This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: UgRmiXxKvMcOpApfkUYOpo18IGR8TudnE0E5rU3kirc= Subject key identifier: 36:D2:03:7D:E2:94:BB:BC:D0:16:38:0C:5D:C6:40:30:40:65:7A:A1 Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 029B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 0294 Signing time: Sun 25 Jan 2026 00:43:08 +0000 Manifest this update: Sun 25 Jan 2026 00:43:07 +0000 Manifest next update: Sun 01 Feb 2026 00:43:07 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: XOSmYvDCPE29anYJSDbY2XpvfpawtkCp7CiV31i84QM=) 2: 9BDA59F69C8C11F0A27C535EC4F9AE02.roa (hash: tcpEfQimbgGgCKxs43ap0j00HaFFUo0cjpbDGWWFteI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Jan 25 00:43:07 2026 GMT Not After : Feb 1 00:43:07 2026 GMT Subject: CN=6975671c-b694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:be:29:ac:bc:08:da:e5:e9:a5:63:98:a7: 3a:bf:01:4b:84:66:c3:a5:0a:3a:b3:3d:bd:9f:32: c6:6d:b8:3b:8d:77:3d:26:82:7c:0b:3b:fa:e4:de: a4:21:ca:33:49:67:c1:27:f4:7a:78:07:e1:c3:64: 17:1c:91:4c:57:0b:96:f3:f9:a4:da:52:3b:96:cd: df:9c:dd:d7:69:ce:9a:12:18:2f:13:d2:d9:81:f6: 0b:5b:77:e8:46:75:57:41:41:11:c3:7a:2a:fe:a1: 1a:d9:30:2a:55:8f:39:de:9d:e7:79:96:72:35:3f: 30:4b:ef:bd:23:83:fd:75:29:37:39:00:a9:86:dc: c5:6d:4e:23:c9:63:27:37:da:ef:5f:cc:55:1b:59: 1f:72:7f:e9:e5:2c:d9:60:49:67:f4:fa:b9:21:95: 00:2a:a0:a1:ae:4a:a2:4c:17:ee:2d:4f:d8:d7:58: bf:24:f1:2c:e1:7c:14:8a:8b:75:f5:2d:17:db:76: 81:38:63:20:bf:da:da:0f:47:73:a5:e0:ba:f3:78: 0d:7f:f4:78:8a:68:71:e6:72:ff:cf:66:5e:19:29: ed:fd:3f:c7:8f:41:ac:f9:ce:9a:0d:68:e1:18:a0: 07:d0:0a:99:a4:56:e5:8c:75:ff:49:fc:e9:a6:9e: 9b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D2:03:7D:E2:94:BB:BC:D0:16:38:0C:5D:C6:40:30:40:65:7A:A1 X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ae:9f:23:d9:e0:d9:45:3a:8a:54:ab:79:fe:90:8d:2e:71: 9b:a8:4b:65:98:b4:1a:7a:e6:ce:67:2b:63:44:d7:3f:87:d1: 01:bd:e2:9c:36:95:21:dc:2c:74:e5:c8:9d:a6:14:1b:3e:cb: 12:48:8c:53:6c:42:2e:a2:84:e3:c3:02:e2:cc:54:e7:d9:f5: d5:0b:45:87:7d:3b:46:d9:2e:07:43:65:16:a4:06:05:46:0a: c8:db:3f:cf:33:51:cb:b8:dd:4f:83:43:21:3b:ad:44:70:61: 17:b8:61:cf:f4:6a:14:17:35:b1:66:f5:5f:90:05:5c:1e:bd: 80:f7:30:a4:d1:a5:24:1c:9b:48:50:03:fc:6e:79:e4:ee:25: 0e:d7:cb:36:12:d0:a6:99:27:a9:b5:49:c0:5d:46:c7:b7:0e: d9:44:15:db:3e:3b:22:a7:07:32:e8:63:b4:e1:3f:54:18:1a: 76:24:35:a7:29:66:a2:6d:5f:03:63:0c:74:8a:f3:63:03:c5: e7:34:bf:5d:ab:65:2e:a2:36:72:61:ea:0b:29:ca:50:d1:94: fc:e0:bd:68:ac:e3:96:ef:50:29:76:db:0c:85:b3:4b:56:d1: 82:6b:0d:a0:b1:c5:02:98:19:55:cc:92:2d:54:63:f6:18:e4: 57:80:7d:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjYwMTI1MDA0MzA3WhcNMjYwMjAxMDA0MzA3WjAYMRYwFAYD VQQDDA02OTc1NjcxYy1iNjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/m+Kay8CNrl6aVjmKc6vwFLhGbDpQo6sz29nzLGbbg7jXc9JoJ8Czv65N6k IcozSWfBJ/R6eAfhw2QXHJFMVwuW8/mk2lI7ls3fnN3Xac6aEhgvE9LZgfYLW3fo RnVXQUERw3oq/qEa2TAqVY853p3neZZyNT8wS++9I4P9dSk3OQCphtzFbU4jyWMn N9rvX8xVG1kfcn/p5SzZYEln9Pq5IZUAKqChrkqiTBfuLU/Y11i/JPEs4XwUiot1 9S0X23aBOGMgv9raD0dzpeC683gNf/R4imhx5nL/z2ZeGSnt/T/Hj0Gs+c6aDWjh GKAH0AqZpFbljHX/Sfzppp6b1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbSA33i lLu80BY4DF3GQDBAZXqhMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6rp8j2eDZRTqKVKt5/pCNLnGbqEtlmLQaeubOZytjRNc/h9EBveKc NpUh3Cx05cidphQbPssSSIxTbEIuooTjwwLizFTn2fXVC0WHfTtG2S4HQ2UWpAYF RgrI2z/PM1HLuN1Pg0MhO61EcGEXuGHP9GoUFzWxZvVfkAVcHr2A9zCk0aUkHJtI UAP8bnnk7iUO18s2EtCmmSeptUnAXUbHtw7ZRBXbPjsipwcy6GO04T9UGBp2JDWn KWaibV8DYwx0ivNjA8XnNL9dq2UuojZyYeoLKcpQ0ZT84L1orOOW71ApdtsMhbNL VtGCaw2gscUCmBlVzJItVGP2GORXgH1G -----END CERTIFICATE-----Generated at Sun Jan 25 10:47:27 2026 by rpki-client