This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: Mh066qdPr3V1WrEybSaaTGVrij7saPBeSSGzNXhRNgc= Subject key identifier: CB:F6:70:2C:86:ED:40:22:E3:D8:B3:AA:98:5D:68:6A:95:06:7E:52 Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 02DB Signing time: Sun 25 Jan 2026 00:32:25 +0000 Manifest this update: Sun 25 Jan 2026 00:32:24 +0000 Manifest next update: Sun 01 Feb 2026 00:32:24 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: +BFgvNKWKidvUToyR9XKt9oUF8UfVtmMEJ1dM4Pf2x0=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: z4fSX+HgysFgztcLVSgzgNzcCLSP4fk+TSQS6+LuYQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Jan 25 00:32:24 2026 GMT Not After : Feb 1 00:32:24 2026 GMT Subject: CN=69756498-a4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3a:cf:dd:ad:c1:03:10:b1:5c:8b:a3:be:8f: 6b:57:7d:d4:42:15:0b:9d:96:e9:c8:6c:17:4c:46: 15:b5:91:61:bf:89:c5:a4:70:fa:8d:7a:c9:fb:1a: 85:c9:84:de:67:bb:e6:c0:6e:0b:3b:6b:a2:3b:0b: 8f:a0:ef:2d:ae:b8:13:d6:73:bb:e6:4c:f5:68:9f: 4b:f3:76:6f:c8:da:42:ea:0d:a6:e1:72:1a:fc:81: a7:cb:f2:7f:83:70:e8:d9:b6:11:af:b5:28:f7:b9: 76:30:33:79:ff:f6:01:53:83:b6:de:52:92:ab:35: fb:e3:78:4b:45:3b:20:54:25:32:07:a2:a6:b7:8b: 81:c0:e8:34:52:c4:81:fe:80:0a:ab:a6:a2:5d:dd: 0f:b5:a4:e4:8d:21:b0:8b:37:4c:5e:86:af:2a:eb: f4:9b:93:81:86:4f:94:b0:be:5c:08:9f:8d:49:4a: 19:df:ac:a2:aa:1c:34:13:e7:3c:a4:30:94:2f:51: 45:ce:39:33:ab:14:bf:cc:af:b6:23:96:18:0d:c6: e5:93:fd:f9:41:9c:64:fd:d2:04:2d:46:03:e1:c4: 12:69:c5:ef:4a:da:bf:f0:21:b3:4d:ab:ae:c7:d3: 2a:1e:7f:86:76:32:e5:31:9a:e0:e1:e0:fb:d9:64: 8a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F6:70:2C:86:ED:40:22:E3:D8:B3:AA:98:5D:68:6A:95:06:7E:52 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:27:02:9e:30:de:14:e0:a8:45:ee:9a:86:cc:c3:7d:0e:25: ff:10:74:3f:f8:2f:b7:40:43:62:64:b7:78:eb:75:20:44:df: 8e:64:f9:ef:48:b6:66:6f:be:6b:58:40:d4:04:75:cf:db:f8: 7d:09:df:13:52:53:cc:38:89:95:e2:6f:18:d3:ec:b1:31:22: 21:df:25:5b:ab:af:9c:91:6e:03:e7:99:ad:7d:f2:6f:61:88: 74:e8:4a:84:fd:6c:17:19:6b:ce:7b:23:be:fe:cf:b4:c7:1a: 33:93:16:33:f6:83:b3:3c:9a:91:4b:4a:23:a1:78:10:47:59: 97:f0:10:ee:fc:af:53:0f:1d:3e:2b:d6:f8:7c:26:de:a1:f3: 6e:f2:13:75:7e:e2:0d:f1:42:e6:e8:4b:d8:6c:9f:60:76:0e: e3:b2:fe:9c:e8:44:df:24:bb:c4:31:b9:aa:a5:ea:15:5b:ba: d7:4f:d9:61:32:0b:f0:ae:32:ac:6a:e1:be:35:1c:24:4a:ad: 58:78:a7:2b:68:88:e5:ea:84:f5:96:a4:9f:61:37:a0:d1:5a: 3a:f7:b6:d4:a1:44:9f:f9:c8:72:a8:0a:fe:78:1e:2d:bb:28: 9e:f3:78:31:68:23:45:50:b5:1b:1b:a2:b9:1f:19:19:9b:74: d6:24:bb:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjYwMTI1MDAzMjI0WhcNMjYwMjAxMDAzMjI0WjAYMRYwFAYD VQQDDA02OTc1NjQ5OC1hNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljrP3a3BAxCxXIujvo9rV33UQhULnZbpyGwXTEYVtZFhv4nFpHD6jXrJ+xqF yYTeZ7vmwG4LO2uiOwuPoO8trrgT1nO75kz1aJ9L83ZvyNpC6g2m4XIa/IGny/J/ g3Do2bYRr7Uo97l2MDN5//YBU4O23lKSqzX743hLRTsgVCUyB6Kmt4uBwOg0UsSB /oAKq6aiXd0PtaTkjSGwizdMXoavKuv0m5OBhk+UsL5cCJ+NSUoZ36yiqhw0E+c8 pDCUL1FFzjkzqxS/zK+2I5YYDcblk/35QZxk/dIELUYD4cQSacXvStq/8CGzTauu x9MqHn+GdjLlMZrg4eD72WSKZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMv2cCyG 7UAi49izqphdaGqVBn5SMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMJwKeMN4U4KhF7pqGzMN9DiX/EHQ/+C+3QENiZLd463UgRN+OZPnv SLZmb75rWEDUBHXP2/h9Cd8TUlPMOImV4m8Y0+yxMSIh3yVbq6+ckW4D55mtffJv YYh06EqE/WwXGWvOeyO+/s+0xxozkxYz9oOzPJqRS0ojoXgQR1mX8BDu/K9TDx0+ K9b4fCbeofNu8hN1fuIN8ULm6EvYbJ9gdg7jsv6c6ETfJLvEMbmqpeoVW7rXT9lh MgvwrjKsauG+NRwkSq1YeKcraIjl6oT1lqSfYTeg0Vo697bUoUSf+chyqAr+eB4t uyie83gxaCNFULUbG6K5HxkZm3TWJLv/ -----END CERTIFICATE-----Generated at Sun Jan 25 02:57:16 2026 by rpki-client