This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft File: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft (raw, json) Hash identifier: Lp0J2laihyfTPVnVAkRRBNfJ4tvFULg4jViSKD2ZxOM= Subject key identifier: D1:EE:E3:0E:14:EA:61:22:DB:14:6D:F2:4C:B2:FC:25:29:F4:EB:D9 Authority key identifier: 49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 Certificate issuer: /CN=A916156D/serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft Manifest number: 73 Signing time: Sun 25 Jan 2026 05:59:25 +0000 Manifest this update: Sun 25 Jan 2026 05:59:24 +0000 Manifest next update: Sun 01 Feb 2026 05:59:24 +0000 Files and hashes: 1: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl (hash: zxzrS9wzEWouLZ7nQIHh9NS+gWlpTGOoRzrBvygP2Cc=) 2: 850105504F3D11F0A0960F7CC4F9AE02.roa (hash: ycoxpKT+DpgcLoAUSWd+EWSk4JnPGKou98k0R1luHMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916156D, serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Validity Not Before: Jan 25 05:59:24 2026 GMT Not After : Feb 1 05:59:24 2026 GMT Subject: CN=6975b13c-a2dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2d:62:02:5b:e8:a4:69:90:c8:bf:04:12:52: 6e:98:f0:5d:32:62:19:d5:73:bb:04:75:b6:ab:1a: 4d:e8:ec:4a:60:d5:08:a6:7c:36:b9:a5:7b:c1:0c: 44:3e:65:44:9a:50:a7:77:bf:52:85:f3:da:8c:83: f8:bc:15:87:cc:3d:c8:5f:17:50:54:cc:cb:27:41: 4e:18:39:5b:c6:7a:38:9e:f7:16:2d:c6:d1:47:1f: f9:f2:cf:65:ab:a9:3e:3a:2a:a1:f3:3a:5b:70:a9: 74:d7:a9:a1:97:50:bb:3a:63:c9:53:56:e5:bf:24: b4:45:0b:c7:37:25:f1:bd:41:40:45:e1:50:6d:37: 94:ce:0d:ff:e3:f3:10:27:9b:7d:f0:f3:d5:23:cd: d3:59:5e:0d:d0:5c:f5:d3:88:9d:a8:fc:a6:e6:8d: c3:10:9c:0c:fb:04:96:ba:69:6d:5e:de:95:ed:5e: 5c:f7:ca:54:3b:a8:2e:e5:9a:2c:8f:8a:be:94:a8: 39:fd:0e:65:35:dd:25:46:46:c8:77:4a:02:1b:b7: 4f:f9:4d:30:33:03:3e:00:d1:33:c3:d3:a6:7f:68: e1:a4:1e:a9:db:c3:ef:ae:c1:eb:be:81:13:97:d5: c9:30:e5:83:08:f4:34:67:de:de:07:db:8a:46:11: d1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EE:E3:0E:14:EA:61:22:DB:14:6D:F2:4C:B2:FC:25:29:F4:EB:D9 X509v3 Authority Key Identifier: keyid:49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:1b:68:97:ed:42:20:29:7b:26:0d:da:ff:d8:84:4b:69:7e: ec:68:51:50:e5:fb:a6:58:27:52:a6:e9:8f:d9:ad:41:53:4d: cb:a7:f2:40:48:35:8a:e4:0e:dd:15:a5:5a:c5:59:4d:7d:33: 68:de:ab:cc:50:e0:ff:51:a8:2e:26:97:b0:de:9c:50:08:85: 2b:8b:01:dd:cc:a3:90:7a:ab:69:9c:e5:64:52:51:a1:14:15: 43:59:9f:da:02:b3:b6:a0:e0:4a:15:1b:e3:70:24:75:d2:fd: 45:c8:36:c7:b3:60:e9:cb:fc:33:93:36:b1:41:a7:48:07:0b: 81:d3:27:24:c6:bc:cb:61:69:23:01:f4:fc:94:13:99:d9:e5: 62:a9:ac:e6:a0:fb:6c:d4:3c:60:d7:7d:60:5c:a8:79:ef:28: 6f:47:d9:25:08:28:12:3a:a8:3d:50:49:14:20:f3:3f:a0:27: f0:aa:0a:01:4f:b0:91:2b:06:48:cc:8d:8c:15:c0:4e:49:a7: 4e:0d:68:a2:9b:de:fd:5d:ae:9d:0a:f6:55:77:a1:07:dd:8f: 9c:3d:00:5c:d3:c0:6e:ff:18:96:56:48:08:66:09:7f:93:03: d6:7e:e8:cd:f0:2b:68:91:29:80:36:6a:6f:8e:9b:02:31:46: a3:66:0d:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTU2RDExMC8GA1UEBRMoNDlEREQxRTRDNUE5RkM3NjY2MjZEMkZBM0I2NjM3REE4 MEVBMkZEMjAeFw0yNjAxMjUwNTU5MjRaFw0yNjAyMDEwNTU5MjRaMBgxFjAUBgNV BAMMDTY5NzViMTNjLWEyZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOLWICW+ikaZDIvwQSUm6Y8F0yYhnVc7sEdbarGk3o7Epg1QimfDa5pXvBDEQ+ ZUSaUKd3v1KF89qMg/i8FYfMPchfF1BUzMsnQU4YOVvGejie9xYtxtFHH/nyz2Wr qT46KqHzOltwqXTXqaGXULs6Y8lTVuW/JLRFC8c3JfG9QUBF4VBtN5TODf/j8xAn m33w89UjzdNZXg3QXPXTiJ2o/KbmjcMQnAz7BJa6aW1e3pXtXlz3ylQ7qC7lmiyP ir6UqDn9DmU13SVGRsh3SgIbt0/5TTAzAz4A0TPD06Z/aOGkHqnbw++uweu+gROX 1ckw5YMI9DRn3t4H24pGEdGFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0e7jDhTq YSLbFG3yTLL8JSn069kwHwYDVR0jBBgwFoAUSd3R5MWp/HZmJtL6O2Y32oDqL9Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNTZELzdDRDNERUFDNEU4 OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0habUp0TDZPMlkzMm9EcUw5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2QzUjVNV3BfSFptSnRMNk8yWTMyb0RxTDlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NTZELzdDRDNERUFDNEU4OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0ha bUp0TDZPMlkzMm9EcUw5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHEbaJftQiApeyYN2v/YhEtpfuxoUVDl+6ZYJ1Km6Y/ZrUFTTcun8kBI NYrkDt0VpVrFWU19M2jeq8xQ4P9RqC4ml7DenFAIhSuLAd3Mo5B6q2mc5WRSUaEU FUNZn9oCs7ag4EoVG+NwJHXS/UXINsezYOnL/DOTNrFBp0gHC4HTJyTGvMthaSMB 9PyUE5nZ5WKprOag+2zUPGDXfWBcqHnvKG9H2SUIKBI6qD1QSRQg8z+gJ/CqCgFP sJErBkjMjYwVwE5Jp04NaKKb3v1drp0K9lV3oQfdj5w9AFzTwG7/GJZWSAhmCX+T A9Z+6M3wK2iRKYA2am+OmwIxRqNmDUk= -----END CERTIFICATE-----Generated at Sun Jan 25 10:33:34 2026 by rpki-client