This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: +nmXZj6nR5aPOXUXQAhvkz69DAkCk13AaAjakrX88ho= Subject key identifier: 48:A5:63:67:F7:85:36:EE:98:65:98:21:90:8E:76:B6:80:D4:12:37 Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0CBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0CB6 Signing time: Sat 24 Jan 2026 17:57:36 +0000 Manifest this update: Sat 24 Jan 2026 17:57:35 +0000 Manifest next update: Sat 31 Jan 2026 17:57:35 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: nWDu9KzL2LhCWoYgXUydAdxYobCpfcSOwBGx8+tNuXQ=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: I2P5GKiYO+A0JWj3FCOtq5Wyspf+9wzs4i0nVaTxKFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: Jan 24 17:57:35 2026 GMT Not After : Jan 31 17:57:35 2026 GMT Subject: CN=69750810-0e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:83:3d:83:4f:58:43:b1:74:cc:00:2b:e8:9d: 21:40:bd:37:32:fc:a3:ab:03:55:a3:f6:59:5b:c9: d3:be:15:73:f0:9d:89:61:d9:13:e8:fd:1a:97:36: 1d:5a:13:c3:58:53:f7:b8:f5:24:f1:06:e4:f3:a1: 34:11:3e:f6:af:65:28:dd:95:2e:c1:77:07:06:a0: e6:e9:79:fb:6b:dc:29:d1:cc:0e:b6:e1:66:c1:24: 74:ee:f5:b9:65:2a:9b:3b:d6:dd:ab:95:0a:80:1e: 75:84:d7:9f:f4:d8:bb:c1:89:ed:c6:01:72:0c:19: 54:29:52:69:0d:96:18:84:bb:a9:1f:db:5b:c7:fa: 82:c1:9c:e4:a3:a8:c9:c0:b0:b1:ad:cb:63:8a:02: ea:15:83:a4:86:21:1e:47:04:2d:91:a4:dc:ef:dc: 44:01:ff:22:60:a5:f5:0f:9c:f3:d8:ba:47:c6:f7: 16:d7:cb:fb:7f:ff:d7:d2:10:c0:a5:a2:9d:04:31: e2:ea:89:2b:e6:af:c9:86:f3:3b:65:9e:2e:88:e2: 04:42:ad:38:7f:02:52:74:4a:a8:e2:6c:8c:58:c0: c0:27:c0:1d:2e:ef:3e:2d:79:5d:af:78:12:3e:83: ef:c1:97:eb:3d:ca:52:7c:e1:d4:51:74:27:38:98: 29:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A5:63:67:F7:85:36:EE:98:65:98:21:90:8E:76:B6:80:D4:12:37 X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f5:7a:72:a9:15:70:38:bb:30:31:6a:58:49:e9:da:67:8f:7c: 9a:fa:f9:7c:0b:c2:8d:45:55:28:65:79:a2:09:c6:51:68:ee: 03:a3:3e:33:d7:fc:a9:f2:b1:80:7a:eb:5a:5b:44:16:e6:3b: fc:d0:1e:a6:d1:17:ba:45:88:3e:2a:2b:f6:78:54:a5:26:e1: 91:52:4b:db:90:49:40:a1:f6:68:3f:5c:97:73:0b:08:b6:09: 08:9a:b7:31:ac:36:c0:73:92:4f:a9:09:e8:e1:32:4a:60:d0: ba:95:3d:67:42:31:58:29:8b:4e:63:49:8c:1f:a0:a3:a4:3e: ab:9f:9e:4f:c9:bc:97:f8:a3:fe:77:e6:a9:81:fb:24:5e:96: fa:81:49:36:5d:c4:19:47:c5:74:75:79:d6:99:eb:85:ff:83: df:9f:1d:03:c0:23:71:bd:7b:f6:6d:b5:42:ec:bd:f2:f6:3a: 7d:b8:d2:62:bc:cf:98:9c:0e:07:45:8c:b6:d4:6c:05:24:2e: b8:20:40:e7:b5:b5:67:80:26:0e:4f:a8:f5:51:58:9c:52:3e: ad:43:52:01:8b:88:75:b3:76:ea:72:a4:0d:24:4d:49:08:6f: 8a:1c:df:e8:c2:e0:0f:30:d0:52:28:34:fe:8a:35:fd:20:35: a5:12:b6:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjYwMTI0MTc1NzM1WhcNMjYwMTMxMTc1NzM1WjAYMRYwFAYD VQQDDA02OTc1MDgxMC0wZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YM9g09YQ7F0zAAr6J0hQL03MvyjqwNVo/ZZW8nTvhVz8J2JYdkT6P0alzYd WhPDWFP3uPUk8Qbk86E0ET72r2Uo3ZUuwXcHBqDm6Xn7a9wp0cwOtuFmwSR07vW5 ZSqbO9bdq5UKgB51hNef9Ni7wYntxgFyDBlUKVJpDZYYhLupH9tbx/qCwZzko6jJ wLCxrctjigLqFYOkhiEeRwQtkaTc79xEAf8iYKX1D5zz2LpHxvcW18v7f//X0hDA paKdBDHi6okr5q/JhvM7ZZ4uiOIEQq04fwJSdEqo4myMWMDAJ8AdLu8+LXldr3gS PoPvwZfrPcpSfOHUUXQnOJgp9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEilY2f3 hTbumGWYIZCOdraA1BI3MB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQD1enKpFXA4uzAxalhJ6dpnj3ya+vl8C8KNRVUoZXmiCcZRaO4Doz4z 1/yp8rGAeutaW0QW5jv80B6m0Re6RYg+Kiv2eFSlJuGRUkvbkElAofZoP1yXcwsI tgkImrcxrDbAc5JPqQno4TJKYNC6lT1nQjFYKYtOY0mMH6CjpD6rn55PybyX+KP+ d+apgfskXpb6gUk2XcQZR8V0dXnWmeuF/4Pfnx0DwCNxvXv2bbVC7L3y9jp9uNJi vM+YnA4HRYy21GwFJC64IEDntbVngCYOT6j1UVicUj6tQ1IBi4h1s3bqcqQNJE1J CG+KHN/owuAPMNBSKDT+ijX9IDWlErZL -----END CERTIFICATE-----Generated at Sun Jan 25 19:07:50 2026 by rpki-client