This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: qTa1AJNZU4pAtvZK5vB5iLpvwjQJ3sctJcEPXPhRtsY= Subject key identifier: 53:3D:2A:15:86:EF:A4:F6:A3:30:40:13:0E:2A:CF:77:E0:22:C4:AD Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 07C0 Signing time: Sat 24 Jan 2026 20:43:33 +0000 Manifest this update: Sat 24 Jan 2026 20:43:33 +0000 Manifest next update: Sat 31 Jan 2026 20:43:33 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: O6xeeFWbeRUYLi1mpl65o3RgHh0YCIxLjABBxIbOfCw=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: b75OO6moLJ/LsRE3ZkAYlUImD8cqw/G/vg1FI9kPZGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Jan 24 20:43:33 2026 GMT Not After : Jan 31 20:43:33 2026 GMT Subject: CN=69752ef5-fc40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9c:78:af:67:eb:f1:ce:35:1e:53:f2:2e:ae: f6:04:3b:16:ee:3f:1f:28:5e:c4:1d:32:39:b5:24: c4:dc:cd:e5:a2:c3:e0:b2:ce:9f:19:76:79:23:77: fe:b4:c3:6b:21:9f:1e:00:05:a1:84:f3:75:7c:d1: 70:c4:6f:9c:a8:eb:3e:1d:aa:d7:12:b1:c2:60:7b: a5:d3:ce:f3:ac:94:e6:4e:2f:58:fe:a7:11:ad:f1: b9:8c:7e:f6:b5:a1:ca:c8:13:4f:13:64:44:0b:a0: ae:8e:90:f7:70:0d:83:d7:96:19:cd:f8:3a:5b:a8: 68:ea:09:6f:cc:21:60:49:c2:d1:fb:f4:57:38:a4: ab:71:c0:66:6b:50:f5:b0:52:69:4a:e9:50:0f:7f: c1:b3:62:b7:fd:6c:a3:e8:5a:27:1b:58:6f:01:af: 20:d5:da:b7:9a:0f:45:43:9b:00:0f:8f:87:57:89: 1f:44:2f:ee:43:3c:91:aa:69:f1:7b:09:3c:dc:e5: da:cd:eb:86:59:1b:66:1c:39:2f:8c:6e:04:fb:9c: f8:ca:cb:d2:f5:6b:b7:43:48:0a:47:99:34:e6:3f: 7a:9b:ac:1a:74:3f:ac:a3:64:c0:11:f5:64:94:c9: dd:3c:cf:58:77:8c:08:17:51:28:2f:c3:48:14:f7: d9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3D:2A:15:86:EF:A4:F6:A3:30:40:13:0E:2A:CF:77:E0:22:C4:AD X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:57:3d:0d:4e:bd:ad:f3:89:cf:94:55:5d:53:92:b4:c6:e2: 0f:c4:8e:08:69:4c:42:88:ae:1f:23:a6:aa:51:27:bc:bb:25: 43:00:7a:fc:c5:79:fd:ed:f9:31:c0:70:5b:51:b2:c6:9e:bb: 65:c9:25:36:00:50:76:cd:f2:48:79:38:ea:89:d5:46:bb:8c: 9d:d8:7a:cb:e4:52:e4:a4:00:5b:1f:1c:37:1a:37:55:d1:2c: 06:65:cd:3d:f0:0d:3b:fc:fd:9b:99:4a:fe:18:af:4f:a1:47: 3b:8a:14:34:60:1e:81:2b:2d:56:af:5a:bb:71:b6:e6:c7:25: 18:a3:0f:4b:36:63:a9:3c:47:04:4e:ec:2f:13:66:9a:5e:e2: 66:ff:15:66:d4:e7:01:94:f5:a3:9a:22:1d:60:bb:5e:50:87: 51:8d:74:2f:b3:bb:9a:cf:98:a3:40:8a:5a:af:27:2e:26:55: 59:68:2f:6d:c3:9c:5a:e8:be:22:0b:97:2b:88:a8:ca:9c:a3: 5a:c7:14:b9:6a:5a:68:f8:a1:84:48:99:22:51:b9:c7:63:49: 16:55:c2:72:45:d5:93:04:a7:4d:7e:5e:34:d0:7a:14:dc:6f: 2c:e7:54:19:be:b2:1e:9c:6d:e0:43:81:6d:37:5e:7f:fd:98: 4c:58:09:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjYwMTI0MjA0MzMzWhcNMjYwMTMxMjA0MzMzWjAYMRYwFAYD VQQDDA02OTc1MmVmNS1mYzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZx4r2fr8c41HlPyLq72BDsW7j8fKF7EHTI5tSTE3M3losPgss6fGXZ5I3f+ tMNrIZ8eAAWhhPN1fNFwxG+cqOs+HarXErHCYHul087zrJTmTi9Y/qcRrfG5jH72 taHKyBNPE2REC6CujpD3cA2D15YZzfg6W6ho6glvzCFgScLR+/RXOKSrccBma1D1 sFJpSulQD3/Bs2K3/Wyj6FonG1hvAa8g1dq3mg9FQ5sAD4+HV4kfRC/uQzyRqmnx ewk83OXazeuGWRtmHDkvjG4E+5z4ysvS9Wu3Q0gKR5k05j96m6wadD+so2TAEfVk lMndPM9Yd4wIF1EoL8NIFPfZdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM9KhWG 76T2ozBAEw4qz3fgIsStMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFVz0NTr2t84nPlFVdU5K0xuIPxI4IaUxCiK4fI6aqUSe8uyVDAHr8 xXn97fkxwHBbUbLGnrtlySU2AFB2zfJIeTjqidVGu4yd2HrL5FLkpABbHxw3GjdV 0SwGZc098A07/P2bmUr+GK9PoUc7ihQ0YB6BKy1Wr1q7cbbmxyUYow9LNmOpPEcE TuwvE2aaXuJm/xVm1OcBlPWjmiIdYLteUIdRjXQvs7uaz5ijQIparycuJlVZaC9t w5xa6L4iC5criKjKnKNaxxS5alpo+KGESJkiUbnHY0kWVcJyRdWTBKdNfl400HoU 3G8s51QZvrIenG3gQ4FtN15//ZhMWAmg -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:04 2026 by rpki-client