This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: wolfLPlRrghbiRqKUybvsCcqYnR1hQqWiXbitE5Vl3k= Subject key identifier: 3B:0F:38:CB:D2:68:52:8E:9D:AD:A1:35:62:BE:F5:7B:12:A3:03:52 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 05F7 Signing time: Sat 24 Jan 2026 23:49:02 +0000 Manifest this update: Sat 24 Jan 2026 23:49:01 +0000 Manifest next update: Sat 31 Jan 2026 23:49:01 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: OXHf2TulO+PCYvN4makpVqN9Lx64b0o//lJa2+LI4tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Jan 24 23:49:01 2026 GMT Not After : Jan 31 23:49:01 2026 GMT Subject: CN=69755a6e-3449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d7:7e:2c:50:87:4c:12:97:4e:ed:6a:5c:4a: 63:1f:15:bb:1c:28:76:89:1c:b1:3e:36:56:60:7e: 4e:b2:0d:cd:6a:df:2a:fa:4e:67:d7:b3:5f:2f:ae: f3:6a:6a:dd:e9:35:3b:21:00:cc:ad:d7:b6:45:59: d8:71:92:e8:50:6b:b2:d7:88:1a:f1:cd:50:60:83: 61:2e:8d:e7:15:81:b8:ca:98:e7:f8:b8:83:e9:47: 26:a0:3b:18:0d:bc:8a:07:fd:62:39:3a:ae:72:25: b7:17:65:47:44:01:0a:4c:22:a2:17:a4:d5:00:26: c4:c3:83:4d:a4:2f:47:2b:93:46:20:71:42:28:8c: cd:c1:3f:05:c4:fc:3f:41:6b:4b:9f:ee:39:5e:cd: 0e:68:3e:93:67:bb:05:c6:a8:4e:bf:ce:99:49:cc: 26:00:be:c2:45:79:2d:2f:8a:b4:88:9c:1a:0e:4c: 9c:b1:1c:39:4e:c1:0b:b0:71:c1:28:69:e0:ab:f5: 00:88:5b:85:29:a9:a5:7e:27:83:3b:83:41:02:03: 80:35:4f:32:72:44:b3:ab:e7:75:99:3f:0b:db:14: 9c:ab:23:15:09:48:57:6f:24:51:c1:37:35:30:9f: f0:32:3f:58:1c:37:db:b5:f1:dc:ae:18:30:13:5e: 45:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0F:38:CB:D2:68:52:8E:9D:AD:A1:35:62:BE:F5:7B:12:A3:03:52 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:f3:c8:c7:4b:93:14:b0:f5:bb:ca:f1:ce:0f:d4:c4:d3:18: d5:6b:f0:aa:5f:4b:32:fa:7e:c5:c3:21:a7:ab:22:6b:bf:78: 16:df:71:de:0d:68:da:41:95:cf:17:27:8e:f0:71:89:f6:20: 63:6f:6e:20:02:77:f9:d5:27:86:ee:df:0f:fc:23:66:a1:42: e0:c2:a4:55:8a:5a:30:e8:fb:72:b1:9a:bd:6d:9c:95:10:62: 61:4b:75:95:7d:6c:36:f2:b4:7a:3d:04:36:75:74:28:76:1e: 46:33:48:d1:8c:88:72:fe:cc:85:88:39:10:2d:cf:7a:30:27: eb:f6:ff:29:a7:a7:7e:32:b4:60:ad:7f:99:3e:42:24:5b:3b: e4:9e:91:ed:18:91:f7:c7:24:86:ab:54:67:82:fc:8b:e1:9e: d1:bf:37:e1:a3:58:3a:b9:e5:68:5c:33:91:b9:ae:3e:bb:c3: 01:ef:a6:1a:44:cf:02:53:c7:c2:ac:b1:72:11:21:e4:32:dc: e3:0c:bd:19:27:2d:a7:61:51:ab:53:06:1c:95:57:8f:04:ce: 67:1a:12:8c:c6:99:f5:46:09:0b:38:e2:6e:a4:ad:70:03:98: 76:20:88:3f:87:2c:84:4b:ca:f6:96:3b:9a:67:40:bc:22:88: 60:35:7a:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjYwMTI0MjM0OTAxWhcNMjYwMTMxMjM0OTAxWjAYMRYwFAYD VQQDDA02OTc1NWE2ZS0zNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtd+LFCHTBKXTu1qXEpjHxW7HCh2iRyxPjZWYH5Osg3Nat8q+k5n17NfL67z amrd6TU7IQDMrde2RVnYcZLoUGuy14ga8c1QYINhLo3nFYG4ypjn+LiD6UcmoDsY DbyKB/1iOTquciW3F2VHRAEKTCKiF6TVACbEw4NNpC9HK5NGIHFCKIzNwT8FxPw/ QWtLn+45Xs0OaD6TZ7sFxqhOv86ZScwmAL7CRXktL4q0iJwaDkycsRw5TsELsHHB KGngq/UAiFuFKamlfieDO4NBAgOANU8yckSzq+d1mT8L2xScqyMVCUhXbyRRwTc1 MJ/wMj9YHDfbtfHcrhgwE15FTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsPOMvS aFKOna2hNWK+9XsSowNSMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD88jHS5MUsPW7yvHOD9TE0xjVa/CqX0sy+n7FwyGnqyJrv3gW33He DWjaQZXPFyeO8HGJ9iBjb24gAnf51SeG7t8P/CNmoULgwqRVilow6PtysZq9bZyV EGJhS3WVfWw28rR6PQQ2dXQodh5GM0jRjIhy/syFiDkQLc96MCfr9v8pp6d+MrRg rX+ZPkIkWzvknpHtGJH3xySGq1RngvyL4Z7Rvzfho1g6ueVoXDORua4+u8MB76Ya RM8CU8fCrLFyESHkMtzjDL0ZJy2nYVGrUwYclVePBM5nGhKMxpn1RgkLOOJupK1w A5h2IIg/hyyES8r2ljuaZ0C8IohgNXrl -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:35 2026 by rpki-client