITcShb8JBEDdPP -----END CERTIFICATE-----Generated at Sun Jan 25 17:04:19 2026 by rpki-client