This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: xZfj800c3/MFWs+m/90vc8NRjCpio5YVJ50LZm5LnQU= Subject key identifier: F5:EB:87:AA:92:B3:40:03:CC:D0:58:2F:04:28:65:8B:90:5D:14:75 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0141 Signing time: Sun 25 Jan 2026 03:38:03 +0000 Manifest this update: Sun 25 Jan 2026 03:38:02 +0000 Manifest next update: Sun 01 Feb 2026 03:38:02 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: Hj0xvf012xGk2M9Q6Gvoindb0KBwIQrL4WdD4EI2zz8=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Jan 25 03:38:02 2026 GMT Not After : Feb 1 03:38:02 2026 GMT Subject: CN=6975901a-4b40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1d:4e:c2:c8:7b:6c:49:bd:82:81:39:5a:b2: 95:45:5e:2b:7c:57:ab:f2:7b:f5:50:7a:07:a2:d3: 6f:02:2b:1d:bd:a0:1c:ca:90:9f:fd:50:8c:2c:8f: 01:e3:d3:2b:97:ec:5d:6d:13:42:74:76:d3:d8:5a: 2a:50:db:b6:58:29:99:2e:2c:49:7c:f7:9d:93:3b: 96:92:be:cb:91:10:fd:2e:ed:51:a9:c6:af:31:ad: e6:fc:71:38:05:2f:84:c7:31:91:97:4c:c1:78:54: f4:06:a9:66:55:70:29:d8:8c:10:44:54:36:4d:0e: 98:63:55:35:a8:27:8e:35:0d:9f:73:c9:c4:16:ab: c6:0c:d3:90:cc:9a:f6:ed:14:5d:d2:eb:78:ae:20: 07:4d:e0:8b:df:94:75:90:e0:60:fe:d5:7f:0a:88: 0a:80:c7:26:e4:61:ac:07:75:6a:e1:c8:4a:10:55: e2:51:74:27:41:68:b3:f0:e4:d2:bf:e1:23:8c:15: de:d9:23:4a:51:d7:f6:1a:f1:a0:5b:2c:95:d2:74: 66:77:1d:ae:fd:46:b5:d5:32:a0:e8:43:a2:e3:c0: c5:12:0f:bf:26:af:52:c9:1a:f1:a4:2a:f8:67:0e: d5:e6:b3:ae:52:af:eb:c0:7f:88:bd:98:c6:46:cb: 1d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EB:87:AA:92:B3:40:03:CC:D0:58:2F:04:28:65:8B:90:5D:14:75 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e5:89:ac:84:08:9d:89:64:d4:e9:79:91:a2:9f:21:a4:7a: c5:01:a4:a5:92:b2:3a:4b:b1:24:5f:5a:5f:3d:f6:db:4e:6e: 65:10:a9:23:71:5a:35:46:8e:22:80:8a:ac:bf:d1:0d:8a:d5: 31:12:4b:f2:81:0d:ce:97:d8:f2:6e:67:1b:c9:55:cf:5f:2b: a6:f5:81:81:94:6c:4c:f6:19:cc:52:36:c9:cb:54:b4:5e:22: 2a:33:be:66:b6:72:39:3d:75:4b:f5:b5:0c:fb:0c:21:06:02: d8:23:9a:ca:5e:7b:dc:a4:59:89:9c:50:1f:39:e6:15:46:e1: 71:73:55:02:9c:ff:6d:b1:e0:17:0e:6a:7e:69:28:27:7a:71: 3c:76:6f:2a:d2:5c:de:b2:fb:b7:b5:73:61:b7:a8:70:c0:2b: 6d:c7:83:e6:12:8b:de:4d:66:98:ec:7f:74:bf:1c:10:9f:eb: d2:e5:68:11:73:5f:bb:99:f9:e0:72:f8:10:18:a9:e1:22:9a: c4:68:23:55:e3:7a:c1:33:ac:df:c5:14:91:66:eb:33:7c:a7: 8c:29:fb:fa:96:62:97:80:bf:79:92:a5:70:59:b3:37:87:cc: 6d:18:30:96:36:78:04:e8:80:6a:03:15:04:b6:73:5e:9e:61: 01:ab:4f:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjYwMTI1MDMzODAyWhcNMjYwMjAxMDMzODAyWjAYMRYwFAYD VQQDDA02OTc1OTAxYS00YjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB1Owsh7bEm9goE5WrKVRV4rfFer8nv1UHoHotNvAisdvaAcypCf/VCMLI8B 49Mrl+xdbRNCdHbT2FoqUNu2WCmZLixJfPedkzuWkr7LkRD9Lu1RqcavMa3m/HE4 BS+ExzGRl0zBeFT0BqlmVXAp2IwQRFQ2TQ6YY1U1qCeONQ2fc8nEFqvGDNOQzJr2 7RRd0ut4riAHTeCL35R1kOBg/tV/CogKgMcm5GGsB3Vq4chKEFXiUXQnQWiz8OTS v+EjjBXe2SNKUdf2GvGgWyyV0nRmdx2u/Ua11TKg6EOi48DFEg+/Jq9SyRrxpCr4 Zw7V5rOuUq/rwH+IvZjGRssdowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXrh6qS s0ADzNBYLwQoZYuQXRR1MB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS5YmshAidiWTU6XmRop8hpHrFAaSlkrI6S7EkX1pfPfbbTm5lEKkj cVo1Ro4igIqsv9ENitUxEkvygQ3Ol9jybmcbyVXPXyum9YGBlGxM9hnMUjbJy1S0 XiIqM75mtnI5PXVL9bUM+wwhBgLYI5rKXnvcpFmJnFAfOeYVRuFxc1UCnP9tseAX Dmp+aSgnenE8dm8q0lzesvu3tXNht6hwwCttx4PmEoveTWaY7H90vxwQn+vS5WgR c1+7mfngcvgQGKnhIprEaCNV43rBM6zfxRSRZuszfKeMKfv6lmKXgL95kqVwWbM3 h8xtGDCWNngE6IBqAxUEtnNenmEBq08I -----END CERTIFICATE-----Generated at Sun Jan 25 09:54:07 2026 by rpki-client