This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: VeHWVUB/4UkuJE18sURNiyqHnGQFPOzGX8djYp6npJo= Subject key identifier: 22:AD:5C:51:57:EC:5D:C7:40:7E:E0:CE:76:BE:E0:6C:A5:95:C9:4F Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 020B Signing time: Sat 24 Jan 2026 16:46:57 +0000 Manifest this update: Sat 24 Jan 2026 16:46:57 +0000 Manifest next update: Sat 31 Jan 2026 16:46:57 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: 5qrJip0PymiazPn2DETMKli77qB2pehV3V/OAa5I5gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Jan 24 16:46:57 2026 GMT Not After : Jan 31 16:46:57 2026 GMT Subject: CN=6974f781-051c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:f6:ae:c2:fa:13:34:d8:42:fc:27:bb:19: f3:a8:a9:42:52:63:5c:83:87:09:00:62:02:d2:c4: ed:a8:02:20:63:ad:2b:7f:26:d8:ce:83:ea:e6:1b: 6f:59:28:86:05:d4:68:87:38:91:10:cd:96:00:99: f4:1b:d3:62:b8:ff:39:15:7f:75:47:69:11:1a:01: 70:f0:15:32:89:0e:9f:93:4d:11:b0:09:7a:7b:2c: 74:1d:ed:db:dc:ac:43:a7:22:0d:45:b6:4a:f2:67: da:09:60:59:20:38:cf:35:23:f4:2d:dc:a5:b2:fb: d1:52:22:e1:1e:ee:dc:28:6b:62:30:d5:43:74:dc: 5f:e6:e9:e1:4b:f5:05:11:01:d9:15:ed:7c:09:47: a6:ed:50:7d:f0:28:7b:0f:43:9d:af:a1:cb:a4:3d: 3a:ce:60:e5:44:2d:f4:b3:b0:27:66:a2:fa:36:31: 70:0c:99:db:cc:f4:4f:96:a4:36:ce:63:7e:23:fe: 3e:51:52:90:fc:c2:ba:39:65:6d:4f:67:96:54:78: cf:c6:95:c1:74:5c:fb:ed:52:33:d4:81:91:f9:52: c3:8f:2b:20:c3:0e:75:89:ea:a7:4f:ba:0c:59:3f: da:cb:70:a5:74:5e:1b:53:15:b4:88:50:f9:84:7f: 1f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AD:5C:51:57:EC:5D:C7:40:7E:E0:CE:76:BE:E0:6C:A5:95:C9:4F X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:3c:d1:13:1a:58:a5:2f:40:4b:98:e0:a0:99:90:1d:43:42: 22:bb:b8:b8:d6:4f:2a:78:5e:c3:be:25:53:82:0e:d5:a1:b6: ce:25:47:8b:dc:76:b0:78:96:cf:cd:70:f4:cb:e8:31:6b:5b: 4d:23:24:f6:82:6c:e2:39:0c:43:36:8f:a7:d4:97:60:40:d8: 41:6c:c7:2f:e2:84:86:a1:7d:d4:2a:77:55:c3:79:2d:45:89: 9f:6b:35:7d:1c:75:9d:8e:93:8a:81:c4:39:23:72:68:69:91: a7:16:ae:71:55:91:c3:66:7b:79:e4:46:82:7d:8c:85:09:65: dd:71:80:48:d1:eb:7a:1c:0e:3b:32:08:f2:cd:f7:b5:4f:e1: 3a:f0:ef:8e:2f:9d:cd:36:4d:f2:59:93:2f:48:b3:0a:d9:c7: d0:b5:10:e2:2a:e6:b0:fb:4a:8f:1c:4b:f2:d4:e1:8d:31:a6: 65:dc:5e:cf:4d:2f:e1:dd:53:69:b3:1d:e2:5f:4d:6d:e2:0d: 7b:18:76:d3:dd:c4:2d:32:6c:7d:78:15:a0:5f:aa:34:0e:c2: 2c:b7:c4:f2:cf:8f:dd:1e:63:68:13:5b:93:73:4a:17:a8:b9: 52:fd:fa:31:c1:1e:d8:87:47:25:7a:18:fb:ae:4e:13:b7:aa: a0:89:b0:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjYwMTI0MTY0NjU3WhcNMjYwMTMxMTY0NjU3WjAYMRYwFAYD VQQDDA02OTc0Zjc4MS0wNTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9n2rsL6EzTYQvwnuxnzqKlCUmNcg4cJAGIC0sTtqAIgY60rfybYzoPq5htv WSiGBdRohziREM2WAJn0G9NiuP85FX91R2kRGgFw8BUyiQ6fk00RsAl6eyx0He3b 3KxDpyINRbZK8mfaCWBZIDjPNSP0LdylsvvRUiLhHu7cKGtiMNVDdNxf5unhS/UF EQHZFe18CUem7VB98Ch7D0Odr6HLpD06zmDlRC30s7AnZqL6NjFwDJnbzPRPlqQ2 zmN+I/4+UVKQ/MK6OWVtT2eWVHjPxpXBdFz77VIz1IGR+VLDjysgww51ieqnT7oM WT/ay3CldF4bUxW0iFD5hH8fiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKtXFFX 7F3HQH7gzna+4GyllclPMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARPNETGlilL0BLmOCgmZAdQ0Iiu7i41k8qeF7DviVTgg7VobbOJUeL 3HaweJbPzXD0y+gxa1tNIyT2gmziOQxDNo+n1JdgQNhBbMcv4oSGoX3UKndVw3kt RYmfazV9HHWdjpOKgcQ5I3JoaZGnFq5xVZHDZnt55EaCfYyFCWXdcYBI0et6HA47 Mgjyzfe1T+E68O+OL53NNk3yWZMvSLMK2cfQtRDiKuaw+0qPHEvy1OGNMaZl3F7P TS/h3VNpsx3iX01t4g17GHbT3cQtMmx9eBWgX6o0DsIst8Tyz4/dHmNoE1uTc0oX qLlS/foxwR7Yh0clehj7rk4Tt6qgibAQ -----END CERTIFICATE-----Generated at Sun Jan 25 13:50:55 2026 by rpki-client