This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: CzCq6uSN6gjgWFwxuBCOuvT2Vr6RoTwgLiwLP9Af8WI= Subject key identifier: 60:84:9B:7A:97:EA:6A:12:88:D7:CB:84:46:F8:11:DC:58:A1:62:AB Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0252 Signing time: Sat 24 Jan 2026 23:44:58 +0000 Manifest this update: Sat 24 Jan 2026 23:44:58 +0000 Manifest next update: Sat 31 Jan 2026 23:44:58 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: V3U5HpA6YyyCEQoijepqzrAImzSfbvvXaxEs1aPRdhU=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Jan 24 23:44:58 2026 GMT Not After : Jan 31 23:44:58 2026 GMT Subject: CN=6975597a-f826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:a8:24:18:7b:ca:9b:6b:8f:ea:5f:0a:51: a6:21:36:88:4b:b0:67:4f:f4:b7:6e:3c:0c:b3:14: d0:9d:7d:3f:53:7f:02:86:93:e6:ea:e7:cd:ad:3a: e9:ab:14:47:f6:0f:4f:73:23:66:bd:38:f0:54:73: 55:1f:7c:c6:be:52:f1:4d:e6:89:58:29:d5:48:5b: fa:14:49:04:c5:03:2e:6d:d2:6a:13:20:43:f6:73: f5:f6:09:9b:0c:ae:75:6f:56:4e:66:4c:3f:75:65: fa:e3:b1:f4:87:2f:15:f2:0d:a7:3a:5c:e9:3d:7b: ad:9d:97:af:e9:16:65:df:94:a0:00:6c:b9:0f:8e: c0:e7:58:4d:d1:b7:39:3a:d3:cb:0f:fa:45:45:07: 31:1a:bb:14:fb:7b:db:90:42:29:b4:cb:f0:ac:f6: 68:d3:64:82:55:4a:dd:57:1f:17:fa:64:55:71:d3: b2:42:3f:c7:ac:e2:9a:3f:1d:c8:ef:f5:a8:c8:c1: 37:89:ea:7b:d7:33:5b:f4:92:a7:94:43:ef:aa:a4: 5a:44:7b:5d:1a:b8:3f:97:0a:0a:41:d3:f8:c4:6f: fa:dd:f0:60:e8:1d:a5:fc:62:f1:5a:84:67:bf:34: bc:b4:45:37:eb:bd:05:43:63:fd:97:26:b9:b2:82: a3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:84:9B:7A:97:EA:6A:12:88:D7:CB:84:46:F8:11:DC:58:A1:62:AB X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:6b:8f:16:8a:82:ae:a8:3f:4d:2a:c1:48:2b:0a:7b:c2:01: a3:d5:a5:17:3c:8a:59:b2:5e:5c:58:17:d4:64:3c:78:8a:6b: d6:9c:ae:22:b7:14:8e:0b:c3:38:94:54:6a:17:77:7b:e3:70: b2:d3:05:ff:43:5a:cb:00:dc:64:5c:b7:ed:2b:51:2d:03:72: fa:14:09:7b:72:39:fa:47:86:34:c4:f7:19:40:d2:9e:9e:76: 24:87:89:55:dd:3e:41:57:82:79:18:eb:94:f8:a9:82:4f:03: 82:e6:82:20:63:35:10:3f:f8:0d:e9:a5:de:f7:42:d6:63:ef: de:d2:ff:93:e5:8b:95:00:9b:08:07:62:1e:e4:ee:ef:5b:10: 4d:16:a4:06:21:91:b1:91:0d:d4:0e:a8:80:7d:01:59:58:46: fa:04:da:7f:9c:f5:87:38:36:a0:37:78:14:19:0a:cd:6b:12: 73:6b:c1:7a:fd:a5:8e:79:eb:24:0b:1c:54:90:ba:ae:7b:35: ce:91:25:ed:b8:a6:a7:35:0d:6c:0c:b6:a5:1e:7f:b5:31:b4: fe:ad:65:f9:6e:0e:a0:03:5b:05:62:0e:0c:5d:49:9f:4a:9a: 98:d2:5d:62:5d:5a:05:d9:11:82:db:21:cd:57:fc:65:fe:9b: 85:d3:b2:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjYwMTI0MjM0NDU4WhcNMjYwMTMxMjM0NDU4WjAYMRYwFAYD VQQDDA02OTc1NTk3YS1mODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKSoJBh7yptrj+pfClGmITaIS7BnT/S3bjwMsxTQnX0/U38ChpPm6ufNrTrp qxRH9g9PcyNmvTjwVHNVH3zGvlLxTeaJWCnVSFv6FEkExQMubdJqEyBD9nP19gmb DK51b1ZOZkw/dWX647H0hy8V8g2nOlzpPXutnZev6RZl35SgAGy5D47A51hN0bc5 OtPLD/pFRQcxGrsU+3vbkEIptMvwrPZo02SCVUrdVx8X+mRVcdOyQj/HrOKaPx3I 7/WoyME3iep71zNb9JKnlEPvqqRaRHtdGrg/lwoKQdP4xG/63fBg6B2l/GLxWoRn vzS8tEU3670FQ2P9lya5soKjuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCEm3qX 6moSiNfLhEb4EdxYoWKrMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAja48WioKuqD9NKsFIKwp7wgGj1aUXPIpZsl5cWBfUZDx4imvWnK4i txSOC8M4lFRqF3d743Cy0wX/Q1rLANxkXLftK1EtA3L6FAl7cjn6R4Y0xPcZQNKe nnYkh4lV3T5BV4J5GOuU+KmCTwOC5oIgYzUQP/gN6aXe90LWY+/e0v+T5YuVAJsI B2Ie5O7vWxBNFqQGIZGxkQ3UDqiAfQFZWEb6BNp/nPWHODagN3gUGQrNaxJza8F6 /aWOeeskCxxUkLquezXOkSXtuKanNQ1sDLalHn+1MbT+rWX5bg6gA1sFYg4MXUmf SpqY0l1iXVoF2RGC2yHNV/xl/puF07Ib -----END CERTIFICATE-----Generated at Mon Jan 26 00:20:23 2026 by rpki-client