This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: N6Dgc2fO3JAYefGmNarHFLj9gNYJ24trnmtOGl3MEc8= Subject key identifier: C8:CF:3A:54:C2:59:4E:A1:A2:F1:95:5C:BB:7E:35:C6:7E:27:C8:6F Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 3507 Signing time: Sat 24 Jan 2026 14:53:38 +0000 Manifest this update: Sat 24 Jan 2026 14:53:38 +0000 Manifest next update: Sat 31 Jan 2026 14:53:38 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: xBcIuwLVBAkYtx16432IssXzFbxD8UYwNAkE8q7KbRo=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13584 (0x3510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Jan 24 14:53:38 2026 GMT Not After : Jan 31 14:53:38 2026 GMT Subject: CN=6974dcf2-2869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1b:41:ad:d8:f1:4f:65:1f:68:5e:5e:20:81: bf:74:cb:7e:ae:67:f8:36:d2:92:6f:e4:49:90:09: e0:e2:6b:5c:f6:b4:e9:44:40:92:4c:85:0c:02:c2: b7:3f:4f:b1:ef:39:73:e9:e2:ba:6c:a7:e2:c4:3a: c0:e2:3e:02:ab:5b:3a:4c:0f:f7:be:6f:25:95:48: 46:a2:d6:e1:f7:c0:c1:99:bb:29:0b:62:d0:90:cd: 34:6d:28:5c:1a:ef:19:90:fa:3a:e6:01:25:a4:3e: 53:56:b3:80:ed:9c:85:57:a3:36:c7:0e:e9:d8:71: 2d:b3:54:26:00:e8:df:e4:31:cf:f5:06:55:18:2c: 54:46:0d:8b:84:43:96:d9:2f:ce:29:dc:1e:d0:65: 83:9a:5a:e9:f7:46:40:27:a0:90:8c:7e:51:bc:a1: 73:e9:e9:35:39:8b:be:cf:5f:b5:2e:2f:58:39:80: 04:06:8e:51:09:97:64:cc:9a:e6:14:c7:89:6e:1f: 17:bc:35:78:e8:4b:4b:c8:a8:2d:7f:60:da:05:eb: 68:2a:5b:57:a0:47:7b:9f:dc:35:38:14:7d:e0:2e: 61:0c:1c:2e:b7:93:3b:21:63:37:c9:a2:cc:eb:2d: 1b:5a:2b:20:e4:a8:70:24:ba:17:46:3f:51:70:6c: d6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CF:3A:54:C2:59:4E:A1:A2:F1:95:5C:BB:7E:35:C6:7E:27:C8:6F X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d4:02:b5:fa:8e:b0:e2:ff:06:b8:4e:c6:c2:f4:67:7c:2f: e5:76:b4:ce:2f:72:11:e3:32:8a:8a:72:cd:f9:8c:bf:49:26: bb:8b:91:f7:65:54:fb:b7:6c:73:b7:85:7f:94:34:41:b3:1b: 45:7f:79:60:be:aa:60:1e:9f:55:4f:4a:6d:4a:ec:d2:08:ff: 30:c1:b4:2c:76:7a:df:2c:b4:c9:d2:f3:f9:64:d9:77:be:d8: a2:6d:37:0e:af:ff:52:c2:62:ac:51:9f:f8:7c:4e:7d:9e:5c: c0:3f:18:bb:5d:4a:7f:26:28:4a:c3:ce:1b:6b:3f:7a:d2:0f: 1d:0a:28:fa:f9:68:f7:27:f8:a4:61:7c:91:8f:e6:f8:f3:91: 54:21:f6:82:58:4a:62:6d:7c:0f:fc:70:09:18:7c:77:d6:ff: d3:11:33:b5:32:de:9f:f3:cf:39:4d:c8:ab:05:46:20:5f:b6: f6:a9:ab:ee:63:7a:09:bc:75:59:28:87:37:1e:95:54:e9:c3: 9c:b6:ae:7e:52:43:70:84:ad:85:3b:4c:34:68:bf:03:53:8f: cf:08:49:dd:fa:ce:5f:77:d3:8c:1d:24:9e:66:5b:d1:7f:58: 1c:cc:0e:31:63:af:35:9d:09:0f:6a:85:29:b8:08:de:f9:76: 78:87:30:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjYwMTI0MTQ1MzM4WhcNMjYwMTMxMTQ1MzM4WjAYMRYwFAYD VQQDDA02OTc0ZGNmMi0yODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRtBrdjxT2UfaF5eIIG/dMt+rmf4NtKSb+RJkAng4mtc9rTpRECSTIUMAsK3 P0+x7zlz6eK6bKfixDrA4j4Cq1s6TA/3vm8llUhGotbh98DBmbspC2LQkM00bShc Gu8ZkPo65gElpD5TVrOA7ZyFV6M2xw7p2HEts1QmAOjf5DHP9QZVGCxURg2LhEOW 2S/OKdwe0GWDmlrp90ZAJ6CQjH5RvKFz6ek1OYu+z1+1Li9YOYAEBo5RCZdkzJrm FMeJbh8XvDV46EtLyKgtf2DaBetoKltXoEd7n9w1OBR94C5hDBwut5M7IWM3yaLM 6y0bWisg5KhwJLoXRj9RcGzW6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjPOlTC WU6hovGVXLt+NcZ+J8hvMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa1AK1+o6w4v8GuE7GwvRnfC/ldrTOL3IR4zKKinLN+Yy/SSa7i5H3 ZVT7t2xzt4V/lDRBsxtFf3lgvqpgHp9VT0ptSuzSCP8wwbQsdnrfLLTJ0vP5ZNl3 vtiibTcOr/9SwmKsUZ/4fE59nlzAPxi7XUp/JihKw84baz960g8dCij6+Wj3J/ik YXyRj+b485FUIfaCWEpibXwP/HAJGHx31v/TETO1Mt6f8885TcirBUYgX7b2qavu Y3oJvHVZKIc3HpVU6cOctq5+UkNwhK2FO0w0aL8DU4/PCEnd+s5fd9OMHSSeZlvR f1gczA4xY681nQkPaoUpuAje+XZ4hzDb -----END CERTIFICATE-----Generated at Sun Jan 25 04:31:20 2026 by rpki-client