This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: Pjmyl/bsNk1ijT/GksBM7Zxwa0xoSz37UxOkPF+a8J8= Subject key identifier: 3D:BA:1C:B2:42:8F:D4:DD:5F:6D:2A:67:8C:2E:08:16:05:90:DE:D9 Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 06F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 0825 Signing time: Sat 24 Jan 2026 20:03:30 +0000 Manifest this update: Sat 24 Jan 2026 20:03:29 +0000 Manifest next update: Sat 31 Jan 2026 20:03:29 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: M6JsnzV4COd5ANlHtsRnq3tvD1AXKbJx2NEWkedy6Do=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: q9QvCRCxySgsmxHUlB3yfC5si2bvzkIxFoqx5RnCVEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: Jan 24 20:03:29 2026 GMT Not After : Jan 31 20:03:29 2026 GMT Subject: CN=69752592-d6ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:47:14:24:f8:b6:29:c7:35:c8:b9:ea:59:fa: 50:5d:c0:87:df:39:ca:72:1b:63:e1:c7:f0:2e:c3: 9a:7f:5e:27:d6:c6:39:3e:47:7a:7b:fa:aa:4e:2e: 34:74:5a:0c:54:49:59:76:9f:c1:0c:26:27:e2:4f: 17:b1:22:0c:8c:ee:29:e3:0b:7f:d5:d3:55:d8:71: da:17:17:2a:63:17:55:30:3c:e2:5f:f8:8f:eb:cb: cb:62:33:72:66:44:0f:46:2e:cc:4d:af:31:24:11: 9b:25:8b:c6:cb:f6:c1:a6:8e:e4:c9:8e:b7:ba:87: 1b:cc:cb:b0:60:33:fb:56:36:db:44:bc:50:f4:5c: ae:40:84:ee:67:1b:51:94:42:25:5b:f0:7b:6f:c4: 9a:78:54:db:b0:9f:63:70:63:b1:22:61:f3:01:3d: dc:ef:a4:88:78:d5:4f:4d:13:ac:d9:46:dc:1b:8c: f0:63:e9:79:eb:30:16:57:25:ec:49:69:a1:56:7d: 74:3d:ba:9a:c7:0c:af:4b:e0:c3:b0:9d:9d:82:38: 42:d0:c7:78:08:7f:e1:88:16:34:f0:3d:a2:a3:b1: 6b:86:80:74:16:c2:b3:a6:4d:86:32:e4:64:44:ca: 34:8f:8c:54:b5:0a:1f:4f:7c:5a:e9:06:02:02:ec: f7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BA:1C:B2:42:8F:D4:DD:5F:6D:2A:67:8C:2E:08:16:05:90:DE:D9 X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:5a:22:c6:b4:41:b4:22:7b:9f:11:f1:33:2e:97:14:f4:ff: fd:0c:be:a8:ec:66:4f:8c:b8:75:aa:a3:59:84:8f:5b:e4:e7: 07:c3:d7:9a:57:47:c3:a1:2d:2b:3a:36:ee:48:c8:ed:93:b0: 37:ce:74:ea:37:d6:24:6d:28:6d:89:f0:c0:77:e3:99:e4:e4: 56:b8:eb:8f:80:50:cb:69:5b:3a:e7:3d:99:c0:b0:1a:aa:76: d6:a1:3e:15:9c:6e:aa:c6:72:2a:d9:47:da:4b:e2:01:b3:8f: 19:21:3d:96:f9:6a:4a:49:1c:55:95:76:fb:6c:a4:0a:03:54: 43:ac:8c:c2:09:12:32:f1:a7:3c:f6:4b:75:57:65:d6:12:75: de:9d:58:39:9e:99:d5:ae:4b:ef:3b:7c:fb:e6:ba:4a:32:3f: d2:7d:cb:0c:24:35:3e:37:8d:0c:37:ab:51:41:28:7b:0a:ec: a7:93:57:eb:08:c8:41:88:53:30:5b:73:ab:32:b2:76:3d:35: ff:e2:72:9c:fa:2b:77:ac:1b:46:e9:2e:ad:e4:61:2e:1a:a3: 0c:52:1b:32:2d:57:91:81:23:50:36:d3:3c:33:dc:fc:16:b2: 02:63:43:b1:74:a8:ff:63:b2:88:56:9a:b5:2b:4b:5f:8f:7a: b6:b8:91:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjYwMTI0MjAwMzI5WhcNMjYwMTMxMjAwMzI5WjAYMRYwFAYD VQQDDA02OTc1MjU5Mi1kNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkcUJPi2Kcc1yLnqWfpQXcCH3znKchtj4cfwLsOaf14n1sY5Pkd6e/qqTi40 dFoMVElZdp/BDCYn4k8XsSIMjO4p4wt/1dNV2HHaFxcqYxdVMDziX/iP68vLYjNy ZkQPRi7MTa8xJBGbJYvGy/bBpo7kyY63uocbzMuwYDP7VjbbRLxQ9FyuQITuZxtR lEIlW/B7b8SaeFTbsJ9jcGOxImHzAT3c76SIeNVPTROs2UbcG4zwY+l56zAWVyXs SWmhVn10PbqaxwyvS+DDsJ2dgjhC0Md4CH/hiBY08D2io7FrhoB0FsKzpk2GMuRk RMo0j4xUtQofT3xa6QYCAuz3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD26HLJC j9TdX20qZ4wuCBYFkN7ZMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPWiLGtEG0InufEfEzLpcU9P/9DL6o7GZPjLh1qqNZhI9b5OcHw9ea V0fDoS0rOjbuSMjtk7A3znTqN9YkbShtifDAd+OZ5ORWuOuPgFDLaVs65z2ZwLAa qnbWoT4VnG6qxnIq2UfaS+IBs48ZIT2W+WpKSRxVlXb7bKQKA1RDrIzCCRIy8ac8 9kt1V2XWEnXenVg5npnVrkvvO3z75rpKMj/SfcsMJDU+N40MN6tRQSh7Cuynk1fr CMhBiFMwW3OrMrJ2PTX/4nKc+it3rBtG6S6t5GEuGqMMUhsyLVeRgSNQNtM8M9z8 FrICY0OxdKj/Y7KIVpq1K0tfj3q2uJHa -----END CERTIFICATE-----Generated at Sun Jan 25 04:27:10 2026 by rpki-client