This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft File: mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft (raw, json) Hash identifier: 6umG8kmR8ueRMDcifPkWNky/s92PT8DMe5Rlxqk1eAE= Subject key identifier: 72:5F:17:CE:D8:32:F8:A2:3E:73:A2:C2:E5:8C:3E:87:8F:66:35:4B Authority key identifier: 99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 Certificate issuer: /CN=A914B1DB/serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft Manifest number: 011D Signing time: Sun 25 Jan 2026 03:58:57 +0000 Manifest this update: Sun 25 Jan 2026 03:58:57 +0000 Manifest next update: Sun 01 Feb 2026 03:58:57 +0000 Files and hashes: 1: mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl (hash: oUjUxn90apt9D5zpFH333kNeXcWHHB0d/8IfNjq08N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B1DB, serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Validity Not Before: Jan 25 03:58:57 2026 GMT Not After : Feb 1 03:58:57 2026 GMT Subject: CN=69759501-9edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:53:7f:41:6c:10:6a:8a:f1:92:43:a3:80:34: 24:d7:5d:01:4b:96:8f:ef:20:98:6d:e6:7e:c9:39: c5:6e:95:ec:7e:51:18:c8:3c:38:d3:5e:c5:02:27: 6f:23:c0:d2:7e:2f:c3:27:f1:c7:cc:31:fb:63:f5: 79:d5:11:62:d4:38:ec:9d:67:e6:7b:f0:dd:d3:fb: 3a:fb:38:55:3f:41:fa:a4:5f:63:8b:0a:86:2e:1d: 1d:9e:77:ab:fb:81:ba:23:0c:ca:c2:d0:e1:c0:1b: d5:b2:27:0b:80:6e:1d:e6:f4:ff:6e:a8:4c:a2:79: 1c:9f:93:d5:5f:0d:0b:72:37:cd:2f:9f:1b:ad:8a: 82:3c:b7:c6:13:07:0d:ab:d4:8d:ee:50:93:84:9a: 33:9d:d8:f9:88:87:df:b8:76:83:12:b7:d5:a9:5d: 8f:2b:d8:89:75:01:9b:31:07:44:56:de:c5:f1:98: 47:72:d2:92:ce:63:01:fb:22:15:8c:b6:b8:0e:a3: 4f:aa:f4:0c:6b:88:61:f7:d6:ae:3e:23:75:e3:18: 71:bd:e1:71:35:a8:d9:1d:90:63:a7:02:8c:a3:68: 71:43:09:c8:a3:ad:5b:d3:66:20:21:17:a8:65:49: 34:e4:e9:97:14:11:a1:31:51:67:57:5b:b4:3f:46: 57:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5F:17:CE:D8:32:F8:A2:3E:73:A2:C2:E5:8C:3E:87:8F:66:35:4B X509v3 Authority Key Identifier: keyid:99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:39:f9:c6:ee:9c:d5:90:5e:25:99:ee:76:df:cc:a8:8f:c6: f6:cd:c3:db:43:a5:f7:44:d1:21:af:89:2e:f8:85:73:2c:e0: 47:12:7a:c3:cc:0c:8d:ec:ef:49:f1:24:58:33:32:6d:ac:86: b6:62:9f:e5:61:91:40:6d:33:26:c0:ca:a0:d2:40:65:b9:c0: a9:d9:75:fe:29:57:7c:bb:ae:87:51:ed:df:a5:10:0c:3e:64: 13:01:29:0e:2e:35:45:c8:6f:25:79:c0:9c:b7:db:e8:c7:fa: d0:77:7f:8e:61:ea:83:1b:48:6c:26:e9:22:ce:5e:3e:7b:90: d8:3c:d0:b6:4d:63:31:17:fe:92:18:98:e8:c1:28:8c:e2:82: 4d:98:eb:05:4c:42:ea:66:86:15:9a:83:02:d6:49:50:d7:64: 6b:15:ee:44:bc:21:cb:d5:dd:e7:36:11:57:c4:9e:b8:67:59: 36:04:f2:be:05:b1:14:ea:8a:9e:bc:ee:6a:bf:94:89:03:ca: 50:e4:fd:90:67:b3:fa:a4:3b:7e:06:04:da:a5:ac:77:90:60: eb:37:c8:45:a1:4b:89:66:ef:f5:a9:82:b8:7c:3b:87:bd:1c: f9:c2:55:62:7a:cb:45:b5:77:ee:5a:08:9e:c0:34:ba:c2:d5: 0d:0f:e1:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxREIxMTAvBgNVBAUTKDk5QzEwNkU4N0ZFMUQ2NDExQUVDNzFGODAzOTQ2MjJD ODgxQUFBRDkwHhcNMjYwMTI1MDM1ODU3WhcNMjYwMjAxMDM1ODU3WjAYMRYwFAYD VQQDDA02OTc1OTUwMS05ZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1N/QWwQaorxkkOjgDQk110BS5aP7yCYbeZ+yTnFbpXsflEYyDw4017FAidv I8DSfi/DJ/HHzDH7Y/V51RFi1DjsnWfme/Dd0/s6+zhVP0H6pF9jiwqGLh0dnner +4G6IwzKwtDhwBvVsicLgG4d5vT/bqhMonkcn5PVXw0LcjfNL58brYqCPLfGEwcN q9SN7lCThJozndj5iIffuHaDErfVqV2PK9iJdQGbMQdEVt7F8ZhHctKSzmMB+yIV jLa4DqNPqvQMa4hh99auPiN14xhxveFxNajZHZBjpwKMo2hxQwnIo61b02YgIReo ZUk05OmXFBGhMVFnV1u0P0ZXqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJfF87Y MviiPnOiwuWMPoePZjVLMB8GA1UdIwQYMBaAFJnBBuh/4dZBGuxx+AOUYiyIGqrZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjFEQi8zNjUxNDBFRTQz MTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFrRWE3SEg0QTVSaUxJZ2Fx dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21jRUc2SF9oMWtFYTdISDRBNVJpTElnYXF0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjFEQi8zNjUxNDBFRTQzMTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFr RWE3SEg0QTVSaUxJZ2FxdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVOfnG7pzVkF4lme5238yoj8b2zcPbQ6X3RNEhr4ku+IVzLOBHEnrD zAyN7O9J8SRYMzJtrIa2Yp/lYZFAbTMmwMqg0kBlucCp2XX+KVd8u66HUe3fpRAM PmQTASkOLjVFyG8lecCct9vox/rQd3+OYeqDG0hsJukizl4+e5DYPNC2TWMxF/6S GJjowSiM4oJNmOsFTELqZoYVmoMC1klQ12RrFe5EvCHL1d3nNhFXxJ64Z1k2BPK+ BbEU6oqevO5qv5SJA8pQ5P2QZ7P6pDt+BgTapax3kGDrN8hFoUuJZu/1qYK4fDuH vRz5wlViestFtXfuWgiewDS6wtUND+GE -----END CERTIFICATE-----Generated at Sun Jan 25 10:47:19 2026 by rpki-client