This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: D+Hc9ztEuQQy6cYSs3Fp30Snz1Up9C5o6DcbH/zorxw= Subject key identifier: 19:26:AC:2A:DB:C2:61:2B:9C:79:63:6A:0F:55:18:43:17:6F:27:33 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A7C Signing time: Sat 24 Jan 2026 19:04:29 +0000 Manifest this update: Sat 24 Jan 2026 19:04:29 +0000 Manifest next update: Sat 31 Jan 2026 19:04:29 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: OC1ykbGPYjvShZ/ud8LiQrwNc5Tybz6ukHoTm6PnLRI=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: bs2WaiU2EHsdavOyCOj936j3V7QF3geo8o9d56rg2ig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2692 (0xa84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Jan 24 19:04:29 2026 GMT Not After : Jan 31 19:04:29 2026 GMT Subject: CN=697517bd-ad7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0f:ef:e2:c4:84:1b:26:50:8b:f0:b8:04:b6: 79:8d:9a:87:be:fd:26:d5:0f:0a:5f:f1:16:2d:3c: 67:fd:58:8b:de:b4:a3:da:be:8d:35:59:c6:27:db: 27:f0:ad:07:02:2b:38:f1:0a:22:e1:8b:8d:39:8c: 0d:bf:90:f6:1d:9d:d0:83:26:9c:85:85:b0:df:1f: 97:55:06:0e:53:2b:66:fc:0f:db:9c:2a:9e:c1:1d: c6:9f:57:ae:83:bd:93:13:27:98:db:3a:a1:dd:c2: fb:aa:74:e9:76:3d:29:28:22:ca:88:97:e2:3a:95: cc:6c:88:8d:6e:2d:80:2c:60:e6:e3:b1:b2:01:71: f2:f3:7d:e2:66:1a:55:21:15:bb:37:63:2f:6e:e1: b7:5d:d9:f6:ab:d8:0f:cc:d3:c4:e9:e8:2d:20:a8: 5e:db:d4:5f:e1:51:58:f0:5f:05:8a:83:32:90:7c: 57:36:94:58:87:22:fe:ea:d3:23:6f:42:50:6e:db: 47:b0:94:81:b0:4a:34:6f:28:79:b7:aa:8b:9c:9e: d0:8a:0b:36:94:17:7d:c1:94:5e:a7:1f:ec:6e:8b: 82:a4:fe:93:b7:71:19:6b:80:c4:06:5b:16:8f:96: 70:90:be:8f:7e:dd:57:2a:90:f7:f6:48:6e:21:b6: a9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:26:AC:2A:DB:C2:61:2B:9C:79:63:6A:0F:55:18:43:17:6F:27:33 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f4:45:fb:99:25:2b:2d:fe:ea:30:2b:c0:15:1f:c1:a2:30: 4e:28:3e:aa:8f:f7:4e:a7:1b:6f:c8:f4:0d:c7:21:4f:ad:80: ba:2f:2c:23:e0:58:03:8e:de:98:f0:9e:da:92:8a:3e:f9:f0: 7e:36:a6:34:b4:ef:74:d8:27:80:54:2e:3b:fc:97:21:b0:03: 82:6e:3e:44:67:02:00:ff:21:85:d0:a6:4b:2e:7a:e2:4d:9f: a4:cd:ba:9b:23:82:c8:88:ec:3b:c9:9b:12:dd:cc:14:25:3f: 43:51:14:92:1d:05:4d:5c:a4:4f:84:09:30:33:47:9e:dc:68: 6d:d5:a8:b8:c0:a8:73:88:c0:7b:56:79:3c:ad:a7:49:fe:5d: 48:15:c9:2f:76:b1:31:d7:2e:99:f7:56:51:1b:fd:19:0e:fd: e7:fa:4b:63:db:cc:8f:ac:1c:c0:fe:0e:27:bd:0a:f4:55:6c: e0:8a:3c:7c:48:5e:77:b4:ac:ed:ea:ed:cf:c7:49:4c:12:92: 5b:a0:55:2c:4a:3b:d1:70:c9:d4:56:dd:63:23:79:85:d7:ae: 2b:c0:35:91:c2:a6:41:83:29:9e:0a:07:b3:27:4e:e6:6c:31: 4c:fd:80:b0:34:fd:d5:78:e6:64:a0:da:95:ef:6d:c1:87:a2: 1e:13:5c:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjYwMTI0MTkwNDI5WhcNMjYwMTMxMTkwNDI5WjAYMRYwFAYD VQQDDA02OTc1MTdiZC1hZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnA/v4sSEGyZQi/C4BLZ5jZqHvv0m1Q8KX/EWLTxn/ViL3rSj2r6NNVnGJ9sn 8K0HAis48Qoi4YuNOYwNv5D2HZ3QgyachYWw3x+XVQYOUytm/A/bnCqewR3Gn1eu g72TEyeY2zqh3cL7qnTpdj0pKCLKiJfiOpXMbIiNbi2ALGDm47GyAXHy833iZhpV IRW7N2MvbuG3Xdn2q9gPzNPE6egtIKhe29Rf4VFY8F8FioMykHxXNpRYhyL+6tMj b0JQbttHsJSBsEo0byh5t6qLnJ7Qigs2lBd9wZRepx/sbouCpP6Tt3EZa4DEBlsW j5ZwkL6Pft1XKpD39khuIbap8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkmrCrb wmErnHljag9VGEMXbyczMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT9EX7mSUrLf7qMCvAFR/BojBOKD6qj/dOpxtvyPQNxyFPrYC6Lywj 4FgDjt6Y8J7akoo++fB+NqY0tO902CeAVC47/JchsAOCbj5EZwIA/yGF0KZLLnri TZ+kzbqbI4LIiOw7yZsS3cwUJT9DURSSHQVNXKRPhAkwM0ee3Ght1ai4wKhziMB7 Vnk8radJ/l1IFckvdrEx1y6Z91ZRG/0ZDv3n+ktj28yPrBzA/g4nvQr0VWzgijx8 SF53tKzt6u3Px0lMEpJboFUsSjvRcMnUVt1jI3mF164rwDWRwqZBgymeCgezJ07m bDFM/YCwNP3VeOZkoNqV723Bh6IeE1yV -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:19 2026 by rpki-client