This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: MlfCq19BQCJTFC8StFrZuAFHIjVL6mj7jh6Hs1rtWpI= Subject key identifier: 49:C2:EB:0E:76:6B:8D:B7:C5:5F:F4:21:8A:FC:75:E9:14:45:BD:E2 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0739 Signing time: Sat 24 Jan 2026 23:09:19 +0000 Manifest this update: Sat 24 Jan 2026 23:09:19 +0000 Manifest next update: Sat 31 Jan 2026 23:09:19 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: /l/4r8wgP1teKSZr5laxeVQQOrlNEh3lvVVAZF6CjCE=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: g9az2eJZ2fUas4ad3d/QH9wXCAIefnJD9ePsqv2jusw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Jan 24 23:09:19 2026 GMT Not After : Jan 31 23:09:19 2026 GMT Subject: CN=6975511f-4ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:2c:28:31:56:7d:25:09:e8:a9:4b:9c:1d:2c: 06:d1:d5:ed:bc:76:1f:0c:ee:6c:22:9d:a1:f6:7e: 0d:79:29:cc:4d:bd:ce:c1:56:63:36:6a:29:e9:cf: eb:1a:02:8f:b3:46:c6:70:74:03:5c:cc:a2:6d:02: e5:29:1e:64:f1:30:e2:91:0c:ad:f1:d2:da:a5:74: c5:57:5b:57:c8:0e:6b:f6:eb:a5:13:52:0b:3b:2d: 04:ce:24:8c:44:8c:f1:5c:1e:aa:12:07:f1:b3:71: b9:5a:55:16:da:e1:5c:34:98:91:12:32:e3:51:fe: ef:a7:78:21:23:96:91:e7:cf:bd:1c:0c:fc:48:97: bc:85:f3:be:ef:9c:e0:b1:ed:f0:c1:a7:4e:b4:1a: eb:cc:16:5e:4a:26:db:e9:8e:cb:e4:69:5a:5c:c7: bf:d4:29:dd:ee:c1:be:d7:4f:14:e0:50:15:8b:6e: 68:cb:7d:55:97:fc:17:66:43:c1:5c:31:73:af:ba: 9f:c0:53:de:8b:1e:11:43:6d:23:87:50:58:c8:2d: 96:96:e2:43:94:61:68:b5:3a:25:5e:b4:31:91:38: 4a:d4:f8:be:4c:a1:14:14:c8:04:f1:27:5b:83:3c: 9f:e0:47:a3:69:d1:f9:79:01:1e:64:3e:6f:1e:09: cb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C2:EB:0E:76:6B:8D:B7:C5:5F:F4:21:8A:FC:75:E9:14:45:BD:E2 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:e4:02:41:74:5c:3f:c7:51:cf:91:42:0b:4f:c0:b0:25:83: da:fc:3e:23:09:02:b0:24:c5:83:83:e3:b7:e4:8f:db:e3:47: 9f:27:83:c8:a6:c2:d0:c8:a7:a0:d8:eb:91:59:36:ae:de:de: 08:7d:56:79:26:53:9b:8f:c8:02:a7:98:8a:c6:4d:cd:8d:f5: ae:f0:7c:97:cc:cd:7d:8d:1d:87:b8:80:6c:a0:a8:f1:1b:f0: bf:1a:8e:d3:82:a8:ef:0f:22:46:b8:ab:55:9c:e9:f6:82:9a: 27:ae:c0:9e:c6:b6:56:c1:41:a0:95:65:7f:09:56:b5:98:33: 12:0a:4f:64:52:80:46:5f:44:19:df:98:0d:fe:02:9e:a2:ad: 2d:35:ec:ff:ba:4f:71:70:47:f8:2c:95:5a:1f:a7:7c:83:c2: 99:13:1e:01:16:f5:7c:21:e7:80:2e:c8:43:d2:a4:1f:5b:94: e3:17:a4:33:44:d4:7e:24:0a:a6:33:50:74:0d:c7:5d:35:49: e8:a4:e8:db:1e:75:ac:df:59:a8:75:9e:28:5e:38:6a:53:15: 51:68:64:fc:18:e9:33:ca:de:df:d6:01:18:d5:29:cc:99:e9: 80:ec:ab:10:1e:63:70:bf:53:62:e9:db:3a:28:bd:fd:2d:3c: 05:5f:c8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjYwMTI0MjMwOTE5WhcNMjYwMTMxMjMwOTE5WjAYMRYwFAYD VQQDDA02OTc1NTExZi00ZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjSwoMVZ9JQnoqUucHSwG0dXtvHYfDO5sIp2h9n4NeSnMTb3OwVZjNmop6c/r GgKPs0bGcHQDXMyibQLlKR5k8TDikQyt8dLapXTFV1tXyA5r9uulE1ILOy0EziSM RIzxXB6qEgfxs3G5WlUW2uFcNJiREjLjUf7vp3ghI5aR58+9HAz8SJe8hfO+75zg se3wwadOtBrrzBZeSibb6Y7L5GlaXMe/1Cnd7sG+108U4FAVi25oy31Vl/wXZkPB XDFzr7qfwFPeix4RQ20jh1BYyC2WluJDlGFotTolXrQxkThK1Pi+TKEUFMgE8Sdb gzyf4EejadH5eQEeZD5vHgnL2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnC6w52 a423xV/0IYr8dekURb3iMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/5AJBdFw/x1HPkUILT8CwJYPa/D4jCQKwJMWDg+O35I/b40efJ4PI psLQyKeg2OuRWTau3t4IfVZ5JlObj8gCp5iKxk3NjfWu8HyXzM19jR2HuIBsoKjx G/C/Go7TgqjvDyJGuKtVnOn2gponrsCexrZWwUGglWV/CVa1mDMSCk9kUoBGX0QZ 35gN/gKeoq0tNez/uk9xcEf4LJVaH6d8g8KZEx4BFvV8IeeALshD0qQfW5TjF6Qz RNR+JAqmM1B0DcddNUnopOjbHnWs31modZ4oXjhqUxVRaGT8GOkzyt7f1gEY1SnM memA7KsQHmNwv1Ni6ds6KL39LTwFX8jO -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:02 2026 by rpki-client