This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: ktBCTsZ2OacnmBaeeMoqBkJd200w7L52tMUqtIV6CfA= Subject key identifier: 4F:4E:21:4A:54:8D:F0:EC:19:05:77:EB:B8:D2:BC:41:F7:18:83:2C Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 085A Signing time: Sat 24 Jan 2026 20:05:32 +0000 Manifest this update: Sat 24 Jan 2026 20:05:32 +0000 Manifest next update: Sat 31 Jan 2026 20:05:32 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: ihb2dHwMf5U5hnZCoJDWz3rMZbgkqkfsXpb5Sq2gY/I=) 2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: DuU/zvCDCUg2TONY7brDsE/++qWvSBYjnL7XCdcyag0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7, serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Jan 24 20:05:32 2026 GMT Not After : Jan 31 20:05:32 2026 GMT Subject: CN=6975260c-b773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:56:85:b4:9e:7d:aa:c6:cf:b5:a1:74:3b:c5: d6:e9:77:c1:2d:20:03:79:c9:49:45:be:1b:8e:65: 29:20:49:0d:9a:fe:42:cd:9e:86:1d:94:be:d9:fb: a2:57:bd:45:b2:0f:02:fa:b8:46:26:b8:8c:12:58: e5:ed:24:cf:8a:58:d7:d4:40:b3:06:7f:63:8a:2e: 52:d5:23:b5:04:2b:99:ac:e9:26:44:bc:d3:7e:50: 10:62:87:87:eb:7d:a2:1a:43:11:0a:e9:4f:c3:3e: 13:27:69:ff:61:3b:3d:ce:01:64:41:96:35:e7:9a: 64:69:c6:56:35:b4:f2:f8:31:0b:8f:96:c2:95:4f: 6d:f8:65:49:0a:3c:e4:c3:e3:f6:ce:a2:d7:46:4e: f8:12:ef:48:7a:6a:f0:0d:3b:57:53:e9:4a:d1:ff: 31:8f:67:a4:23:d1:9b:4d:ae:f0:dd:2d:3d:80:5f: b3:9a:70:db:40:e2:32:72:50:e3:27:7b:83:0b:0c: d6:bc:75:d9:11:3c:7b:68:b0:5e:de:d0:ac:db:99: e3:f8:c3:70:d1:d0:78:88:b3:54:31:bc:25:91:21: 3b:b4:75:50:68:27:cb:d9:9f:16:f5:cd:2b:e6:1e: f4:43:20:94:42:51:84:be:4d:01:c0:c3:38:26:43: 31:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:4E:21:4A:54:8D:F0:EC:19:05:77:EB:B8:D2:BC:41:F7:18:83:2C X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:27:1c:0c:ac:09:b1:25:c8:29:12:4c:88:37:89:29:a8:fa: 84:86:3e:7a:cb:17:df:a2:8f:f3:10:d7:56:30:91:55:c1:18: f3:44:2a:b4:17:72:1e:68:28:44:83:c5:54:f5:6c:e8:61:43: e0:54:a8:c1:32:cd:d7:0c:69:3e:9b:b3:7d:44:31:3a:37:5d: 1f:6c:70:00:cb:fc:c7:1a:63:db:72:5e:f7:20:60:1d:35:ef: b4:21:30:03:40:72:0b:18:23:4c:11:91:cf:33:eb:f2:56:ad: 80:df:c7:60:de:ee:e4:a7:de:05:25:61:9c:f4:22:9d:18:d3: 51:ae:3e:e6:ae:74:dd:9b:7a:52:7c:9b:7a:cd:a3:f6:22:a0: c0:11:e6:9e:7c:0d:35:46:fd:1a:27:d9:9c:4c:22:30:58:0e: 10:cc:0a:f1:b7:ce:f1:b0:8d:6b:c5:5e:cc:3b:cf:91:5e:25: f2:b6:7c:45:51:44:ee:53:15:ba:67:1d:0b:e5:89:1b:b2:a5: 6a:4d:ee:c6:fd:c7:53:84:19:a1:04:47:9b:f0:e4:5a:42:c3: d3:8b:e0:23:4a:82:fa:8d:cf:0c:3d:a2:0e:d2:06:ed:76:2a: b9:fc:11:29:d9:ea:2e:05:00:b5:75:51:b8:e9:54:77:09:ba: 2a:27:45:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjYwMTI0MjAwNTMyWhcNMjYwMTMxMjAwNTMyWjAYMRYwFAYD VQQDDA02OTc1MjYwYy1iNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplaFtJ59qsbPtaF0O8XW6XfBLSADeclJRb4bjmUpIEkNmv5CzZ6GHZS+2fui V71Fsg8C+rhGJriMEljl7STPiljX1ECzBn9jii5S1SO1BCuZrOkmRLzTflAQYoeH 632iGkMRCulPwz4TJ2n/YTs9zgFkQZY155pkacZWNbTy+DELj5bClU9t+GVJCjzk w+P2zqLXRk74Eu9IemrwDTtXU+lK0f8xj2ekI9GbTa7w3S09gF+zmnDbQOIyclDj J3uDCwzWvHXZETx7aLBe3tCs25nj+MNw0dB4iLNUMbwlkSE7tHVQaCfL2Z8W9c0r 5h70QyCUQlGEvk0BwMM4JkMx0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9OIUpU jfDsGQV367jSvEH3GIMsMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLJxwMrAmxJcgpEkyIN4kpqPqEhj56yxffoo/zENdWMJFVwRjzRCq0 F3IeaChEg8VU9WzoYUPgVKjBMs3XDGk+m7N9RDE6N10fbHAAy/zHGmPbcl73IGAd Ne+0ITADQHILGCNMEZHPM+vyVq2A38dg3u7kp94FJWGc9CKdGNNRrj7mrnTdm3pS fJt6zaP2IqDAEeaefA01Rv0aJ9mcTCIwWA4QzArxt87xsI1rxV7MO8+RXiXytnxF UUTuUxW6Zx0L5YkbsqVqTe7G/cdThBmhBEeb8ORaQsPTi+AjSoL6jc8MPaIO0gbt diq5/BEp2eouBQC1dVG46VR3CboqJ0UW -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:16 2026 by rpki-client