This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: vdx8IKJ6tlcM2On2B+5h3X1kOniff+bmGTmLJiSSKmM= Subject key identifier: 85:9B:AB:79:B6:CE:C8:5A:31:2C:D6:94:EB:41:E6:A9:2D:16:28:6A Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: E0 Signing time: Sun 25 Jan 2026 04:49:22 +0000 Manifest this update: Sun 25 Jan 2026 04:49:21 +0000 Manifest next update: Sun 01 Feb 2026 04:49:21 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: zoAGrWrPhOVYMV7You2n5qOReN5pPpPkYAe1RuGBwIk=) 2: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: enHP38spS/cKfOn42zv8/O5zNl/TksEZwto02A0n87g=) 3: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: dfWTxzpp9zXo46ZkeMa+zA4D9hQsUMAYfKkDEAfqr00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Jan 25 04:49:21 2026 GMT Not After : Feb 1 04:49:21 2026 GMT Subject: CN=6975a0d2-bdc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:f4:e8:76:51:51:34:b7:64:d5:80:a4:52: 41:1a:76:7b:ca:95:83:27:c1:45:2e:7e:89:b3:0e: 0a:75:5c:c1:0e:12:86:bf:f1:ae:9e:ac:2e:ea:e8: ab:84:5e:cb:59:a7:b3:94:7d:e5:fc:e6:be:18:bf: 72:e9:80:fd:4f:b7:d2:2b:09:6f:04:a3:1a:27:ae: a7:0a:d1:59:8f:9d:79:af:c6:1f:3a:18:83:d2:05: 07:77:61:53:63:c0:56:0d:53:96:1e:a5:a6:7e:a6: 70:c9:2b:48:3c:d0:05:67:0e:94:ca:3f:c2:09:2c: e3:86:8e:2d:46:91:b9:8e:14:11:e1:83:08:f8:40: 9d:92:e9:fa:7a:34:75:80:49:ee:56:a1:75:47:d5: 69:35:b3:1f:14:be:7e:a5:bd:18:a6:8b:46:48:6b: 16:5c:c7:10:8f:0b:71:db:f2:9d:98:e8:d1:53:66: bd:dd:d4:ee:de:b7:67:4d:d7:f1:80:6c:67:f6:a1: e7:6f:85:71:47:7b:f8:5b:1b:a3:86:87:13:0d:30: 71:01:06:49:d9:66:cf:7b:f5:fc:7c:d8:93:49:54: 86:a1:4e:5f:1a:00:21:42:e0:19:d2:bd:46:fa:18: fe:00:ef:d1:94:e5:96:36:b1:3d:7f:50:b5:08:03: 21:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9B:AB:79:B6:CE:C8:5A:31:2C:D6:94:EB:41:E6:A9:2D:16:28:6A X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:dc:bb:0b:c5:ee:8a:b0:c5:01:45:de:45:24:91:a1:2c:a9: 4f:75:3e:75:e5:45:a1:84:0b:5e:fc:4f:5e:ee:a0:c0:1f:67: 56:9c:13:bc:ea:43:67:d1:e1:fd:a9:49:66:fa:2f:b8:f7:0e: 28:2d:fb:f4:8d:76:3a:c8:84:a0:ff:29:89:0f:a4:4e:3e:18: be:1d:ef:c6:06:34:e0:fa:70:8f:8c:01:02:5f:06:3f:9b:5d: 06:32:a2:92:d2:9f:4b:59:ee:7c:c8:95:14:5b:29:8b:58:83: f7:89:07:d1:ad:e4:1d:72:a8:ee:d3:bb:e0:46:88:52:5e:05: 84:24:7c:bb:04:2c:e6:3b:87:81:f2:43:8c:65:36:30:ae:2e: e4:0e:ca:40:5a:cf:75:e9:fb:c7:de:b9:c7:0a:4d:89:46:3b: 8e:f0:30:b6:10:ec:1f:59:1f:9a:73:30:10:63:82:86:2a:50: 40:21:9a:a9:5a:44:00:66:c8:15:05:42:df:7f:3e:d6:cc:e8: 7e:4f:54:04:ba:cc:bc:b1:55:cd:3b:f2:d8:bf:c5:9d:27:b1: 68:e5:d4:04:2e:1b:ec:b2:3f:ab:5d:36:ee:d3:1c:21:72:e4: 1b:38:d9:02:51:db:87:f8:97:de:28:48:a8:1d:95:0a:93:11: c9:13:b3:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjYwMTI1MDQ0OTIxWhcNMjYwMjAxMDQ0OTIxWjAYMRYwFAYD VQQDDA02OTc1YTBkMi1iZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj706HZRUTS3ZNWApFJBGnZ7ypWDJ8FFLn6Jsw4KdVzBDhKGv/Gunqwu6uir hF7LWaezlH3l/Oa+GL9y6YD9T7fSKwlvBKMaJ66nCtFZj515r8YfOhiD0gUHd2FT Y8BWDVOWHqWmfqZwyStIPNAFZw6Uyj/CCSzjho4tRpG5jhQR4YMI+ECdkun6ejR1 gEnuVqF1R9VpNbMfFL5+pb0YpotGSGsWXMcQjwtx2/KdmOjRU2a93dTu3rdnTdfx gGxn9qHnb4VxR3v4WxujhocTDTBxAQZJ2WbPe/X8fNiTSVSGoU5fGgAhQuAZ0r1G +hj+AO/RlOWWNrE9f1C1CAMhhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWbq3m2 zshaMSzWlOtB5qktFihqMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD3LsLxe6KsMUBRd5FJJGhLKlPdT515UWhhAte/E9e7qDAH2dWnBO8 6kNn0eH9qUlm+i+49w4oLfv0jXY6yISg/ymJD6ROPhi+He/GBjTg+nCPjAECXwY/ m10GMqKS0p9LWe58yJUUWymLWIP3iQfRreQdcqju07vgRohSXgWEJHy7BCzmO4eB 8kOMZTYwri7kDspAWs916fvH3rnHCk2JRjuO8DC2EOwfWR+aczAQY4KGKlBAIZqp WkQAZsgVBULffz7WzOh+T1QEusy8sVXNO/LYv8WdJ7Fo5dQELhvssj+rXTbu0xwh cuQbONkCUduH+JfeKEioHZUKkxHJE7MS -----END CERTIFICATE-----Generated at Sun Jan 25 11:52:03 2026 by rpki-client