This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: hWAb14NM0jBAHcx3kKeCTDYllwKEvlX9v6hqvXizZik= Subject key identifier: 21:D9:F4:E4:A0:EB:66:7F:D6:9B:9E:DB:81:92:6D:20:A2:38:61:26 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A4B Signing time: Sat 24 Jan 2026 19:08:34 +0000 Manifest this update: Sat 24 Jan 2026 19:08:34 +0000 Manifest next update: Sat 31 Jan 2026 19:08:34 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: C2qxNMHtVy7kwufxgkboNVvNk80XuG3F3Mrq+NvH00M=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Jan 24 19:08:34 2026 GMT Not After : Jan 31 19:08:34 2026 GMT Subject: CN=697518b2-ba5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3d:c7:13:27:93:f8:7a:c7:6b:11:7a:f9:1a: 35:8e:46:9b:e2:50:fb:13:f8:61:cc:eb:a5:26:26: 26:a6:1e:7c:01:90:6b:de:32:92:82:0c:32:85:b7: f5:25:29:66:2d:11:2e:94:77:d8:37:ec:0e:ea:b5: 4b:95:69:49:f1:4a:35:e1:2c:f3:23:81:59:07:a9: e1:cb:9f:a0:e5:25:de:7a:5d:48:9a:49:c7:d6:2d: d9:a8:e0:a5:dc:3e:58:ae:91:b0:81:f5:72:2f:e7: 40:12:59:ff:54:52:82:72:51:9b:3a:95:17:5c:5a: 8f:14:59:3b:29:b5:9b:c2:63:22:98:6a:42:c7:b9: da:b8:d5:58:dc:b0:98:b2:84:fa:59:7e:b2:12:0f: 6d:42:b7:49:b2:9e:9f:96:05:5d:1b:93:eb:8e:f0: 96:ef:0a:e9:52:b7:ba:10:1c:f0:89:ac:27:8a:96: a9:3b:2d:5c:32:2d:0e:8a:b2:a0:13:f1:c8:6f:41: 9b:d7:d5:c4:27:47:eb:8c:af:63:07:fa:3e:fe:0e: 99:24:b3:64:c9:aa:4b:69:e9:2c:8e:96:fd:a5:dc: 25:f1:73:48:53:e2:a4:90:93:90:25:25:b7:82:bf: d4:ff:72:07:96:04:43:85:3c:ab:bf:b5:ca:1d:26: 1b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D9:F4:E4:A0:EB:66:7F:D6:9B:9E:DB:81:92:6D:20:A2:38:61:26 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a1:c8:59:cd:65:b8:b3:e7:e4:cf:4f:5d:a8:6f:cc:01:43: 7c:52:49:54:e4:a0:08:db:d9:88:04:95:9f:11:92:6d:15:f5: 49:50:d6:09:bf:9a:16:3f:d5:5b:49:c6:22:3f:e3:c3:a7:15: 2b:24:a5:d5:29:40:8e:3d:b0:c0:bd:35:ca:46:68:8b:60:b1: 46:f4:47:2a:40:3d:6d:f2:40:d6:be:21:1b:c1:e1:0e:ba:fc: 64:53:94:c2:93:2b:e1:85:0a:5d:a6:13:6a:61:a7:7e:fe:7e: 8d:82:a6:f0:6e:a3:e5:f8:f9:c1:24:c2:72:3b:bc:2e:f5:2d: 97:32:cd:df:fb:51:42:63:c2:76:ca:be:fb:95:de:16:47:f4: aa:b6:87:d6:e9:39:5c:df:8a:7f:7f:e0:74:5c:73:52:51:33: e9:95:19:a9:d9:a6:cc:f6:52:e1:aa:fd:46:74:14:62:9c:30: 71:85:71:78:46:f7:54:cf:37:ec:a4:14:d3:dc:46:5a:c4:cf: 2a:c2:6e:fc:81:d5:d5:2a:58:14:32:da:25:b7:06:4a:2e:9d: 7c:bf:e9:a9:a6:85:f4:dd:5d:64:18:db:c5:8b:72:95:a9:12: cc:bd:d1:d4:08:81:ab:ae:b3:e8:4f:84:0c:af:2d:42:79:14: 6d:82:94:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjYwMTI0MTkwODM0WhcNMjYwMTMxMTkwODM0WjAYMRYwFAYD VQQDDA02OTc1MThiMi1iYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT3HEyeT+HrHaxF6+Ro1jkab4lD7E/hhzOulJiYmph58AZBr3jKSggwyhbf1 JSlmLREulHfYN+wO6rVLlWlJ8Uo14SzzI4FZB6nhy5+g5SXeel1ImknH1i3ZqOCl 3D5YrpGwgfVyL+dAEln/VFKCclGbOpUXXFqPFFk7KbWbwmMimGpCx7nauNVY3LCY soT6WX6yEg9tQrdJsp6flgVdG5PrjvCW7wrpUre6EBzwiawnipapOy1cMi0OirKg E/HIb0Gb19XEJ0frjK9jB/o+/g6ZJLNkyapLaeksjpb9pdwl8XNIU+KkkJOQJSW3 gr/U/3IHlgRDhTyrv7XKHSYbywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHZ9OSg 62Z/1pue24GSbSCiOGEmMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeochZzWW4s+fkz09dqG/MAUN8UklU5KAI29mIBJWfEZJtFfVJUNYJ v5oWP9VbScYiP+PDpxUrJKXVKUCOPbDAvTXKRmiLYLFG9EcqQD1t8kDWviEbweEO uvxkU5TCkyvhhQpdphNqYad+/n6NgqbwbqPl+PnBJMJyO7wu9S2XMs3f+1FCY8J2 yr77ld4WR/SqtofW6Tlc34p/f+B0XHNSUTPplRmp2abM9lLhqv1GdBRinDBxhXF4 RvdUzzfspBTT3EZaxM8qwm78gdXVKlgUMtoltwZKLp18v+mppoX03V1kGNvFi3KV qRLMvdHUCIGrrrPoT4QMry1CeRRtgpSM -----END CERTIFICATE-----Generated at Sun Jan 25 15:57:45 2026 by rpki-client