This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft File: nxMMOdAwdvSok0-jNJXO2TfiMKs.mft (raw, json) Hash identifier: hGsa6daUKWFp3uEDab4lDFy0NaQnpb3dHbyCq+JJ4OE= Subject key identifier: 19:58:1F:EB:67:B8:C2:9D:25:50:39:CA:1D:AD:AA:EF:16:C7:81:EC Authority key identifier: 9F:13:0C:39:D0:30:76:F4:A8:93:4F:A3:34:95:CE:D9:37:E2:30:AB Certificate issuer: /CN=A91430D6/serialNumber=9F130C39D03076F4A8934FA33495CED937E230AB Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft Manifest number: 65 Signing time: Sun 25 Jan 2026 06:07:13 +0000 Manifest this update: Sun 25 Jan 2026 06:07:12 +0000 Manifest next update: Sun 01 Feb 2026 06:07:12 +0000 Files and hashes: 1: nxMMOdAwdvSok0-jNJXO2TfiMKs.crl (hash: pnzTpACXraCze4FoXovvlKX0sEPbsC2F4oaeao3pIYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.crl rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91430D6, serialNumber=9F130C39D03076F4A8934FA33495CED937E230AB Validity Not Before: Jan 25 06:07:12 2026 GMT Not After : Feb 1 06:07:12 2026 GMT Subject: CN=6975b311-7c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:37:bb:b7:f9:c3:96:4f:f4:ac:cd:9f:87:0d: 6d:4f:12:09:17:0f:5e:75:9a:67:ff:ab:b3:e5:90: d5:a5:1d:00:fe:8e:cb:32:c2:cc:2a:9e:76:73:91: ce:30:f1:90:c4:27:ab:17:33:ac:23:a0:73:5e:a4: 38:7d:c9:78:29:e0:0c:b6:44:80:61:8e:7a:d1:18: b6:2c:15:12:11:3d:40:45:69:2c:95:01:08:2d:d4: f0:6d:4c:f6:16:57:50:fc:e1:e5:f9:cc:3e:b0:15: 16:b1:07:2d:06:2d:55:c7:65:5f:79:cc:4e:6a:fc: 6a:49:94:d4:b1:d2:e0:4e:c6:34:e2:86:57:be:e4: 99:b7:ca:6e:49:e7:c4:fb:55:e3:ea:e0:1e:10:18: 81:7e:7d:85:1c:ce:d2:7c:ef:b0:f6:4e:2f:44:28: fa:c4:a3:ea:af:39:5d:19:20:47:cf:30:61:6d:9d: 46:17:c7:24:d9:a8:62:80:94:74:18:fa:05:1f:84: 28:b2:0e:36:c9:30:34:44:0b:cb:81:20:03:65:be: 15:a8:a0:5f:eb:96:7a:20:1c:e8:3d:27:ca:02:43: 10:12:32:2f:f8:ba:2a:90:3d:47:cf:bd:b9:57:f1: 91:8c:2a:d5:bb:32:79:fa:1d:06:15:b0:56:4d:f7: 68:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:58:1F:EB:67:B8:C2:9D:25:50:39:CA:1D:AD:AA:EF:16:C7:81:EC X509v3 Authority Key Identifier: keyid:9F:13:0C:39:D0:30:76:F4:A8:93:4F:A3:34:95:CE:D9:37:E2:30:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nxMMOdAwdvSok0-jNJXO2TfiMKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91430D6/20F9F3B05FE011F0B2FD8F57C4F9AE02/nxMMOdAwdvSok0-jNJXO2TfiMKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:46:6f:c8:35:71:55:aa:3f:fe:d3:da:37:51:90:49:71:5a: 