This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: TQezUAuxmUd6P1qOMtuuiIj3V6f4I3CsX9A+1fNsCik= Subject key identifier: 79:29:3A:65:73:A0:AF:44:7B:24:BF:DC:AB:60:72:84:23:95:42:16 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 024E Signing time: Sun 25 Jan 2026 01:02:15 +0000 Manifest this update: Sun 25 Jan 2026 01:02:15 +0000 Manifest next update: Sun 01 Feb 2026 01:02:15 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: JhGL3cHQ/2X45H+sOQEjWuDjLhmqNa2oSMGUrB4Ghtw=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: mkay78ArXCLuTCpk5LBJHpYSqvgsay5EEQLpiKDYBb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Jan 25 01:02:15 2026 GMT Not After : Feb 1 01:02:15 2026 GMT Subject: CN=69756b97-5844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:05:cf:97:56:c4:a9:c5:6b:52:07:af:5c: 23:c6:ba:03:d7:ea:c7:77:9c:6c:c8:af:af:a7:ac: 85:cc:aa:85:36:f9:89:2d:37:33:36:55:56:fd:b1: 94:80:ed:8f:dc:f2:63:89:ab:4b:a5:f0:8a:e7:96: 29:08:08:f0:b2:78:35:7e:cc:d9:2c:12:30:69:08: 5c:7d:5d:16:bf:31:44:e2:bd:be:15:68:42:cd:3e: 57:54:94:47:c3:be:0a:bb:fe:97:78:f7:41:c9:c0: 44:fc:5b:51:54:a5:de:7a:6c:cd:e7:c7:c1:57:0c: 92:2b:0a:91:db:8b:ea:59:41:d1:86:95:a9:3c:bb: 9e:0a:ea:e7:00:b1:67:c1:ae:ef:7a:b0:0f:31:31: 01:76:f3:65:9c:eb:0d:93:9f:53:23:e1:ed:71:68: d6:0f:92:e5:2b:96:64:00:26:7c:9f:90:f8:9f:9d: 0f:77:fe:79:cc:2d:ce:00:1f:0f:d8:34:4c:ee:b3: f4:db:3e:2b:52:64:4f:8d:1b:b6:44:23:cd:e1:f0: 55:29:f1:4b:6b:a0:34:40:37:b7:03:1f:a6:d7:a8: 17:7d:0d:fc:99:5e:c1:3f:8b:00:3c:09:f3:8c:25: 53:ef:c2:1f:39:50:ae:8e:e4:a3:d1:26:4d:3e:78: e0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:29:3A:65:73:A0:AF:44:7B:24:BF:DC:AB:60:72:84:23:95:42:16 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:6b:55:0e:d1:05:6c:a7:3c:41:12:76:a2:fb:d6:2c:bc:1f: 5a:8b:52:0a:4e:74:ac:23:66:39:6d:5a:42:f6:b2:e4:19:ab: 2f:f2:37:56:be:b6:3c:91:24:0b:08:b9:d3:55:d5:1c:be:2b: ba:c8:db:2f:32:d5:df:d4:12:e5:a5:12:25:f3:99:ae:c7:11: 1b:69:c4:8f:8a:d7:e9:a9:b0:75:e8:29:82:06:7d:b1:e9:99: cb:6e:32:79:6d:4d:d7:38:d4:47:6f:57:62:47:d8:57:54:0a: 4f:84:74:aa:d9:4d:da:c9:e2:3b:80:9b:b4:05:fb:30:5e:95: 6b:e2:6e:ac:a0:57:fe:de:18:3b:a9:ef:b6:65:64:46:7a:76: ad:b8:60:5d:22:65:0f:26:c2:b1:dd:e0:ef:aa:94:69:54:b1: 14:3a:ee:38:45:61:5b:30:19:7f:30:4f:7c:45:08:32:e8:84: 85:14:5c:15:c3:c3:b8:8e:b8:2e:af:dc:9d:0d:df:d4:b0:be: 9f:12:2f:80:e2:f7:a1:e4:8d:b5:c1:26:f2:99:21:ed:f0:6d: 05:67:fe:f8:6a:b1:52:c7:f8:b7:ce:c5:df:3e:36:3d:b8:a3: 52:3d:ca:35:06:df:9e:81:68:40:83:ad:c9:12:ba:1d:ee:82: 9b:5d:1c:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwMTI1MDEwMjE1WhcNMjYwMjAxMDEwMjE1WjAYMRYwFAYD VQQDDA02OTc1NmI5Ny01ODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv38Fz5dWxKnFa1IHr1wjxroD1+rHd5xsyK+vp6yFzKqFNvmJLTczNlVW/bGU gO2P3PJjiatLpfCK55YpCAjwsng1fszZLBIwaQhcfV0WvzFE4r2+FWhCzT5XVJRH w74Ku/6XePdBycBE/FtRVKXeemzN58fBVwySKwqR24vqWUHRhpWpPLueCurnALFn wa7verAPMTEBdvNlnOsNk59TI+HtcWjWD5LlK5ZkACZ8n5D4n50Pd/55zC3OAB8P 2DRM7rP02z4rUmRPjRu2RCPN4fBVKfFLa6A0QDe3Ax+m16gXfQ38mV7BP4sAPAnz jCVT78IfOVCujuSj0SZNPnjgzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkpOmVz oK9EeyS/3KtgcoQjlUIWMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBla1UO0QVspzxBEnai+9YsvB9ai1IKTnSsI2Y5bVpC9rLkGasv8jdW vrY8kSQLCLnTVdUcviu6yNsvMtXf1BLlpRIl85muxxEbacSPitfpqbB16CmCBn2x 6ZnLbjJ5bU3XONRHb1diR9hXVApPhHSq2U3ayeI7gJu0BfswXpVr4m6soFf+3hg7 qe+2ZWRGenatuGBdImUPJsKx3eDvqpRpVLEUOu44RWFbMBl/ME98RQgy6ISFFFwV w8O4jrgur9ydDd/UsL6fEi+A4veh5I21wSbymSHt8G0FZ/74arFSx/i3zsXfPjY9 uKNSPco1Bt+egWhAg63JErod7oKbXRy1 -----END CERTIFICATE-----Generated at Sun Jan 25 04:33:51 2026 by rpki-client