This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: Aqj4RGRYafUX0dz/6MXUk2OHxirVrl+/+dJmTv7rCxk= Subject key identifier: 04:25:B6:52:78:9C:69:7D:56:C5:31:69:DA:06:E6:8D:04:06:2B:8C Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03C0 Signing time: Sat 24 Jan 2026 23:49:49 +0000 Manifest this update: Sat 24 Jan 2026 23:49:48 +0000 Manifest next update: Sat 31 Jan 2026 23:49:48 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: 1lG15wbg4ZCGb+/3TD6JeU4fcclkEcFO7uv2OSQ20rk=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Jan 24 23:49:48 2026 GMT Not After : Jan 31 23:49:48 2026 GMT Subject: CN=69755a9d-04d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7a:75:b5:af:2f:47:4a:5b:d3:b8:67:11:d8: 9b:d4:5f:85:11:e6:04:03:fa:9f:53:b4:e9:87:8b: d8:82:d5:0d:89:db:11:8f:44:a0:8a:1e:93:bf:1c: 71:1c:c5:26:71:56:78:ec:4b:33:84:3d:91:96:3a: ae:33:3c:ef:32:8b:01:c7:b8:25:df:45:45:9a:00: 91:bc:b4:50:e2:b6:36:cf:10:98:8a:11:57:da:52: d2:46:fd:e2:6e:a0:0a:e7:ed:68:21:9c:64:05:88: 4c:13:cd:7d:72:f0:b6:d5:92:f1:11:db:d6:23:5e: 41:91:20:6e:1d:ea:6e:91:9d:8a:24:41:03:b5:73: 07:c8:a7:68:5b:e1:a3:f2:a4:4a:fe:13:d4:c6:ea: 63:7a:ad:6b:31:50:ab:4b:ed:6b:08:a6:f8:1f:d7: f0:92:be:5d:e9:5d:f4:95:5f:8d:88:c3:70:3a:75: 65:37:e5:43:93:ec:79:7e:a2:df:97:b4:02:24:60: 48:fc:3d:cc:f5:79:64:79:40:34:58:34:31:c0:fc: 76:82:9d:66:c0:fd:ab:8f:bf:d5:a2:82:b4:1c:5f: b4:0a:80:96:13:d0:6a:90:b7:c4:e5:cb:5c:58:36: 22:4b:c3:c2:0e:2a:2d:0b:0c:27:f2:58:32:e0:d3: bc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:25:B6:52:78:9C:69:7D:56:C5:31:69:DA:06:E6:8D:04:06:2B:8C X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a1:bd:85:35:91:6a:36:80:33:42:8e:a0:9e:d8:c3:19:72: c0:e3:68:f8:df:6c:bc:61:a7:a5:b0:4e:40:a6:df:e6:31:d9: 3d:6d:d6:72:d8:81:b2:8b:80:7a:04:bf:90:4b:00:65:c4:cb: cf:30:9d:ae:01:de:db:44:00:4e:02:30:e1:cd:8b:43:71:6a: 30:f5:79:0e:49:f2:2c:89:b8:ab:7f:04:03:54:43:86:38:54: 81:59:fc:59:14:a5:53:51:3f:d2:37:94:ca:e8:68:ce:86:ad: 3c:1b:fa:42:87:5b:3d:10:5b:cd:7c:65:ab:36:6a:4d:44:ef: d7:df:39:04:cf:06:82:87:89:27:70:d3:cc:75:37:3a:01:2d: e9:0a:64:a9:d8:91:a6:cd:4d:24:11:c2:a0:3b:1d:ee:db:63: 23:40:2d:72:42:9f:22:cd:69:9c:27:d2:65:da:4f:c4:10:07: 2a:63:55:30:34:8f:9a:b7:cb:0d:da:8d:9a:b8:44:07:03:90: 35:bb:38:cf:37:bf:b7:5d:fa:a7:6c:28:0b:6c:bd:93:b5:94: 75:45:c7:b2:25:84:2c:24:46:65:44:13:01:d6:b8:cd:dc:c1: 0f:60:59:af:d9:95:de:72:ce:16:e9:a9:52:ca:68:ee:aa:e1: d4:8f:35:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjYwMTI0MjM0OTQ4WhcNMjYwMTMxMjM0OTQ4WjAYMRYwFAYD VQQDDA02OTc1NWE5ZC0wNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXp1ta8vR0pb07hnEdib1F+FEeYEA/qfU7Tph4vYgtUNidsRj0Sgih6Tvxxx HMUmcVZ47EszhD2RljquMzzvMosBx7gl30VFmgCRvLRQ4rY2zxCYihFX2lLSRv3i bqAK5+1oIZxkBYhME819cvC21ZLxEdvWI15BkSBuHepukZ2KJEEDtXMHyKdoW+Gj 8qRK/hPUxupjeq1rMVCrS+1rCKb4H9fwkr5d6V30lV+NiMNwOnVlN+VDk+x5fqLf l7QCJGBI/D3M9XlkeUA0WDQxwPx2gp1mwP2rj7/VooK0HF+0CoCWE9BqkLfE5ctc WDYiS8PCDiotCwwn8lgy4NO84QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQltlJ4 nGl9VsUxadoG5o0EBiuMMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoob2FNZFqNoAzQo6gntjDGXLA42j432y8YaelsE5Apt/mMdk9bdZy 2IGyi4B6BL+QSwBlxMvPMJ2uAd7bRABOAjDhzYtDcWow9XkOSfIsibirfwQDVEOG OFSBWfxZFKVTUT/SN5TK6GjOhq08G/pCh1s9EFvNfGWrNmpNRO/X3zkEzwaCh4kn cNPMdTc6AS3pCmSp2JGmzU0kEcKgOx3u22MjQC1yQp8izWmcJ9Jl2k/EEAcqY1Uw NI+at8sN2o2auEQHA5A1uzjPN7+3XfqnbCgLbL2TtZR1RceyJYQsJEZlRBMB1rjN 3MEPYFmv2ZXecs4W6alSymjuquHUjzWn -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:23 2026 by rpki-client