66:fa:3d:58:b1:d7:81:4b:56:67:bf:23:99:8b:8f:45:40:c7: 0a:ee:b4:cf:4c:3f:3d:e4:b1:55:1d:e5:d9:70:3e:5c:0a:70: 6c:46:01:77:7e:26:8b:fe:4e:29:2c:1b:69:1a:31:3f:af:af: f4:b1:c0:58:8a:7a:ac:30:40:70:9e:0e:e4:b7:13:1f:7d:1f: ba:9a:07:79:6e:c9:90:92:62:5b:3f:43:13:11:4d:68:b1:2c: 5e:1f:9a:c1:91:c1:84:b8:60:61:5d:04:29:8a:31:c8:50:97: f9:da:81:d2:d5:91:f2:01:2d:cc:f8:6c:3f:20:50:db:8e:9a: f4:8a:ad:11:ab:bc:1d:c6:51:83:da:3c:3c:5d:95:a7:91:74: 60:db:b1:6d:2e:b6:39:41:b3:43:d2:8a:a8:02:5d:7b:fe:60: bd:89:21:06:97:16:ba:f9:06:8f:44:19:9f:4b:22:25:d2:2a: 35:5a:45:eb:b1:47:ec:5d:9d:92:3c:d4:a9:99:80:09:e7:f0: 2a:bc:ab:01:56:86:ea:ee:f9:fe:f0:42:f2:8a:5a:cb:68:9a: 22:84:43:be:ce:97:8a:1b:ad:6f:ff:c4:ae:27:f7:1e:22:bf: 72:25:4d:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MzBENjExMC8GA1UEBRMoOUYxMzBDMzlEMDMwNzZGNEE4OTM0RkEzMzQ5NUNFRDkz N0UyMzBBQjAeFw0yNjAxMjUwNjA3MTJaFw0yNjAyMDEwNjA3MTJaMBgxFjAUBgNV BAMMDTY5NzViMzExLTdjOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSN7u3+cOWT/SszZ+HDW1PEgkXD151mmf/q7PlkNWlHQD+jssywswqnnZzkc4w 8ZDEJ6sXM6wjoHNepDh9yXgp4Ay2RIBhjnrRGLYsFRIRPUBFaSyVAQgt1PBtTPYW V1D84eX5zD6wFRaxBy0GLVXHZV95zE5q/GpJlNSx0uBOxjTihle+5Jm3ym5J58T7 VePq4B4QGIF+fYUcztJ877D2Ti9EKPrEo+qvOV0ZIEfPMGFtnUYXxyTZqGKAlHQY +gUfhCiyDjbJMDREC8uBIANlvhWooF/rlnogHOg9J8oCQxASMi/4uiqQPUfPvblX 8ZGMKtW7Mnn6HQYVsFZN92iHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGVgf62e4 wp0lUDnKHa2q7xbHgewwHwYDVR0jBBgwFoAUnxMMOdAwdvSok0+jNJXO2TfiMKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzMEQ2LzIwRjlGM0IwNUZF MDExRjBCMkZEOEY1N0M0RjlBRTAyL254TU1PZEF3ZHZTb2swLWpOSlhPMlRmaU1L cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbnhNTU9kQXdkdlNvazAtak5KWE8yVGZpTUtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQz MEQ2LzIwRjlGM0IwNUZFMDExRjBCMkZEOEY1N0M0RjlBRTAyL254TU1PZEF3ZHZT b2swLWpOSlhPMlRmaU1Lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABhGb8g1cVWqP/7T2jdRkElxWmb6PVix14FLVme/I5mLj0VAxwrutM9M Pz3ksVUd5dlwPlwKcGxGAXd+Jov+TiksG2kaMT+vr/SxwFiKeqwwQHCeDuS3Ex99 H7qaB3luyZCSYls/QxMRTWixLF4fmsGRwYS4YGFdBCmKMchQl/nagdLVkfIBLcz4 bD8gUNuOmvSKrRGrvB3GUYPaPDxdlaeRdGDbsW0utjlBs0PSiqgCXXv+YL2JIQaX Frr5Bo9EGZ9LIiXSKjVaReuxR+xdnZI81KmZgAnn8Cq8qwFWhuru+f7wQvKKWsto miKEQ77Ol4obrW//xK4n9x4iv3IlTRE= -----END CERTIFICATE-----Generated at Sun Jan 25 12:08:56 2026 by rpki-client