This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: ShKTwVMclFl5IYxNnUewlsrX6gdll8hxvwZhxIn8fD0= Subject key identifier: A3:4A:DA:82:D1:04:95:EB:97:AC:41:7F:52:39:8F:DA:D8:5C:10:7E Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 05AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 05A5 Signing time: Sat 24 Jan 2026 22:24:22 +0000 Manifest this update: Sat 24 Jan 2026 22:24:21 +0000 Manifest next update: Sat 31 Jan 2026 22:24:21 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: a6dlBLyvGHmZkCmmTj8RC+TdmrqTcVoDaSgDCPwxA/U=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1450 (0x5aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Jan 24 22:24:21 2026 GMT Not After : Jan 31 22:24:21 2026 GMT Subject: CN=69754696-faa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:94:1a:0d:42:f7:ee:d0:b0:bb:88:ee:2f:18: b1:d5:74:b7:ac:53:67:41:fb:81:35:30:cf:62:71: 26:d8:0b:e9:27:fc:34:b1:99:25:e3:8b:3f:78:77: 6f:4e:3b:8c:a4:77:b3:34:ae:24:a8:5d:9c:36:2d: d9:9b:04:c5:b4:c8:fe:dd:7e:d6:93:8c:28:1a:2c: 5f:90:92:e9:37:ff:ea:54:20:a1:d9:a9:e8:d3:a3: 07:0c:b7:8e:3b:23:df:35:d3:9b:00:ca:9f:bc:09: eb:3e:55:f5:52:87:a8:56:c0:16:54:d1:8b:a1:48: 31:39:6e:33:18:e7:20:4b:4b:4d:c5:f0:4e:94:3d: a8:1c:90:70:a8:c0:62:78:3e:87:4f:f4:51:32:a2: 58:65:41:3d:89:0b:e4:1b:a9:e9:f7:26:29:c5:c7: 93:5b:63:90:c7:70:11:b4:d4:97:1d:d7:7f:5b:ba: 67:39:48:f8:5b:44:91:09:2d:5e:9a:0a:50:06:67: 62:44:77:6a:54:17:07:c4:19:66:76:ca:f3:4f:1d: 98:34:ca:91:f6:3b:f1:fb:b6:6d:d6:ab:66:5c:41: 87:0f:53:c2:84:f6:c0:fb:c5:da:7a:65:b8:de:34: ca:4f:87:a4:30:fd:07:25:e9:7a:bb:52:62:38:24: 5d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4A:DA:82:D1:04:95:EB:97:AC:41:7F:52:39:8F:DA:D8:5C:10:7E X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f8:9a:c9:64:8e:39:a7:a0:d0:f3:40:af:38:fb:32:47:da: aa:1a:9f:a3:e6:fc:19:2d:65:03:1c:6b:0e:68:f6:88:db:f9: 84:fc:ef:57:78:cc:e7:7b:e1:4e:4a:88:26:33:1c:67:ce:67: 26:e5:9a:b7:1f:7e:83:64:ef:b5:10:dc:2e:40:df:e8:a6:8d: 2b:88:55:bb:b3:40:52:6e:09:54:60:3b:80:f9:1b:1a:cc:dc: 29:72:9f:bf:f2:38:04:87:9d:d5:47:44:ec:03:21:c0:21:c2: c6:3d:30:ba:98:18:15:ca:4f:06:38:c1:32:d6:48:11:75:73: c6:84:e2:31:f9:c1:a9:24:9d:c1:bd:f7:da:f4:54:86:01:01: 5a:13:54:af:0b:66:e5:03:80:1c:bf:77:f7:6d:f7:46:56:0f: 46:12:20:cc:0b:b3:6b:59:db:3d:6e:4c:b5:fa:62:6e:98:a1: 0e:ba:34:89:0b:41:33:e8:bf:8c:f4:a5:8e:d6:36:c4:ea:b1: 47:7b:71:26:e1:bf:f1:38:28:ca:b0:2c:59:65:86:0c:8d:e5: db:85:80:8c:1c:90:8f:2f:19:3a:10:9d:e5:e8:5e:a4:02:13: 89:d5:a2:86:57:de:65:27:8c:99:04:48:63:8b:09:d3:24:2c: e7:76:0f:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjYwMTI0MjIyNDIxWhcNMjYwMTMxMjIyNDIxWjAYMRYwFAYD VQQDDA02OTc1NDY5Ni1mYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5QaDUL37tCwu4juLxix1XS3rFNnQfuBNTDPYnEm2AvpJ/w0sZkl44s/eHdv TjuMpHezNK4kqF2cNi3ZmwTFtMj+3X7Wk4woGixfkJLpN//qVCCh2ano06MHDLeO OyPfNdObAMqfvAnrPlX1UoeoVsAWVNGLoUgxOW4zGOcgS0tNxfBOlD2oHJBwqMBi eD6HT/RRMqJYZUE9iQvkG6np9yYpxceTW2OQx3ARtNSXHdd/W7pnOUj4W0SRCS1e mgpQBmdiRHdqVBcHxBlmdsrzTx2YNMqR9jvx+7Zt1qtmXEGHD1PChPbA+8XaemW4 3jTKT4ekMP0HJel6u1JiOCRdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNK2oLR BJXrl6xBf1I5j9rYXBB+MB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX+JrJZI45p6DQ80CvOPsyR9qqGp+j5vwZLWUDHGsOaPaI2/mE/O9X eMzne+FOSogmMxxnzmcm5Zq3H36DZO+1ENwuQN/opo0riFW7s0BSbglUYDuA+Rsa zNwpcp+/8jgEh53VR0TsAyHAIcLGPTC6mBgVyk8GOMEy1kgRdXPGhOIx+cGpJJ3B vffa9FSGAQFaE1SvC2blA4Acv3f3bfdGVg9GEiDMC7NrWds9bky1+mJumKEOujSJ C0Ez6L+M9KWO1jbE6rFHe3Em4b/xOCjKsCxZZYYMjeXbhYCMHJCPLxk6EJ3l6F6k AhOJ1aKGV95lJ4yZBEhjiwnTJCzndg/Q -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:55 2026 by rpki-client