This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: nfjZjCsx8sRt+l9feXN2JVRe1b3q3hkc3F7eCyQO+dQ= Subject key identifier: 05:BF:96:08:C1:DB:25:B4:D4:A8:5F:2D:C1:7D:7D:37:59:4B:95:83 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2CA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2C00 Signing time: Sat 24 Jan 2026 15:24:13 +0000 Manifest this update: Sat 24 Jan 2026 15:24:13 +0000 Manifest next update: Sat 31 Jan 2026 15:24:13 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: JBjluO2zjPFlal4eqJw6z7lEdWGeNqOkTbKEmDRD6kM=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11433 (0x2ca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Jan 24 15:24:13 2026 GMT Not After : Jan 31 15:24:13 2026 GMT Subject: CN=6974e41d-c525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:06:53:6d:69:fd:db:95:84:0f:0f:1b:45:41: 8b:b6:6f:81:2a:fb:18:5d:71:47:b0:b9:63:a4:c5: 9a:f1:fd:93:2b:e3:8e:74:11:e1:84:5f:db:68:08: 94:9d:36:93:be:5f:8e:ad:38:41:62:10:18:0b:e9: 78:0b:81:9f:f2:c9:cd:26:fc:91:3d:8b:34:c2:2f: 8b:47:9a:2a:15:19:79:22:1f:4a:56:3f:91:32:eb: f0:fa:c7:e4:ef:74:1a:d2:06:24:a8:99:e2:dc:6f: ab:e5:31:b0:b1:b4:0d:7e:20:da:00:e6:38:02:7b: 9f:f1:13:99:80:98:7a:3e:75:6d:9a:50:20:10:8b: 62:d4:c0:6f:91:98:6a:6b:23:d0:96:71:a3:4b:c6: 73:8f:44:c8:d3:cb:95:36:b1:74:0a:0a:04:95:39: 2b:55:d7:00:a1:e9:78:24:ea:25:dd:e6:4b:5c:96: fa:07:48:57:2f:88:23:7a:da:25:34:d7:62:db:af: 33:c9:c7:6f:40:a8:1c:80:4a:6c:cc:37:ae:03:19: 61:0f:a2:43:0b:06:3a:eb:28:40:16:00:22:91:41: c8:06:eb:fd:f1:98:ae:53:56:c4:09:8b:aa:6f:3d: b0:02:ea:5f:5a:50:4f:d7:94:25:56:c3:30:07:0f: 40:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BF:96:08:C1:DB:25:B4:D4:A8:5F:2D:C1:7D:7D:37:59:4B:95:83 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:e6:ed:f2:c9:f5:95:bb:c0:67:c7:8d:f9:e3:7b:0e:22:42: 8c:5a:2d:bb:89:61:e4:f3:63:c4:ed:54:6c:31:ad:3e:01:49: 98:fa:0e:ab:c6:80:3c:f6:4e:31:92:f0:3c:d8:58:15:c0:b2: 0c:91:34:4f:46:46:4f:fe:17:af:4f:bb:b7:10:cd:f6:50:4e: 2c:15:b3:a8:85:ee:d2:c5:cc:7a:d6:cd:5d:63:2e:24:95:27: 47:25:3f:fc:c9:d3:8b:6e:51:83:32:12:0d:a6:7f:7d:cd:e8: 80:d8:d1:20:11:68:82:a0:35:c4:68:41:72:fb:0e:3d:b6:d2: 0a:c0:50:44:cc:be:2a:01:c5:9f:79:22:bd:41:32:57:7e:aa: 1c:4d:e5:1a:5d:6c:fa:e2:48:c1:0c:51:97:0f:3d:ba:5d:01: 01:d7:85:ab:a2:0b:bd:3e:63:4f:94:77:53:15:92:ab:b3:ab: 72:d5:01:8a:79:f2:d0:ce:5c:97:7f:2b:18:1f:d7:50:f1:20: 2d:d6:af:97:e7:0e:61:70:b2:e9:59:a0:00:de:7d:5f:68:58: 62:f5:b4:ca:40:b4:85:66:9f:a2:48:28:23:2c:f9:fb:b1:27: b8:46:fd:d3:a1:3d:21:ad:7c:eb:a6:7b:25:26:0f:03:27:e2: c2:a4:b6:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjYwMTI0MTUyNDEzWhcNMjYwMTMxMTUyNDEzWjAYMRYwFAYD VQQDDA02OTc0ZTQxZC1jNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgZTbWn925WEDw8bRUGLtm+BKvsYXXFHsLljpMWa8f2TK+OOdBHhhF/baAiU nTaTvl+OrThBYhAYC+l4C4Gf8snNJvyRPYs0wi+LR5oqFRl5Ih9KVj+RMuvw+sfk 73Qa0gYkqJni3G+r5TGwsbQNfiDaAOY4Anuf8ROZgJh6PnVtmlAgEIti1MBvkZhq ayPQlnGjS8Zzj0TI08uVNrF0CgoElTkrVdcAoel4JOol3eZLXJb6B0hXL4gjetol NNdi268zycdvQKgcgEpszDeuAxlhD6JDCwY66yhAFgAikUHIBuv98ZiuU1bECYuq bz2wAupfWlBP15QlVsMwBw9AIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAW/lgjB 2yW01KhfLcF9fTdZS5WDMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU5u3yyfWVu8Bnx43543sOIkKMWi27iWHk82PE7VRsMa0+AUmY+g6r xoA89k4xkvA82FgVwLIMkTRPRkZP/hevT7u3EM32UE4sFbOohe7Sxcx61s1dYy4k lSdHJT/8ydOLblGDMhINpn99zeiA2NEgEWiCoDXEaEFy+w49ttIKwFBEzL4qAcWf eSK9QTJXfqocTeUaXWz64kjBDFGXDz26XQEB14Wrogu9PmNPlHdTFZKrs6ty1QGK efLQzlyXfysYH9dQ8SAt1q+X5w5hcLLpWaAA3n1faFhi9bTKQLSFZp+iSCgjLPn7 sSe4Rv3ToT0hrXzrpnslJg8DJ+LCpLYQ -----END CERTIFICATE-----Generated at Sun Jan 25 02:57:44 2026 by rpki-client