This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: 0cM5tKWcS+vTT1f9dnVvJcHlLpOABBNwHM39Y2j1FOI= Subject key identifier: 22:F1:84:3E:E9:57:F3:EB:7E:ED:02:2D:89:60:91:3F:FB:54:4C:8F Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: C4 Signing time: Sun 25 Jan 2026 05:03:04 +0000 Manifest this update: Sun 25 Jan 2026 05:03:03 +0000 Manifest next update: Sun 01 Feb 2026 05:03:03 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: m+eetAZG16qXNvoLUH2Ebl44/cEaSNWPuH2Tu9tUVSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: Jan 25 05:03:03 2026 GMT Not After : Feb 1 05:03:03 2026 GMT Subject: CN=6975a408-b773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3c:54:3e:01:0a:27:a9:67:0f:9d:89:e1:c5: a4:55:3b:2d:49:8c:06:b1:f6:d8:cd:27:5a:d6:44: 59:57:1f:f5:74:b9:8f:20:c2:40:19:11:36:d3:ef: f1:d5:43:ba:32:dd:42:ae:f6:5d:2c:2c:99:3a:ca: 35:f2:f5:b4:37:1c:98:c2:c5:ef:4a:7c:37:17:f3: d0:7c:18:de:f6:61:e8:96:79:57:3b:ed:b2:4e:f4: 75:a7:b7:b3:9b:4f:0a:43:4a:d2:e2:20:37:d1:2c: 0c:9b:d9:cb:46:e7:9e:b5:3b:f9:db:6d:13:7c:e8: ac:37:ae:31:7b:0e:e6:e7:f2:fb:11:f2:2b:ee:9a: b2:46:d1:09:ef:5f:94:75:7d:9f:a2:36:07:69:21: c6:99:ce:a6:34:74:00:19:0a:1c:ed:bb:ec:87:3b: e0:48:d8:44:19:ab:35:e0:a8:0d:5d:42:1f:28:d6: ec:3f:7f:b7:f3:66:87:3d:44:33:5b:77:35:d8:4b: 93:de:a3:46:33:d0:38:b3:e2:f3:69:80:ba:8b:d4: e7:7a:3d:16:a9:4a:29:ee:22:72:38:3d:a6:c3:ee: fb:46:ce:b9:3b:9e:03:56:f6:aa:3a:50:46:d3:28: 8d:b8:69:f0:63:2c:6e:9c:9d:66:21:3f:23:75:7a: ea:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F1:84:3E:E9:57:F3:EB:7E:ED:02:2D:89:60:91:3F:FB:54:4C:8F X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:25:2a:34:79:3d:70:26:e9:45:3c:36:77:4a:1b:01:d6:aa: 12:e4:dc:4f:75:ac:37:c0:36:9d:20:68:71:18:a1:21:b3:eb: a8:8c:3a:14:44:62:c6:88:df:6d:28:5e:fe:2d:d0:c1:5e:d8: a7:c8:45:43:95:b1:11:1e:87:87:34:7a:a4:e9:73:ec:f6:6d: 77:0e:65:d5:da:8a:7e:72:c5:70:f9:94:51:cc:8f:da:4d:8d: a0:4a:a4:41:41:5c:54:76:14:46:7f:ee:fd:d3:50:ff:af:d8: ee:63:94:98:47:52:2a:b3:23:93:b0:9b:6e:dc:c8:84:74:9d: 24:a2:85:c6:b0:32:54:5a:1d:cb:bc:bd:07:be:31:fc:b2:33: 63:c8:8e:ff:4d:9b:e6:a6:3a:1d:56:99:34:27:34:d8:b7:cd: 0e:b0:3a:d8:33:e2:6e:c5:9f:66:1c:6f:08:48:88:44:75:6a: f0:28:cc:3e:0e:95:6a:d1:d3:7e:b6:72:ba:97:0b:21:08:3d: c7:10:d0:d7:05:70:12:06:b7:16:49:a8:c7:ce:ff:f3:f9:82: 38:2d:e0:0f:a8:a6:b8:5a:b1:7b:d6:11:ca:22:37:46:d2:17: ea:52:ce:b6:3b:ac:22:d1:28:07:f6:54:46:2d:08:54:9b:d4: c6:de:ee:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxMjUxMTAvBgNVBAUTKDAxRUQ4NDFGQjk1MUFBRkEyNTkxODBFRjkyOTlFNEQz NkZERjdDM0QwHhcNMjYwMTI1MDUwMzAzWhcNMjYwMjAxMDUwMzAzWjAYMRYwFAYD VQQDDA02OTc1YTQwOC1iNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjxUPgEKJ6lnD52J4cWkVTstSYwGsfbYzSda1kRZVx/1dLmPIMJAGRE20+/x 1UO6Mt1CrvZdLCyZOso18vW0NxyYwsXvSnw3F/PQfBje9mHolnlXO+2yTvR1p7ez m08KQ0rS4iA30SwMm9nLRueetTv5220TfOisN64xew7m5/L7EfIr7pqyRtEJ71+U dX2fojYHaSHGmc6mNHQAGQoc7bvshzvgSNhEGas14KgNXUIfKNbsP3+382aHPUQz W3c12EuT3qNGM9A4s+LzaYC6i9Tnej0WqUop7iJyOD2mw+77Rs65O54DVvaqOlBG 0yiNuGnwYyxunJ1mIT8jdXrq0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLxhD7p V/Prfu0CLYlgkT/7VEyPMB8GA1UdIwQYMBaAFAHthB+5Uar6JZGA75KZ5NNv33w9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDEyNS9GRTc3OEVDOEND MTAxMUVGODczOTZBNkVDNEY5QUUwMi9BZTJFSDdsUnF2b2xrWUR2a3BuazAyX2Zm RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDEyNS9GRTc3OEVDOENDMTAxMUVGODczOTZBNkVDNEY5QUUwMi9BZTJFSDdsUnF2 b2xrWUR2a3BuazAyX2ZmRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPJSo0eT1wJulFPDZ3ShsB1qoS5NxPdaw3wDadIGhxGKEhs+uojDoU RGLGiN9tKF7+LdDBXtinyEVDlbERHoeHNHqk6XPs9m13DmXV2op+csVw+ZRRzI/a TY2gSqRBQVxUdhRGf+7901D/r9juY5SYR1IqsyOTsJtu3MiEdJ0kooXGsDJUWh3L vL0HvjH8sjNjyI7/TZvmpjodVpk0JzTYt80OsDrYM+JuxZ9mHG8ISIhEdWrwKMw+ DpVq0dN+tnK6lwshCD3HENDXBXASBrcWSajHzv/z+YI4LeAPqKa4WrF71hHKIjdG 0hfqUs62O6wi0SgH9lRGLQhUm9TG3u5k -----END CERTIFICATE-----Generated at Sun Jan 25 17:02:22 2026 by rpki-client