This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: zuS/HgQhqxNmKKFCaNUQByf2kumhjCfTAQvNaSh4Rzs= Subject key identifier: 37:45:CC:D1:3F:53:81:1E:AA:10:C1:4B:85:07:F8:97:4F:59:0A:8A Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 01DC Signing time: Sun 25 Jan 2026 02:14:40 +0000 Manifest this update: Sun 25 Jan 2026 02:14:40 +0000 Manifest next update: Sun 01 Feb 2026 02:14:40 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: kFtBaonUiC8DAMndIAXfQ/+c2Qhug6M7oriNtbgBkcQ=) 2: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: 2gtTc6ZU74S7+Yus2EBYeK424P/75ngpI7OxmlHbzq4=) 3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: ySS8x+DTKoqsAepHwvR2qHqY0ZCmV9P1QKOa76HzTlg=) 4: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: oQkH3u9NTYvKUYQPQlkbYyuLgyzF8QlzdxljTJ0MaOk=) 5: 2F5D72E695EC11F0BF295042C4F9AE02.roa (hash: 0lzHMRu/BEbN9XyM7Nn7lU0Tdf9VP7CQevvwrhAJ9I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: Jan 25 02:14:40 2026 GMT Not After : Feb 1 02:14:40 2026 GMT Subject: CN=69757c90-99d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:9c:89:0c:15:12:dd:92:b1:c1:a1:e4:dc: 4f:bd:0b:03:35:3e:82:1a:94:98:e3:88:59:8b:cb: ea:ec:28:22:e7:0f:b3:7a:e3:7d:e4:6a:74:4f:cb: ef:42:7d:1a:a6:a9:53:47:f7:5d:5c:77:b4:f4:a0: 10:ec:f0:3f:e1:e9:5a:36:f9:56:63:f7:22:d5:ee: ab:a2:f7:b1:7e:e2:2d:5a:b8:0e:21:76:5d:0e:b5: 00:7d:14:81:9e:81:c2:f5:0e:88:bc:7a:87:25:56: 1e:a8:bb:82:ba:68:86:5e:dd:ae:af:95:e8:4e:06: e9:a1:4f:f4:36:f5:e5:d8:30:54:13:14:e5:0e:b5: 5e:b7:1c:3b:35:b4:b3:6a:f6:2a:f3:8f:41:07:9a: a2:3b:d2:9f:d0:e2:c4:80:7a:e3:09:94:86:16:c8: b8:26:03:d3:80:6e:5c:54:a2:e0:2b:0a:ba:fa:8b: f0:a7:14:21:1d:16:8c:90:a7:d5:ae:e5:b4:a9:27: b0:3b:51:bd:18:bf:f1:cb:61:c8:46:5d:fa:ea:82: b6:be:ec:d4:c7:fc:6e:b7:83:ed:17:a3:21:fe:69: 70:cf:97:af:b2:b1:37:aa:de:cc:ed:6b:76:13:a6: 7c:5c:f7:5a:e4:66:cf:a2:75:e8:30:f6:0f:8e:a5: 72:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:45:CC:D1:3F:53:81:1E:AA:10:C1:4B:85:07:F8:97:4F:59:0A:8A X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:31:67:9d:ec:49:d9:76:90:16:db:d1:29:c4:ed:04:99:25: 1d:35:a8:96:12:e3:91:fc:c0:5e:cf:12:6b:48:a5:b6:05:bb: a8:0f:97:a4:ff:b4:fd:b8:1a:16:46:05:c3:d4:fe:e6:dd:5d: bf:29:fc:7e:8f:48:68:d5:e7:25:ac:4f:7a:46:b3:4e:01:b9: fa:39:f2:0d:98:15:a3:b3:d1:39:80:b5:c0:06:34:75:3c:e1: 0f:ef:1e:8b:81:33:ca:96:68:c0:12:b7:b7:c5:26:6f:34:1c: 15:43:1a:e9:f7:f6:4f:b1:0f:62:30:ef:ac:26:a1:91:91:fa: 26:95:90:60:9d:3a:ba:ed:2b:1f:4b:da:0e:bb:92:04:b5:bc: ce:3e:5a:1d:9a:a9:54:58:7a:ba:a9:18:1d:93:22:55:71:c1: 65:9c:51:b4:97:c1:8a:71:b9:44:23:8a:86:4c:73:7a:0b:79: 45:ef:3d:27:0f:b0:02:87:22:3c:1b:94:d1:29:95:7a:1d:42: a5:ee:c6:76:5a:2a:65:ef:1d:72:12:11:26:15:d9:31:02:e9: 1c:75:e9:ec:d2:ca:66:85:28:67:e2:17:14:52:c8:7a:15:b7: 32:c0:fc:69:c7:b1:df:df:1c:40:63:94:d9:01:45:c5:d3:07: b4:07:a5:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjYwMTI1MDIxNDQwWhcNMjYwMjAxMDIxNDQwWjAYMRYwFAYD VQQDDA02OTc1N2M5MC05OWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1iciQwVEt2SscGh5NxPvQsDNT6CGpSY44hZi8vq7Cgi5w+zeuN95Gp0T8vv Qn0apqlTR/ddXHe09KAQ7PA/4elaNvlWY/ci1e6rovexfuItWrgOIXZdDrUAfRSB noHC9Q6IvHqHJVYeqLuCumiGXt2ur5XoTgbpoU/0NvXl2DBUExTlDrVetxw7NbSz avYq849BB5qiO9Kf0OLEgHrjCZSGFsi4JgPTgG5cVKLgKwq6+ovwpxQhHRaMkKfV ruW0qSewO1G9GL/xy2HIRl366oK2vuzUx/xut4PtF6Mh/mlwz5evsrE3qt7M7Wt2 E6Z8XPda5GbPonXoMPYPjqVyFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdFzNE/ U4EeqhDBS4UH+JdPWQqKMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnMWed7EnZdpAW29EpxO0EmSUdNaiWEuOR/MBezxJrSKW2BbuoD5ek /7T9uBoWRgXD1P7m3V2/Kfx+j0ho1eclrE96RrNOAbn6OfINmBWjs9E5gLXABjR1 POEP7x6LgTPKlmjAEre3xSZvNBwVQxrp9/ZPsQ9iMO+sJqGRkfomlZBgnTq67Ssf S9oOu5IEtbzOPlodmqlUWHq6qRgdkyJVccFlnFG0l8GKcblEI4qGTHN6C3lF7z0n D7AChyI8G5TRKZV6HUKl7sZ2Wipl7x1yEhEmFdkxAukcdens0spmhShn4hcUUsh6 FbcywPxpx7Hf3xxAY5TZAUXF0we0B6Xw -----END CERTIFICATE-----Generated at Sun Jan 25 12:23:53 2026 by rpki-client